Report - 55100bet.com/mobile-client/v5/index.html?td

Report Overview

Submitted URL
55100bet.com/mobile-client/v5/index.html?td_channelid=1761
IP
104.21.88.16
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 04:48:51
Access
public
Website Title
BET365
Final URL
55100-55100.xyz/
Tags
bet365 gambling phishing
urlquery detections
Phishing - Bet365

Detections

urlquery
26
Network Intrusion Detection
0
Threat Detection Systems
66

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
55100-55100.xyz	unknown	2024-03-24	2024-03-25	2024-04-16	8.4 kB	942 kB	172.67.159.225
brhrjf.gaokejd.xyz	unknown	2019-07-19	2024-01-18	2024-04-12	57 kB	6.0 MB	103.198.200.1
55100bet.com	unknown	2024-01-17	2024-01-17	2024-04-12	512 B	34 kB	104.21.88.16

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-15	medium	55100bet.com/mobile-client/v5/index.html?td_channelid=1761	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365
2024-04-08	medium	55100-55100.xyz/	Bet365

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100bet.com	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed
2024-04-16	medium	55100-55100.xyz	Sinkholed

ThreatFox

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/Comet.js	17 kB	2023-04-05	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/Comet.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6388 Hash 1008fe6a5e1a182d7775963b85405bb2 e174a7b08cc3cb5545af1cd33d2814e604119392 7479f6f22194ac37dd6d3f5a579b4682ac8dcb6389fb961cf4140f3fcc707a20 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/layer.js	22 kB	2023-04-05	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/layer.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6373 Hash cb96339625e9d456e32f86cdb3c7a7a1 1301165c58bbb13c542cba493b7ab5774e87e31f 17fb047ba6828fcbdf2ca226fa4594cfded2b2fdfeaff89a5bd81c7cf0359919 Loading...

	55100-55100.xyz/	27 B	2023-10-16	2024-04-28
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-16 02:24:16 Last Seen2024-04-28 18:06:02 Times Seen159 Hash b590ec6bd0af094343239fd585e1c19b dce58250f1f84d7d12eb546f5a9a27c92368e5a0 1bd038746db102bc2b37cf9c6a5aa3a9a7b8c4897a9656d1700b716e52756849 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/idangerous.swiper.min.js	45 kB	2023-08-15	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/idangerous.swiper.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-15 12:01:05 Last Seen2024-04-29 19:52:04 Times Seen7755 Hash f15409fb02c527ce1f66a2fd3c4aa0e9 1e1e1bcc0f49e99e14ba34991cffe0745178d302 1a1b5d3d6fbfc28abe37a668abd59494208c63c5f0b5d040cf4bbbd137f87c27 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/CometMarathon.js	12 kB	2023-04-05	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/CometMarathon.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6383 Hash 466a7ed7d00986d45375c0cbffb5233c 68845ead668e9abd29c24b491dbf97b219226c08 7ddafae5a0a552d2d56101cdc8306403e8fb9570759d66c48b25893b409f0123 Loading...

	brhrjf.gaokejd.xyz/061410/rcenter/common/static/js/gb.validation.min.js?v=1712742347025	33 kB	2023-04-05	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/061410/rcenter/common/static/js/gb.validation.min.js?v=1712742347025 IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6485 Hash a55780dc13cbf1a8d375f14ebb659cf2 9548cc269bcde0dc48e166fa6bab37af8a649e57 35d147a863ab8828e073ca1ae89d476a9cede797c410ac555597c1f442452cc8 Loading...

	55100-55100.xyz/	48 B	2023-03-07	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:03 Times Seen6378 Hash 37f0336a6fe3f56c661b149ecf659efe 9aff4163d5da3b8d760f0593c583dd8d1f6dfc14 f33f7afadc5c318efdd57d35da2dc2aebe39fd166a61905ce37b9f7363f51c2f Loading...

	55100-55100.xyz/	1.1 kB	2024-04-11	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-11 17:47:49 Last Seen2024-04-29 19:52:03 Times Seen186 Hash f430889e57d1f366b5b08cb58a3b8942 439179f3b673eecadb0a551dfa953eaf649be8a8 c950dc3e3086e6f4fe3c32a2464ef623d8cf324b928a0d3818fa7f97f9fb3d11 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/float.js	7.0 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/float.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen12795 Hash 829af863b0cdc4a603919824ae046299 1d417b1553e4ecb7125ebf2005b74255291fbf73 1dbe4afbc9ed220c08b9e95577b56f83e2e8e0f7620c5dc18266bb325e5bb271 Loading...

	55100-55100.xyz/message_zh_CN.js?v=1712742347025	32 kB	2023-12-07	2024-04-29
Pretty URL 55100-55100.xyz/message_zh_CN.js?v=1712742347025 IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 04:18:39 Last Seen2024-04-29 19:52:03 Times Seen1648 Hash 879e0d38aaa72a30c1987722f24ef0ff a71947b06e5ff779946d15db8877a103a5432036 fd47dca609ede55de5f51d756c967b63f0d223330e6eef19df0c3659e1bd9a55 Loading...

