Report - batlegrounds19.in/

Report Overview

Submitted URL
batlegrounds19.in/
IP
20.9.70.76
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-11-29 20:35:23
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
66

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.3 kB	93.184.220.29
dm0qx8t0i9gc9.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	531 B	66 kB	54.230.245.215
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	453 B	945 B	104.18.10.207
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	44 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	477 B	14 kB	216.58.207.227
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.191.251.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	746 B	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	95.101.11.115
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
batlegrounds19.in	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.8 kB	539 kB	20.9.70.76
www.pubgmobile.com	21653	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	983 kB	23.36.76.227
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
d1490khl9dq1ow.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	472 B	1.9 kB	143.204.42.213

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent
2022-11-29	medium	batlegrounds19.in/	Tencent

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	batlegrounds19.in/js-zone/jquery.js	Phishing
2022-11-29	medium	batlegrounds19.in/js-zone/main-zone.js	Phishing
2022-11-29	medium	batlegrounds19.in/index_files/main-zone.js.download	Phishing
2022-11-29	medium	batlegrounds19.in/index_files/css	Phishing
2022-11-29	medium	batlegrounds19.in/index_files/gift-zone.js	Phishing
2022-11-29	medium	batlegrounds19.in/js-zone/slide-zone.js	Phishing
2022-11-29	medium	batlegrounds19.in/index_files/slide-zone.js.download	Phishing
2022-11-29	medium	batlegrounds19.in/index_files/jquery.min.js.download	Phishing
2022-11-29	medium	batlegrounds19.in/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	batlegrounds19.in/	34 B	2023-03-07	2024-04-09
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2024-04-09 07:55:21 Times Seen26 Hash 3a6224ee256df33c049ad05a73679a0c 59b55c4608022b524c5ff20866c32b48893c6f92 f3040b7e9b336615dcbc5921d0ee7439544c748db30ba5e484f68270bcac9a4d Loading...

	batlegrounds19.in/	36 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen7 Hash 3d42afbe76de972309d63c33d459054d 1cc3571f0486b169e4a9ec129940d6826436687f 842f9b1e22ae531c2af679005737f4706fb40cee599251ffb9fa8dae46bb724b Loading...

	batlegrounds19.in/	740 B	2023-03-07	2023-03-17
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-03-17 10:11:38 Times Seen1 Hash 5db2ba2e5e2987ad43121befcfb45a53 0bbc9f9032fce5c880a474cfc64fe2f0148b56cb 1a129195696abada71737f5940405d52d6892b2c5f10186d230ab02b6f6cddb0 Loading...

	batlegrounds19.in/	185 B	2023-03-07	2023-12-22
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-12-22 05:02:11 Times Seen8 Hash ac2010da7f984ad536ddf03040f0235c 1ae1cced30475f44b60bf8b4a3abd8dc0d43e237 42ec75f307724dda041998c6ebca059a4d0f7a4156c7ff9f8707211ea895f951 Loading...

	batlegrounds19.in/js-zone/alert-zone.js	121 kB	2023-03-07	2024-04-16
Pretty URL batlegrounds19.in/js-zone/alert-zone.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:45 Last Seen2024-04-16 08:36:35 Times Seen2414 Hash 2d8819d4b15ffe076a804a074e0229da 0e76d42421e78a58d71c99e233335f39b8b47645 b49a2dab55008d7ba1277b3adbb0b5f590f9b3ee25e3e89a9d78696efd262dde Loading...

	batlegrounds19.in/js-zone/zero-zone.js	861 B	2023-03-07	2024-04-16
Pretty URL batlegrounds19.in/js-zone/zero-zone.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-16 08:36:34 Times Seen1760 Hash e2fa33d030064bc3c6e44da71cf39659 4907034831c9244c5bce315c3aabbbbdf06cd687 b6b1475306c19ac27e78c3483123346379ea4a356ad9bf0d01319cee2b8f30c6 Loading...

	batlegrounds19.in/	20 B	2023-03-07	2024-03-26
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-03-26 04:44:52 Times Seen78 Hash 1e302d3b8e4b50901df076b04617cc30 c598b2e079134d7faaabd2986014225a4fec5420 ea0da56ebd906b9b9770465bd9a6098d7eeffc3b4f12247aa615b6f6d0a7c526 Loading...

	batlegrounds19.in/	60 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen5 Hash 624da92d8b8cf6034825555a24962d3f dce4b8c270bb02610345666c878465bcf0cc4bfd 6a1940cfa7b540c32fa965f08d9f737913cf303e644870e3229c1a27ba75acce Loading...

	batlegrounds19.in/	651 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen7 Hash 474e5af16d452364e715516c0e92345c 2da25dc7df77e4cbb907966a8497ac1e47146214 78fe7ad6315127a56e48ed45f94c645f7b0cf18f764ec9a524180f78236d7137 Loading...

	batlegrounds19.in/	41 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen7 Hash b7edaeaff198477c0f8e3973e06eef1b 2cc4c567792f53e030044d88cf8d9168616c1fdd a88d8406f987f243f00d1ff676e87c5010038b3b2056a456977c620b9bc53d87 Loading...

	batlegrounds19.in/	44 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen7 Hash bbc57fcbc269b70fd55dc13288e2f6a8 6bdf4d404d8d59311b31daa58650f7febccff067 9e6028a582f77053c2b644043feb25702a1978757135117a3f6a2fb136348bec Loading...

	batlegrounds19.in/	44 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen5 Hash eae3947c7aa0503a8e643ee54aaa747e c6e591bbbf30aea18396036ecbad6945a10d8f49 9d7a170038846d58679c784f0210ebedbdb1ea870f8bb3dd39cc76e23e1f5118 Loading...

	batlegrounds19.in/js-zone/jquery.js	2.3 kB	2023-03-07	2024-04-16
Pretty URL batlegrounds19.in/js-zone/jquery.js IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-16 08:36:34 Times Seen1689 Hash 27335de838e10bf2a4b4d5999c517d76 83b660b19244c170d715f4da30013cf57284682b e654612977b4226247e6dacd00df39e20942b906c9aed2fe405da0de47af6e91 Loading...

	batlegrounds19.in/js-zone/main-zone.js	610 B	2023-03-07	2024-04-16
Pretty URL batlegrounds19.in/js-zone/main-zone.js IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-16 08:36:34 Times Seen628 Hash 61c46dba509ed4003d18053b613edb39 f20c38330a2dd1ec8fae7f53220d8a3a5cff8177 6a66a6f467e40c2ef0c8f0c6c77ff558538b20a4f9f0ce7c9c31331df5bf4b9e Loading...

	unknown	0 B	2023-03-07	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 04:19:41 Times Seen36927099 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	batlegrounds19.in/	38 B	2023-03-07	2023-07-01
Pretty URL batlegrounds19.in/ IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2023-07-01 05:36:37 Times Seen7 Hash 658b039211d0f2e3aa32e2ab54628463 59714c05247fa5563985fa9fe42acdcffd034c82 041b8f9e68431c137cbfc90dde69d7c2fd272dd70d5eb3e76982b22c725da5c5 Loading...

	batlegrounds19.in/index_files/gift-zone.js	1.6 kB	2023-03-07	2024-01-05
Pretty URL batlegrounds19.in/index_files/gift-zone.js IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2024-01-05 18:47:14 Times Seen11 Hash 8a7070c37555b088456c76ce726411b4 4881f93f412d44adc3a5c7545066e2b31788f0c4 62aef8e3cbee29c420f1f4d7e57078698071ddde9f2b96050a5d2eac8c67422c Loading...

	batlegrounds19.in/js-zone/slide-zone.js	2.1 kB	2023-03-07	2024-04-08
Pretty URL batlegrounds19.in/js-zone/slide-zone.js IP 20.9.70.76 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:42 Last Seen2024-04-08 18:58:01 Times Seen1575 Hash 290d1a9d8c436b4815b9f543e3a302de fda5d1f65e6b1eb4d929ea77de3b911ee208a27a 5decabf43c201e0f9e058461dd0d8a8bc744e4174583ef39971abc226bf2ca08 Loading...

		Size	First Seen	Last Seen
	#1 Write - d7d45230746aadb587b5421834758994	171 B	2023-03-07	2024-04-16
Pretty Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-16 08:36:35 Times Seen1304 Hash d7d45230746aadb587b5421834758994 65480c14ebd56b32288f937a0a51867362c530ae 06d287bc821986c6d2cea4631dc0329b9cd9e15ca19737eb1479e118526bc3e9 Loading...