	55100-55100.xyz/	710 B	2024-01-18	2024-04-28
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-18 15:31:45 Last Seen2024-04-28 18:06:02 Times Seen98 Hash 1303ea8b792185b8b7b452be0dcb9356 32d1776cc4d38a170a64261024d21ef8cfbca4e5 6cf30cf03f98e4193b0ea556e2d283cbd979aab0017434fbe7d3957a4dc5daa3 Loading...

	55100-55100.xyz/	22 kB	2024-03-21	2024-04-19
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-21 05:56:57 Last Seen2024-04-19 07:56:12 Times Seen30 Hash a7c668629de72ca9072bf5ef0f16d916 3d10533ecb83c8f8de5f44295c89190e55618b7d be7e1f7f82380b7cefa85f4514106f7e548b3ee40fff8364d488a1483e6eaa7f Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/gui-base.js	61 kB	2023-08-26	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/gui-base.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-26 00:19:56 Last Seen2024-04-29 19:52:04 Times Seen3340 Hash e6ce47d880d7a50ddf91b074c8572edf 6a3657c67209136e5b544859daecf16f2d153b72 c49e04c7ecfd07c74b58cf161ef2b58f2bc837a9091ed1ae090a33734cdaa734 Loading...

	brhrjf.gaokejd.xyz/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js	15 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen12791 Hash 4fe7dadf050dad2dcfd386d21b880281 07e7feb8dc9309fe66d86d7a9e27f8efd32ab0bd aa891aafe8e98e1e15d81b2b116e6c3808d0bbbec56cd24818e2e7ac911877c9 Loading...

	55100-55100.xyz/	13 kB	2023-04-05	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6384 Hash 109d40ff6f9b3510b169fac4b8e845ce 4ce0fc768718f555487159ddd745e728a0c74c64 7b782f2e9589aa72ddadf4546c0f09709c73bea1339cd0ce893dfc40f6252949 Loading...

	55100-55100.xyz/	11 kB	2023-04-05	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6359 Hash 6681856885ee92601b7711c11d19553f 95ab4437869df8c790cad28e0753a4c9ea362e73 ce52fd46b2a5cfd741a2f0c39bc2d5218271b5690bdf8ec33af94f1062e98d23 Loading...

	55100-55100.xyz/	3.6 kB	2023-04-05	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6357 Hash d15a9b513acdcf3e9b08901384511565 f1fe72392137895e4952f835c0330f76aacfecdf 9fa644edfd9af9be6b244016e8f4f0eaee414732edc6ba3641e8647253359995 Loading...

	55100-55100.xyz/	25 kB	2024-03-21	2024-04-19
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-21 05:56:57 Last Seen2024-04-19 07:56:12 Times Seen30 Hash 47f1492a347fd6c348e637d140fa546b 328d95ea9833deddd87adcf57222f67091da85b3 f86126bfb0cc4e0dffda0c694d68e717eb79ebcb62943d9e9d54265c7fdd5e6c Loading...

	55100-55100.xyz/	20 kB	2023-04-05	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6353 Hash 9f5bce1aa50f72fd0834901c70db4f43 41771079bee5eb45539e694a5eff580732ab26b0 a50724b65a2657f6e67adbf98a3dd135de52b4786350f0b1bd142adff38c7ffd Loading...

	brhrjf.gaokejd.xyz/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js	28 kB	2023-04-05	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6373 Hash 9c41709c2b64126b909c101a27f39153 4ab666b36c092577acb41390ad90e96d5fea7711 c1963697eeafb63b6c29e95da2d38d91dd907ab656e130e6e1c34d1dcd149f60 Loading...

	55100-55100.xyz/	6 B	2023-03-07	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen7237 Hash edaddb8132e9e0880252c5b6c47bf1c1 dc08b5b6ca432b46cca94f1f297491e1b08736ea b98809417c0240085bf70f2a1127f0b622c1514651737e7e4ffac4b39e4da17e Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery-1.11.3.min.js	96 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery-1.11.3.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:10 Last Seen2024-04-29 19:52:04 Times Seen13405 Hash b091a47f6b91e26c93a848092c6f3788 52918af2d431e73464060b35d364640c8db75606 329ab92b9276ef4e3148f69be6b208969bebdf2db3121a589caa172453fd9f10 Loading...

	55100-55100.xyz/	1.8 kB	2023-04-05	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6349 Hash 9f1681b5a72417b33c2869aab85af152 b40a6d9c6d058c2bd6e126a1b0191182926b9d04 eabdfd0c5237f406e0acbef879968e72e5e3d62dd8e8b6bcee48e5ab7f4d0154 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/lazyload.js	12 kB	2023-08-15	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/lazyload.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-15 12:01:05 Last Seen2024-04-29 19:52:04 Times Seen3872 Hash d87854586672bff7f886a47da85da5ed 8d0537030dc7a81ade87a41a75fd5a75e4e33da1 17859187f895c27de8869fb6bfec579fd68c4588d0af71d08d334be92d144ada Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/bootstrap-dialog.min.js	20 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/bootstrap-dialog.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen12818 Hash 5ce8851dc823429a42ab6147554403cc 28f381f0e0aa4f5d56690e65723bd97fb59a38e6 dd1edf5e54071903c4c1e81e33636444899d645df6b18bad22249da07f91c811 Loading...