	#2 Write - bcac842be7f8998e3880a54fae737f5c	140 B	2023-03-07	2024-04-16
Pretty Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-16 08:36:35 Times Seen1296 Hash bcac842be7f8998e3880a54fae737f5c c4a801e5013546c703ba5cba5c176e7d525aadc9 69db51683da9aaff997d8865c60e37445e2bc99d451ec64029183b375779df4d Loading...

HTTP Transactions (55)

URL IP Response Size

ocsp.digicert.com/

93.184.220.29

200 OK

55 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
HTML document, ASCII text
Size
55 B (55 bytes)
Hash
9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5957
Content-Type: text/html
Date: Tue, 29 Nov 2022 20:35:11 GMT
Etag: "638651bf-37"
Last-Modified: Tue, 29 Nov 2022 18:38:55 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 55

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5432
Expires: Tue, 29 Nov 2022 22:05:43 GMT
Date: Tue, 29 Nov 2022 20:35:11 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6485
Expires: Tue, 29 Nov 2022 22:23:16 GMT
Date: Tue, 29 Nov 2022 20:35:11 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 20:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1036
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: RaIjwPmSH8uueSGRtG4yn1E8cpMpo4Wr5bkAbOJ4cSuO9NoiAM306mz1McrGEHRnAGQFizB8Mjk=
x-amz-request-id: QAQBMKKC1WVH9SP3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 19:44:56 GMT
age: 3015
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 20:35:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
96ba40be4ad9ed57887bc3d9d39b9ee2
bd3b5d8943ab7741bfa5c18c8766013b80519424
19e5f58133b52dbd7ab629ad02f9a38ed2b69909b797ff3722f09fb811085362

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3233
Cache-Control: max-age=127198
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:12 GMT
Etag: "6385ae3d-117"
Expires: Thu, 01 Dec 2022 07:55:10 GMT
Last-Modified: Tue, 29 Nov 2022 07:01:17 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

batlegrounds19.in/css-zone/facebook.css

20.9.70.76

200 OK

683 B

URL HTTP/2
batlegrounds19.in/css-zone/facebook.css
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
683 B (683 bytes)
Hash
2d8c01d589bcb8e0a8c76f94445f6914
769131a05e642688c10d90abf865bf8a4255f00e
33bb7526a58254cf9180ece28fee07515f1fb5ae38e5bce896aa28aada8c078a

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /css-zone/facebook.css HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: text/css
last-modified: Sun, 22 Aug 2021 07:17:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 683
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/css-zone/twitter.css

20.9.70.76

200 OK

484 B

URL HTTP/2
batlegrounds19.in/css-zone/twitter.css
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
484 B (484 bytes)
Hash
576740d946731af390da75b14933e36b
a9df241f47d1925a3941057c9e18e577fcfbbcc7
5e60bdcff1038fec3347580938ff1c1afbe2cf287f337aea78068d6c28270331

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /css-zone/twitter.css HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: text/css
last-modified: Sun, 22 Aug 2021 07:17:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 484
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/js-zone/jquery.js

20.9.70.76

200 OK

397 B

URL HTTP/2
batlegrounds19.in/js-zone/jquery.js
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
exported SGML document, ASCII text, with very long lines (1757)
Size
397 B (397 bytes)
Hash
448cce3a14a1f26822871ecc5c29cf5e
099e4d9ecebdce759bb4ad4895edb6f26fea684f
70257120a2cc15baa7ce601f09e2bb03d4af43cc179e58527efdd29a86c42b74

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /js-zone/jquery.js HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 397
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/js-zone/main-zone.js

20.9.70.76

200 OK

299 B

URL HTTP/2
batlegrounds19.in/js-zone/main-zone.js
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (316)
Size
299 B (299 bytes)
Hash
7345e452ca30d157938598dbeb001664
4a1d340727fc32bef0a6a0fca34643bd5bfeccab
9411aa13954d376ab0b4bbe67beb71016f6835d261a45bcdc7557ff7450c56e9

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /js-zone/main-zone.js HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 299
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/index_files/main-zone.js.download

20.9.70.76

200 OK

610 B

URL HTTP/2
batlegrounds19.in/index_files/main-zone.js.download
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (316)
Size
610 B (610 bytes)
Hash
61c46dba509ed4003d18053b613edb39
f20c38330a2dd1ec8fae7f53220d8a3a5cff8177
6a66a6f467e40c2ef0c8f0c6c77ff558538b20a4f9f0ce7c9c31331df5bf4b9e