	55100-55100.xyz/	2.6 kB	2023-11-23	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-23 15:36:17 Last Seen2024-04-29 19:52:04 Times Seen2046 Hash 9c3f7d9e5de3b764c32a679ad06ae3db 9ab260e36b46c6ca6f58066ee914f3826d86a37f fefe9a763127c0f92edfe95be1000aeed2eda7690482769c90dc9488dbe5d33a Loading...

	55100-55100.xyz/	128 kB	2024-04-11	2024-04-28
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-11 07:38:46 Last Seen2024-04-28 18:06:02 Times Seen26 Hash 89892e52af87aeb5e1954a58ba4874e2 673ab6344af1779f59bf386c4c63d49e8b9e8811 8c8ea237e9d8fa27da464edac09710cb232d13d17561bc39aa719dfba91ea380 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.nicescroll.min.js	65 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.nicescroll.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen13029 Hash b5bc8cd626b389bde727a91e6ce79436 3df6c39300ac286cf596b3bda273cb39ff825429 a1eb48eeb3b3f2ba41940d3041464f0b386b7a7c4a8acb42f3017e691f4b116e Loading...

	55100-55100.xyz/	1.4 kB	2023-08-21	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-21 11:10:45 Last Seen2024-04-29 19:52:04 Times Seen3732 Hash 479c01001c455527cf2aafec087accad 230c5d853a00977d890c25cb56b5a07c5e0acd0e 0ad2a7081ff475ce3a2068fe69547248166c0fd39f26fbf03f2ac5db073a16cf Loading...

	55100-55100.xyz/	3.5 kB	2023-10-24	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 11:42:08 Last Seen2024-04-29 19:52:04 Times Seen2826 Hash 7932637ac9b0a1125acfaeffa837b6af 01107a42cef642f68e70ef30502ecb6c0de6a0d6 f938651bd7efeb3c523dcca3df1c9a0cc63b12f604816c8e49636fda5b1b1c7e Loading...

	55100-55100.xyz/	2.0 kB	2023-11-22	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 16:18:01 Last Seen2024-04-29 19:52:04 Times Seen2055 Hash dd4934ec50598a49950c57836d268ba9 9830d9f40b0baf411ea1e7b7a4b65675cf35ae04 89e8ae92a48e530a676704a7858edcc65fdd1488e39280ba8da4cb80dc5729d5 Loading...

	55100-55100.xyz/	6.0 kB	2023-08-02	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-02 04:42:13 Last Seen2024-04-29 19:52:04 Times Seen4245 Hash e6ea297058f6d52d83390d9ea7f914aa 349df987c3c4c50687d993b31f83cfea7f796730 2f21ca2376a9112f70c12ecc46d75ff792b067f5edceae5ea06011c13cf14e56 Loading...

	55100-55100.xyz/	390 B	2023-04-05	2024-04-29
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-04-29 19:52:04 Times Seen6312 Hash 4e6bbb84979a27014e74be230fe8440f aafe0c1dba07e91354abfb25d154c0acbed24d61 03e9af072f4db23c6c6cd74a89c796a3c764731da4734682f3ccfc07e0e54e74 Loading...

	55100-55100.xyz/	728 B	2023-10-16	2024-04-28
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-16 02:24:16 Last Seen2024-04-28 18:06:02 Times Seen157 Hash 07f0aa64d54139eb046047ca794c5d50 f5f2630c265d92322ec15e4f3ce27d407881d4da 03c101b9202afa880d2a9aa1bc4c0fd3564dd30519570d8521deded0a6b91cbc Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.super-marquee.js	4.4 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.super-marquee.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen12791 Hash f77d83590bc0a69298f2fbcc5d9911cd 1d6aa25d7052f53ad0181385e5efe72f224bbdb9 1d042b9441e860ddcc01b9e9e5e8d354121ee0e31b47f6e18a321e2e633d22e7 Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/moment.js	117 kB	2023-07-29	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/moment.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-29 10:21:40 Last Seen2024-04-29 19:52:04 Times Seen8703 Hash 36c8f828395a9395549bd6e7307cb7e9 f30a4961558e2d3d4405e7d93aa28fdb63245e78 5d5e32fa1e06a0bc9396f349d142ad248e82086543e438c890e43f41e692db33 Loading...

	55100-55100.xyz/	3.3 kB	2023-10-31	2024-04-28
Pretty URL 55100-55100.xyz/ IP 172.67.159.225 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-31 20:53:34 Last Seen2024-04-28 18:06:02 Times Seen142 Hash cb017848a1a5deb25786ff921148359f 9a67b3babbffc6ac95d0b034a7f6235b3e628d0a f0549ecb0e944a2f63572302ef3d553f56f8db564d87720bb1f9498955b5d40d Loading...

	brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/PopUp.js	2.1 kB	2023-03-07	2024-04-29
Pretty URL brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/PopUp.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-04-29 19:52:04 Times Seen12794 Hash 07864ad2e2759d53f8f2f14dd4295bd9 95144219e2eb702c4c4a707c3622b086876cf41c 871bf30791bb89605b61cea815c3786246274b65ede3b8a8b8c2dd9244cfa89d Loading...