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /index_files/main-zone.js.download HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-length: 610
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
96ba40be4ad9ed57887bc3d9d39b9ee2
bd3b5d8943ab7741bfa5c18c8766013b80519424
19e5f58133b52dbd7ab629ad02f9a38ed2b69909b797ff3722f09fb811085362

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3233
Cache-Control: max-age=127198
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:12 GMT
Etag: "6385ae3d-117"
Expires: Thu, 01 Dec 2022 07:55:10 GMT
Last-Modified: Tue, 29 Nov 2022 07:01:17 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.pubgmobile.com/common/images/icon_logo.jpg

23.36.76.227

200 OK

982 kB

URL HTTP/2
www.pubgmobile.com/common/images/icon_logo.jpg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size
982 kB (982437 bytes)
Hash
b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d

HTTP Headers

GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=52
expires: Tue, 29 Nov 2022 20:36:04 GMT
date: Tue, 29 Nov 2022 20:35:12 GMT
X-Firefox-Spdy: h2

batlegrounds19.in/index_files/css

20.9.70.76

200 OK

62 kB

URL HTTP/2
batlegrounds19.in/index_files/css
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (1116)
Size
62 kB (62268 bytes)
Hash
755df17a408beddb747e36f27ae4dedc
53daa61ef477c0badec68fa8942cb5ffce0c38b0
a2db023c6c27693f044211498c952a94f002c75b80926bde95c24d5dbab187f4

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /index_files/css HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-length: 62268
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 20:08:56 GMT
cache-control: public,max-age=3600
age: 1576
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

batlegrounds19.in/index_files/gift-zone.js

20.9.70.76

200 OK

546 B

URL HTTP/2
batlegrounds19.in/index_files/gift-zone.js
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
546 B (546 bytes)
Hash
cf301097cfa4250cdee6bf84f30ca9a2
10b6cdef062584e2d168990ee45d85b406fb76d7
b5dc2a1b17caaf71c4806624ce0714c8fb89e318d3eca444f37ff8731ee371d7

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /index_files/gift-zone.js HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 546
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/js-zone/slide-zone.js

20.9.70.76

200 OK

541 B

URL HTTP/2
batlegrounds19.in/js-zone/slide-zone.js
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
exported SGML document, ASCII text, with very long lines (530)
Size
541 B (541 bytes)
Hash
ac90c432db1fa3dd637b6c5e4a577047
803555834bcf8f61c015ba263020f602f7c68495
c58c824593b5b33b53f919e3eabf957d19b8bb3012fa1cba30683ef3a76c0358

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /js-zone/slide-zone.js HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 541
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/index_files/slide-zone.js.download

20.9.70.76

200 OK

2.1 kB

URL HTTP/2
batlegrounds19.in/index_files/slide-zone.js.download
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
exported SGML document, ASCII text, with very long lines (530)
Size
2.1 kB (2054 bytes)
Hash
290d1a9d8c436b4815b9f543e3a302de
fda5d1f65e6b1eb4d929ea77de3b911ee208a27a
5decabf43c201e0f9e058461dd0d8a8bc744e4174583ef39971abc226bf2ca08

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /index_files/slide-zone.js.download HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-length: 2054
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/index_files/jquery.min.js.download

20.9.70.76

200 OK

87 kB

URL HTTP/2
batlegrounds19.in/index_files/jquery.min.js.download
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET /index_files/jquery.min.js.download HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-length: 86927
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3207
Cache-Control: max-age=134703
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:12 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:00:15 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

batlegrounds19.in/img/reward/1.png

20.9.70.76

200 OK

11 kB

URL HTTP/2
batlegrounds19.in/img/reward/1.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
11 kB (11281 bytes)
Hash
5dd878b31ae6850a52fd679a30e7c646
a09533558a796eaaff040748c0a273e25cb5f7cb
870b7f65f556ac952e5de1b06bb71c6715a5ac357622ecdb907e97b24b406d0b

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/reward/1.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Wed, 29 Dec 2021 00:52:12 GMT
accept-ranges: bytes
content-length: 11281
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/reward/2.png

20.9.70.76

200 OK

12 kB

URL HTTP/2
batlegrounds19.in/img/reward/2.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
12 kB (11568 bytes)
Hash
f3cad447a3a333683f4fcf679cf1f615
ac4527cc986dae7cdb0ae287de62fb0f3ba90a0f
a7a46dfdc606acef82778022786ad7269340a532e2d7895a7fe625de347ac406

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/reward/2.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Wed, 29 Dec 2021 00:52:12 GMT
accept-ranges: bytes
content-length: 11568
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/reward/3.png

20.9.70.76

200 OK

9.9 kB

URL HTTP/2
batlegrounds19.in/img/reward/3.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
9.9 kB (9906 bytes)
Hash
0deb44491ed68e05d03bce84e3912125
8997da421c5afdc8d207186e5c00921e2d7b33ee
177057a9fc02f1753a266264d5944db946e731a8e91177cb45062d7c1cef0f41

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/reward/3.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Wed, 29 Dec 2021 00:52:08 GMT
accept-ranges: bytes
content-length: 9906
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/reward/4.png

20.9.70.76

200 OK

12 kB

URL HTTP/2
batlegrounds19.in/img/reward/4.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
12 kB (11667 bytes)
Hash
3a18cc6bfb80779f602a1c7a4cc5a305
b889c3ce410f35cc5c75daa817e15de97559357b
f4f776653eb9eadf71987819e4cc7d0c64c548a1bbc53f6d588772368d8de40a

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/reward/4.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Wed, 29 Dec 2021 00:52:10 GMT
accept-ranges: bytes
content-length: 11667
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/reward/5.png

20.9.70.76

200 OK

9.0 kB

URL HTTP/2
batlegrounds19.in/img/reward/5.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
9.0 kB (9046 bytes)
Hash
737fb23bba9a569923054a59c7b5a57c
51e0e2e30ff99438b8308ffae1939591e1547676
04b65952e15e07361755f8f2c6c892544d693e93cc8756bf74916c6a3cea8011

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/reward/5.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Wed, 29 Dec 2021 00:52:08 GMT
accept-ranges: bytes
content-length: 9046
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/reward/6.png

20.9.70.76

200 OK

11 kB

URL HTTP/2
batlegrounds19.in/img/reward/6.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
11 kB (11047 bytes)
Hash
bcb6c5eb9a04aee49b9392a0beda6965
9dc8eda23cd9181ed26b84657b893e454e929f20
70700d240bc4f20496e47a229faf7db5dbfb44414829055c85a48eb5f11e3f40

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/reward/6.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Wed, 29 Dec 2021 00:52:14 GMT
accept-ranges: bytes
content-length: 11047
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/gungrate/foot_logo1.png

20.9.70.76

200 OK

2.5 kB

URL HTTP/2
batlegrounds19.in/img/gungrate/foot_logo1.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 62 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2517 bytes)
Hash
53e279ff5c1ef4ab8663385355d973be
017d9e3ea9813425688fe6dfb517d2dbc34e1dfb
e607cfe6102a17f34561365211bc038b9aa140d71698583e2aa51343c6b1e151

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/gungrate/foot_logo1.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Thu, 08 Apr 2021 16:12:26 GMT
accept-ranges: bytes
content-length: 2517
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/gungrate/foot_logo2.png

20.9.70.76

200 OK

2.9 kB

URL HTTP/2
batlegrounds19.in/img/gungrate/foot_logo2.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 95 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2898 bytes)
Hash
fd2c8fb00e02f6e81d89a35b6386d705
f82db6dbd155cb1a538d7df033a4da9cf9dc2f75
cd4ccaced6dcadcd082878763323f331f7928133442cd650ad7d1d539b2cf204

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/gungrate/foot_logo2.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Thu, 08 Apr 2021 16:12:26 GMT
accept-ranges: bytes
content-length: 2898
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/gungrate/foot_logo3.png

20.9.70.76

200 OK

4.3 kB

URL HTTP/2
batlegrounds19.in/img/gungrate/foot_logo3.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 165 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4344 bytes)
Hash
a0612122bf6eaf2f35d1354bdaf35594
7b714531f0cd5062730c2440d22a757725effb31
ecf54749915a65d44c5d7463268342304e65212bc7126bf7487c97ee1f51dfe6

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/gungrate/foot_logo3.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Thu, 08 Apr 2021 16:12:26 GMT
accept-ranges: bytes
content-length: 4344
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/login/facebook_text.png