HTTP Transactions (138)

URL IP Response Size

55100-55100.xyz/ftl/commonPage/zh_CN/pubads/images/ads1.png

172.67.159.225

200 OK

12 kB

URL GET HTTP/3
55100-55100.xyz/ftl/commonPage/zh_CN/pubads/images/ads1.png
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
PNG image data, 165 x 165, 8-bit/color RGBA, non-interlaced
Size
12 kB (11893 bytes)
Hash
b27e85b76f1b3dcdd4d98c789e51cfd9
ba8ec058785fd8a0e1405d6643175cd7cf92df28
01cf3c6ca09d7b6003faf27cdf6ff31dc52ec67f73070a6c81bfcb50b7b9ea4c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ftl/commonPage/zh_CN/pubads/images/ads1.png HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:22 GMT
content-type: image/png
content-length: 11893
last-modified: Fri, 20 Sep 2019 08:35:27 GMT
etag: "5d848f4f-2e75"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 04:48:22 GMT
cache-control: max-age=86400
x-cache: HIT
uuid: -
out-line: gb-source-137
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GrI5ZgHl779PAcf3UBZt543qN9O2cX7qk5CRjndk9EH6I7vMB7fpQA6lkWryqujpuBX8wVvHvjGeBAj%2FPoZAunShWP6uqrrcCkm8lB%2FxvnofRlDsZxZYMkB4xfNUNmQzkwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518ae8fa7ab4ff-OSL
alt-svc: h3=":443"; ma=86400

55100-55100.xyz/ftl/commonPage/zh_CN/pubads/images/ads2.png

172.67.159.225

200 OK

19 kB

URL GET HTTP/3
55100-55100.xyz/ftl/commonPage/zh_CN/pubads/images/ads2.png
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
PNG image data, 165 x 164, 8-bit/color RGBA, non-interlaced
Size
19 kB (19388 bytes)
Hash
b258a08f90e63c832cc32e4397aadb2e
7cc14a784d45d49b2177392acc86e363b8dc62d0
13e5348ceb8b66112851439602497e44bcb574bf16794598bce46340f784d533

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ftl/commonPage/zh_CN/pubads/images/ads2.png HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:22 GMT
content-type: image/png
content-length: 19388
last-modified: Fri, 20 Sep 2019 08:35:27 GMT
etag: "5d848f4f-4bbc"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 04:48:22 GMT
cache-control: max-age=86400
x-cache: HIT
uuid: -
out-line: gb-source-137
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HQOYVJtJ%2FqHxz4T7gzw4QJHO%2FyCvHa47sl6xOZ6zVfaKgq0J2tb8i24rVIK6h%2B8wyvq8Qze5gOxtEPEAuV2SRmhRJ%2F0g4Sc5GwTnwVnGAOtMR13tOp1gKhRpF4cYdqKNgxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518ae8fa7cb4ff-OSL
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-base.css

103.198.200.1

200 OK

17 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-base.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (12023)
Size
17 kB (17110 bytes)
Hash
5467e94a0a94d39cf935bbf4425b984a
82f7b89fd9e975a2e47bfc1d626e881379b97220
5b4a9404f015f018f983fec18ad9f8b715b9c4f9fce49a46b4a4f7c4713f823e

HTTP Headers

GET /ftl/commonPage/themes/gui-base.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 17110
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: W/"65d45763-1456b"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Tue, 20 Feb 2024 07:40:19 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 0d5235c92a7dcc3508b91fed444c8371

brhrjf.gaokejd.xyz/ftl/bet365-1761/themes/style/common.css

103.198.200.1

200 OK

4.2 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/themes/style/common.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (311)
Size
4.2 kB (4200 bytes)
Hash
e27166d661e2bf5353e49a6171edd474
8111915c0a316c8532f6547c458bb97cc4ca665a
92513e519e9e247930c91d719e6cfa16352400c09bfd8921460421ad02ae055a

HTTP Headers

GET /ftl/bet365-1761/themes/style/common.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 4200
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: W/"652f38c4-4d04"
Date: Sun, 17 Mar 2024 09:50:03 GMT
Last-Modified: Wed, 18 Oct 2023 01:45:40 GMT
Expires: Tue, 16 Apr 2024 09:50:03 GMT
Age: 2573900
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: ba3f5175624b0f6788111e2bb9cf3b5f

brhrjf.gaokejd.xyz/ftl/bet365-1761/themes/style/bootstrap-dialog.min.css

103.198.200.1

200 OK

625 B

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/themes/style/bootstrap-dialog.min.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
625 B (625 bytes)
Hash
633098d68444fae4feec36e757a6498c
83244d45a17b6ba8fbf67c41b2ce4e2322db8421
7fd1c34d205f2165ee1b3cc3c2fe54af6f115c58bbd849907c3cf2be6814b159

HTTP Headers

GET /ftl/bet365-1761/themes/style/bootstrap-dialog.min.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 625
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"651e5941-adc"
Date: Sun, 17 Mar 2024 09:52:25 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:25 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 4e95843e6855c7bebd1bc470b2878e1f

brhrjf.gaokejd.xyz/ftl/commonPage/js/float.js

103.198.200.1

200 OK

1.9 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/float.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
1.9 kB (1929 bytes)
Hash
829af863b0cdc4a603919824ae046299
1d417b1553e4ecb7125ebf2005b74255291fbf73
1dbe4afbc9ed220c08b9e95577b56f83e2e8e0f7620c5dc18266bb325e5bb271

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/float.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 1929
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"612747ba-1b2f"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Thu, 26 Aug 2021 07:50:18 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 853241cfc432d82dacb39d32c83bc69a

brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-skin-default.css

103.198.200.1

200 OK

6.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-skin-default.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (7014)
Size
6.3 kB (6253 bytes)
Hash
4f6eba52b6bdba2bd8154d39c61fcaab
11a91e977ab64175dc2ec233d45c6cf9d34798b0
b4ae8f84403e1e8ea7f75cac8491e461ac6e5524260a04d772d53dd912f8e53a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/gui-skin-default.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 6253
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: W/"64ad1569-7b6e"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Tue, 11 Jul 2023 08:40:09 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 363760352fc098128cdd0697bdda0031

brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-layer.css

103.198.200.1

200 OK

6.9 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-layer.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (489)
Size
6.9 kB (6923 bytes)
Hash
858eefc3fa70af7d0115c901908471f5
29c181bbbc09a424f7de7cb57629bd8a9e3c679a
9f6a77c93f998e065f1ed52eb9943a3c560a50366bba2c8a34a4a1223c793caf

HTTP Headers

GET /ftl/commonPage/themes/gui-layer.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-base.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 6923
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"64ddd5e1-c760"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Thu, 17 Aug 2023 08:10:09 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 0d627bd9bbbc53298f7a41efd3bb0f5b

brhrjf.gaokejd.xyz/ftl/commonPage/themes/hongbao.css

103.198.200.1

200 OK

5.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/themes/hongbao.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (336)
Size
5.7 kB (5666 bytes)
Hash
499a3a64bcf22609681f5337a6360c80
fc05a8a391c8375ea4e47183eca56a18bed8fca7
5339bf22971b6400e64154decc06b84fd4be337c2758cc7ca565756c92c97894

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/hongbao.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-base.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 5666
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"64252e4f-d530"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Thu, 30 Mar 2023 06:38:07 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 35a7e046dbde6debf16fba5a1da05535

brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/CometMarathon.js

103.198.200.1

200 OK

3.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/CometMarathon.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
3.3 kB (3316 bytes)
Hash
3b4680db1e065116488f065419ca9f58
6c646601c5656ff6cb1fdf9d5b95823f41e9bcfa
e2bfb9fc21f2a1a6e33c7c5ed20de13ef2ef4bcf266aa4b2e6f2fee06f8f4eaf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/websocket/CometMarathon.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 3316
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"6260ddd4-2f13"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Thu, 21 Apr 2022 04:30:12 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573756
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: e866b82e505d8f03ed8a12db6af20f46

brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/Comet.js

103.198.200.1

200 OK

4.0 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/Comet.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
4.0 kB (4031 bytes)
Hash
4de3e8bcf2f02d60519ca0d3584d3b8e
6323c2bf18b1bbf968e164bdf2e58d7677f67f8a
6cf6e96f51f13834e233bee9a9040f6eff70601dc0b755e60885b20550b35a9f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/websocket/Comet.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 4031
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"60f60fb5-43bc"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Mon, 19 Jul 2021 23:50:13 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573756
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 16daf3e3f309bfd0a0a3b89e9ea4ad5d

55100bet.com/mobile-client/v5/index.html?td_channelid=1761

104.21.88.16

301 Moved Permanently

34 kB

URL User Request GET HTTP/2
55100bet.com/mobile-client/v5/index.html?td_channelid=1761
IP
104.21.88.16:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subject55100bet.com
Fingerprint57:2C:6A:24:96:C0:1E:AA:C6:0F:67:9A:88:47:3B:A5:E4:81:23:22
ValiditySat, 16 Mar 2024 16:16:30 GMT - Fri, 14 Jun 2024 16:16:29 GMT

File type
gzip compressed data, from Unix
Size
34 kB (33545 bytes)
Hash
ddc1e8fce07f211afd9c03035149256d
bb86a4eed0e665d56cf8f4b211556f6876f7fda0
a4fe9a045492402a80e14d3821974814dbfc12f3f435fb448356ed97ce66a81a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mobile-client/v5/index.html?td_channelid=1761 HTTP/1.1
Host: 55100bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 16 Apr 2024 04:48:20 GMT
location: https://55100-55100.xyz
cache-control: max-age=3600
expires: Tue, 16 Apr 2024 05:48:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4zxPR4Mfr%2BI0lcpVG84duAU6IWqjaGIhu0bIORFdpcI%2Bib3r19RpLF9rFY%2FCHgr5JHmMKcgiPdYCDUgPSG6MPU5Qa9IVnOUvrKlqPwJviZqFGMlbc0OjE42jmbr7JwI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87518ae32e9856ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/PopUp.js

103.198.200.1

200 OK

797 B

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/websocket/PopUp.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
Unicode text, UTF-8 text
Size
797 B (797 bytes)
Hash
07864ad2e2759d53f8f2f14dd4295bd9
95144219e2eb702c4c4a707c3622b086876cf41c
871bf30791bb89605b61cea815c3786246274b65ede3b8a8b8c2dd9244cfa89d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/websocket/PopUp.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 797
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"6260ddd4-828"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Thu, 21 Apr 2022 04:30:12 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573756
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: b4b087a7997f7b81f752ccf8706aca8c

brhrjf.gaokejd.xyz/ftl/commonPage/js/lazyload.js

103.198.200.1

200 OK

2.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/lazyload.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
2.7 kB (2731 bytes)
Hash
58f1a7fa1a19b0e5ad0a5bad974b98cf
6963ce7378e6c992de06e7e77d79432a0d38f54d
fb513dceb383ebeda507b1e1cc89ab4d73de071d8aa4fc78bc22f66e7fc5a7e4

HTTP Headers

GET /ftl/commonPage/js/lazyload.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 2731
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"64d05f66-2f79"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Mon, 07 Aug 2023 03:05:10 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573758
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: a2e1cc1f35d5cab92e2b39677d1f8887

brhrjf.gaokejd.xyz/ftl/commonPage/js/bootstrap-dialog.min.js

103.198.200.1

200 OK

5.0 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/bootstrap-dialog.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, ASCII text, with very long lines (20132), with no line terminators
Size
5.0 kB (5007 bytes)
Hash
5ce8851dc823429a42ab6147554403cc
28f381f0e0aa4f5d56690e65723bd97fb59a38e6
dd1edf5e54071903c4c1e81e33636444899d645df6b18bad22249da07f91c811

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/bootstrap-dialog.min.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 5007
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"5d848f4f-4ea4"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 4762c26150bbafaaca653f6beca9ce52

brhrjf.gaokejd.xyz/ftl/commonPage/js/layer.js

103.198.200.1

200 OK

7.6 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/layer.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (21922)
Size
7.6 kB (7599 bytes)
Hash
c42797aecccd5494e2b747cedf1a890b
b9e06a6d245b6a3c87f2753db0c9c9aa020640b2
56feab66e10b4718de666fc63941b4f36a5e553e8887d663e137e635add8beb3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/layer.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 7599
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: W/"5d848f4f-55f6"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: fb4fdbfce8c168eb80dc82b7b9a3e67d

brhrjf.gaokejd.xyz/ftl/commonPage/js/gui-base.js

103.198.200.1

200 OK

16 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/gui-base.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (11056)
Size
16 kB (15779 bytes)
Hash
4007cfe0a95df1d6a9f4252e636f995f
b0f9a2ad5c49b9b50ac5d025c8e9ce803eb5d7a8
4370313fa317e44140f85bba141ec24c2c9ef674593779d3349d2a44001699d0

HTTP Headers

GET /ftl/commonPage/js/gui-base.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 15779
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: W/"64ddbaed-ee5c"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Thu, 17 Aug 2023 06:15:09 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573756
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 270fddb1d41fb4a7ee328b57822437bc

brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.super-marquee.js

103.198.200.1

200 OK

1.4 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.super-marquee.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, ASCII text, with very long lines (4433), with no line terminators
Size
1.4 kB (1421 bytes)
Hash
f77d83590bc0a69298f2fbcc5d9911cd
1d6aa25d7052f53ad0181385e5efe72f224bbdb9
1d042b9441e860ddcc01b9e9e5e8d354121ee0e31b47f6e18a321e2e633d22e7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery.super-marquee.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 1421
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: W/"5d848f4f-1151"
Date: Sun, 17 Mar 2024 09:52:23 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:23 GMT
Age: 2573761
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: 791624735624a3a7eba3a2c3c729a55c

55100-55100.xyz/ftl/commonPage/images/partner/partner-hongtu-white.png

172.67.159.225

200 OK

75 kB

URL GET HTTP/3
55100-55100.xyz/ftl/commonPage/images/partner/partner-hongtu-white.png
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
PNG image data, 4964 x 72, 8-bit colormap, non-interlaced
Size
75 kB (74604 bytes)
Hash
20750d3161559951729e005cf988bb1f
67ac93184c3259c55ea7e26d6f8716525946223a
56af3a9fbc08041521e9f381949bfc2e9548b013798bac0b2d629ab3939d8913

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ftl/commonPage/images/partner/partner-hongtu-white.png HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:24 GMT
content-type: image/png
content-length: 74604
last-modified: Mon, 08 Apr 2024 09:30:15 GMT
etag: "6613b927-1236c"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 04:48:24 GMT
cache-control: max-age=86400
x-cache: HIT
uuid: -
out-line: gb-source-137
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yStI5bZSHfgP1NmBYz9Z3qy9%2FzSGkzQ0WgiyMsSAL%2FQJ%2Fs%2BbtItjFzJXUtEGjAq8rtlCNs3WWgcEaDMyYosaXOYgzHomRxl5HteacDZYhowv4owN9hjCpTlxzsFEZycZlXQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518af8fdbcb4ff-OSL
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.nicescroll.min.js

103.198.200.1

200 OK

17 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery.nicescroll.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, ASCII text, with very long lines (64577)
Size
17 kB (17446 bytes)
Hash
b5bc8cd626b389bde727a91e6ce79436
3df6c39300ac286cf596b3bda273cb39ff825429
a1eb48eeb3b3f2ba41940d3041464f0b386b7a7c4a8acb42f3017e691f4b116e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery.nicescroll.min.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 17446
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"5d848f4f-fc8b"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
Content-Encoding: gzip
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: d148fe9b17b2182668d96f6ec0f2243a

brhrjf.gaokejd.xyz/ftl/commonPage/js/idangerous.swiper.min.js

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/idangerous.swiper.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, ASCII text, with very long lines (32034)
Size
12 kB (11957 bytes)
Hash
f15409fb02c527ce1f66a2fd3c4aa0e9
1e1e1bcc0f49e99e14ba34991cffe0745178d302
1a1b5d3d6fbfc28abe37a668abd59494208c63c5f0b5d040cf4bbbd137f87c27

HTTP Headers

GET /ftl/commonPage/js/idangerous.swiper.min.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 11957
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"64d5b951-b083"
Date: Sun, 17 Mar 2024 09:52:25 GMT
Last-Modified: Fri, 11 Aug 2023 04:30:09 GMT
Expires: Tue, 16 Apr 2024 09:52:25 GMT
Age: 2573758
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: c7b02fe8c2c49748ae5fcf8bebbae04d

brhrjf.gaokejd.xyz/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js

103.198.200.1

200 OK

7.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (27669)
Size
7.7 kB (7746 bytes)
Hash
f8c2b37c1dc626eede6a2e3e37aa4504
d4e8419497caa64c8a850ac4808dddb89b5eeb3f
728d63b799ab3d9bee5e987ad13f71aeb9d30ff78ed552c7edc425531c9c0f2a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 7746
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"655579ca-6caf"
Date: Fri, 12 Apr 2024 08:31:04 GMT
Last-Modified: Thu, 16 Nov 2023 02:09:14 GMT
Expires: Sun, 12 May 2024 08:31:04 GMT
Age: 332240
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: 2a9e5c8acd4322e0d3d6776346c55340

brhrjf.gaokejd.xyz/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js

103.198.200.1

200 OK

4.1 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (14855), with no line terminators
Size
4.1 kB (4126 bytes)
Hash
4fe7dadf050dad2dcfd386d21b880281
07e7feb8dc9309fe66d86d7a9e27f8efd32ab0bd
aa891aafe8e98e1e15d81b2b116e6c3808d0bbbec56cd24818e2e7ac911877c9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 4126
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: W/"655579ca-3a09"
Date: Fri, 12 Apr 2024 08:31:41 GMT
Last-Modified: Thu, 16 Nov 2023 02:09:14 GMT
Expires: Sun, 12 May 2024 08:31:41 GMT
Age: 332203
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 41761d867b78e248c0581229ff2dfa50

brhrjf.gaokejd.xyz/ftl/commonPage/themes/hb/css/pc.css

103.198.200.1

200 OK

911 B

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/themes/hb/css/pc.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
911 B (911 bytes)
Hash
1da71520b7a0a61526a8fa8d0feb40d1
ba1bf69dad8783563328054cae58ccabf1b00829
5eb4d895bcb33061cda238c8ff4985ede69a866819b980c732cf3802ec101e8d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/hb/css/pc.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 911
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"5d848f4f-b5d"
Date: Sun, 17 Mar 2024 09:52:28 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:28 GMT
Age: 2573756
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 9915b95fc1ce27309d63b11d14b8cf35

brhrjf.gaokejd.xyz/ftl/commonPage/js/moment.js

103.198.200.1

200 OK

27 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/moment.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
27 kB (26968 bytes)
Hash
36c8f828395a9395549bd6e7307cb7e9
f30a4961558e2d3d4405e7d93aa28fdb63245e78
5d5e32fa1e06a0bc9396f349d142ad248e82086543e438c890e43f41e692db33

HTTP Headers

GET /ftl/commonPage/js/moment.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 26968
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"64b633ca-1cab9"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Tue, 18 Jul 2023 06:40:10 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573758
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 5f360644bca88dc195dbd9ce8773f111

brhrjf.gaokejd.xyz/061410/rcenter/common/static/js/gb.validation.min.js?v=1712742347025

103.198.200.1

200 OK

5.2 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/061410/rcenter/common/static/js/gb.validation.min.js?v=1712742347025
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (801)
Size
5.2 kB (5207 bytes)
Hash
30be40425b37bee4158676082cef1f4d
b41ed46721936872d5d7eadf303ce22938240d2a
f5ca5f543161a6b37ca2bf26c4f3c630fe08323108c77dac1fba6ce755ce6f47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/static/js/gb.validation.min.js?v=1712742347025 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 5207
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: W/"633d510e-7fd7"
Date: Fri, 12 Apr 2024 08:31:45 GMT
Last-Modified: Wed, 05 Oct 2022 09:40:30 GMT
Expires: Sun, 12 May 2024 08:31:45 GMT
Age: 332199
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 2451e65c83ed3902ba45803379e96571

brhrjf.gaokejd.xyz/061410/rcenter/common/static/css/gb.validation.min.css

103.198.200.1

200 OK

3.8 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/061410/rcenter/common/static/css/gb.validation.min.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (2295)
Size
3.8 kB (3788 bytes)
Hash
f00ce0554efc5adea6a8e02d5e501cad
388840e376568b37ac0103aa5c87a268778db67a
3043f42fdd97ec607648da79c3abfa6f364404c7594143227c2541d1f0ac6069

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/static/css/gb.validation.min.css HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3788
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"633d510e-2d52"
Date: Fri, 12 Apr 2024 08:30:35 GMT
Last-Modified: Wed, 05 Oct 2022 09:40:30 GMT
Expires: Sun, 12 May 2024 08:30:35 GMT
Age: 332269
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: ae2bd63607c048ce35ae1f95a7889447

brhrjf.gaokejd.xyz/ftl/commonPage/js/theme/default/layer.css?v=3.1.0

103.198.200.1

200 OK

3.1 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/theme/default/layer.css?v=3.1.0
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.1 kB (3111 bytes)
Hash
5cf9259b7dd27aacd46161ec23d261cf
ba0c399616a5ae9cdd8aec5b76ba4aae4822367c
7f73a66b3a9a38576d124b6243a8984d795028e3493b8fa3f688d8dbe10cbccc

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/theme/default/layer.css?v=3.1.0 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3111
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"6131d862-48e4"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Fri, 03 Sep 2021 08:10:10 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: 018f474907415a5b5c0eab5f0f6177e6

brhrjf.gaokejd.xyz/ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg

103.198.200.1

200 OK

6.9 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 168x168, components 3
Size
6.9 kB (6871 bytes)
Hash
99be4bfe275809d4e436b77c991b1381
54eadee77394eb62ccf377ae68d9f49acb5b6785
4ca35131972acdf420b94f0d64a5a0f504eb5a7b0e6fb7b8b467916a12aae37d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 6871
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "5d848f4f-1ad7"
Date: Sun, 17 Mar 2024 09:52:27 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:27 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 5a8c11ae26b871fd0ae1fc30cdea5529

55100-55100.xyz/mobile-api/v5/origin/getFloat.html

172.67.159.225

200 OK

7.0 kB

URL POST HTTP/3
55100-55100.xyz/mobile-api/v5/origin/getFloat.html
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
7.0 kB (6956 bytes)
Hash
011ad013db5fe1faeb910108ded58b10
877b9729b20850a697f71348aef1d10d5b55828e
1329377c5e7ec89fda4f58211d2658d3da765d53a9e2f35e2831ed6004ddf68c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /mobile-api/v5/origin/getFloat.html HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 68
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:25 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
set-cookie: route=61ee84c9f68236309da705261df10e5a; Path=/
access-control-allow-origin: https://55100-55100.xyz
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-headers: Content-Type,Access-Token,X-Requested-With
content-disposition: inline;filename=f.txt
sub-sys: mobile
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-1713242905d36e
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1a%2FqDW62PWlRGQudY6%2B0w1o9f71Ic4CN7r3B18FvsDwusO%2F4IlKTxZy%2F3krpKsOtGsNo3vKHuqWhUpbaLBthshMMtIhmwnHBIBMTqdz7OSOvo%2BoGCjTmwr4qJvBpqngaEy0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518afdf931b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

55100-55100.xyz/index/getUserTimeZoneDate.html?t=lv1wlax5

172.67.159.225

200 OK

2.1 kB

URL GET HTTP/3
55100-55100.xyz/index/getUserTimeZoneDate.html?t=lv1wlax5
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
2.1 kB (2126 bytes)
Hash
55454ff7cb46ce4d99f0e05bb210317d
68dca698b10155656bee3692b290b742a2e6734d
cd6cc2cfb10712b44c9527c6bb58132615399e69fd58ee944586985daea5ede7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index/getUserTimeZoneDate.html?t=lv1wlax5 HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:26 GMT
content-type: text/html; charset=utf-8
content-disposition: inline;filename=f.txt
sub-sys: msite
cachettl: 3
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-17132429060061
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2BZu%2FBhZuhvKVqXmqJyR06