20.9.70.76

200 OK

29 kB

URL HTTP/2
batlegrounds19.in/img/login/facebook_text.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Size
29 kB (28789 bytes)
Hash
74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/login/facebook_text.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-length: 28789
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/login/twitter_text.png

20.9.70.76

200 OK

4.3 kB

URL HTTP/2
batlegrounds19.in/img/login/twitter_text.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4298 bytes)
Hash
fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/login/twitter_text.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Mon, 26 Oct 2020 04:26:40 GMT
accept-ranges: bytes
content-length: 4298
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/header.jpg

20.9.70.76

200 OK

182 kB

URL HTTP/2
batlegrounds19.in/img/header.jpg
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, progressive, precision 8, 1536x864, components 3\012- data
Size
182 kB (181748 bytes)
Hash
6cb1d0043694de97e8b8f9334caad388
7b9d775d7e376bbaaed1cbfaa0b5f971d4627939
38b3f848b40a00e72a3bbbcaff9c22ad974e7d5f94d47d4200ab453a664893d4

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/header.jpg HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/jpeg
last-modified: Wed, 15 Sep 2021 14:20:42 GMT
accept-ranges: bytes
content-length: 181748
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

batlegrounds19.in/img/draw.png

20.9.70.76

200 OK

78 kB

URL HTTP/2
batlegrounds19.in/img/draw.png
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 243 x 284, 8-bit/color RGBA, non-interlaced\012- data
Size
78 kB (77687 bytes)
Hash
cff904fd243ba9c83400dbd12ad65a46
6fa38d54dc07a5befc5b2d8615f6e0ce7a08ebed
0082a619d625e0ee137b01e839697f718a96431c6e2c6241223ea685593b39b9

Detections

Analyzer	Verdict	Alert
openphish	Tencent

HTTP Headers

GET /img/draw.png HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 20:35:12 GMT
content-type: image/png
last-modified: Fri, 13 Aug 2021 06:21:56 GMT
accept-ranges: bytes
content-length: 77687
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2

216.58.207.227

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Size
13 kB (13324 bytes)
Hash
b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6

HTTP Headers

GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://batlegrounds19.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:46:04 GMT
expires: Thu, 23 Nov 2023 19:46:04 GMT
cache-control: public, max-age=31536000
age: 521349
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 20:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.191.251.76

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.191.251.76:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BKcJUyzpqqt6pd2Po/hLbw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tuOGnw4iVIjGOE3Iv6LvgpxpO78=

d1490khl9dq1ow.cloudfront.net/sfx/mp3preview/wheel-spin_Gk0rCUV_.mp3

143.204.42.213

301 Moved Permanently

1.1 kB

URL HTTP/2
d1490khl9dq1ow.cloudfront.net/sfx/mp3preview/wheel-spin_Gk0rCUV_.mp3
IP
143.204.42.213:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (1069), with no line terminators
Size
1.1 kB (1069 bytes)
Hash
19f6bd067c6affa2b408a6af0197372d
07c72b9c4901bf10af54124ffc8fd08917251cf9
f381f8e7b36f08e435c145faa70b20db21c90eaede8c85ac1838265b71ff8ba1

HTTP Headers

GET /sfx/mp3preview/wheel-spin_Gk0rCUV_.mp3 HTTP/1.1
Host: d1490khl9dq1ow.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
content-type: application/json
content-length: 1069
location: https://dm0qx8t0i9gc9.cloudfront.net/watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3?
server: CloudFront
date: Tue, 29 Nov 2022 11:25:25 GMT
content-disposition: attachment
access-control-allow-origin: *
x-amz-apigw-id: cXHVyFQkIAMFZVA=
cache-control: max-age=86400
cross-origin-resource-policy: cross-origin
x-amzn-trace-id: Root=1-6385ec24-3455fabf32145afb29e8db1b;Sampled=0
via: 1.1 409b27093eb36cec367cdee5f3ecf8b2.cloudfront.net (CloudFront), 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amzn-requestid: 0244469c-e1ea-4495-917d-92c344b2dd0e
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA56-P6, OSL50-C1
x-amz-cf-id: DIh_uRKCdYFe086f2WI9xqhECMhzxWxM08to6TtKTpVaxFZkfKX8Qw==
age: 32988
X-Firefox-Spdy: h2

dm0qx8t0i9gc9.cloudfront.net/watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3?

54.230.245.215

206 Partial Content

65 kB

URL HTTP/2
dm0qx8t0i9gc9.cloudfront.net/watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3?
IP
54.230.245.215:0
ASN
#16509 AMAZON-02

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Stereo\012- data
Size
65 kB (65156 bytes)
Hash
dae4c980d2caf7c4fb5c85f0896a46c9
6339347763bf8343b382b630433e32d4982341a9
073078020f08a608e9d44790cae2932474de828460db511644e06c1036389f36

HTTP Headers

GET /watermarks/audio/BsTwCwBHBjzwub4i4/wheel-spin_Gk0rCUV__WM.mp3? HTTP/1.1
Host: dm0qx8t0i9gc9.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Referer: https://batlegrounds19.in/
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 206 Partial Content
content-type: audio/mpeg
content-length: 65156
x-amz-id-2: keH+EveSMfU7ANTQJx4P6L8FA9UsopK+ClNsuaEM8U4WLeIsZUew/6lCsv1S9TvvjPVVcmiKLw8=
x-amz-request-id: 4HC50PSMG9H1ZAR2
last-modified: Thu, 01 Jul 2021 20:58:38 GMT
x-amz-version-id: ouoq1gBldIQ3t4fd9gcLxPg04__gEaBd
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 10:39:04 GMT
etag: "dae4c980d2caf7c4fb5c85f0896a46c9"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin
content-range: bytes 0-65155/65156
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bJLhH1-AsTocyf44T4BXR_wzBJWhdyGo_VY_khvagZf3n4eyup700Q==
age: 35770
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11010
Expires: Tue, 29 Nov 2022 23:38:44 GMT
Date: Tue, 29 Nov 2022 20:35:14 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11010
Expires: Tue, 29 Nov 2022 23:38:44 GMT
Date: Tue, 29 Nov 2022 20:35:14 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11010
Expires: Tue, 29 Nov 2022 23:38:44 GMT
Date: Tue, 29 Nov 2022 20:35:14 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11010
Expires: Tue, 29 Nov 2022 23:38:44 GMT
Date: Tue, 29 Nov 2022 20:35:14 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11010
Expires: Tue, 29 Nov 2022 23:38:44 GMT
Date: Tue, 29 Nov 2022 20:35:14 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9546 bytes)
Hash
9a6e5f60b87d3879606a6707feb37a73
373c96c2e0006d70954d4b4ebd850f62f558e92c
1ae48f692f44d357e21eec708b46f22c36a3de21be8d0f1c2035d197e0aa89de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F955ba04e-80cb-43a1-bc6a-3e502a79144e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9546
x-amzn-requestid: 60e352b5-ab38-4975-bf26-500f0a639a2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFfulExwIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637edff6-1364912f7fd292da6453a83e;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 03:07:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qtRAIXoswvTgNWZzaQE1WHZQXoJRtK9nKpusFtXH3pDRHH_DZtsLFw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 07:16:35 GMT
age: 47919
etag: "373c96c2e0006d70954d4b4ebd850f62f558e92c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4916 bytes)
Hash
83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:18:11 GMT
age: 62223
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10176 bytes)
Hash
03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 56724
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9430 bytes)
Hash
1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:01:55 GMT
age: 81199
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

batlegrounds19.in/

20.9.70.76

200 OK

11 kB

URL HTTP/2
batlegrounds19.in/
IP
20.9.70.76:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators
Size
11 kB (10884 bytes)
Hash
a90d37ee42aac29fc57955bb50c3c585
4ab8c533784f4c739e7a0d04fcbd972826330603
144405e827c01433b2055dc7be6e292eb098d37337cf46e30bd46d2818ef19c2

Detections

Analyzer	Verdict	Alert
openphish	Tencent
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: batlegrounds19.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 20:35:12 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4417 bytes)
Hash
a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 82100
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://batlegrounds19.in
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 29 Nov 2022 20:35:12 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/18/2022 06:18:29
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 81e22895e6e619b989ae20631ab13d81
cdn-cache: HIT
cf-cache-status: HIT
age: 18270
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 771e20e1fa4db503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Teko&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Teko&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batlegrounds19.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 20:35:12 GMT
date: Tue, 29 Nov 2022 20:35:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations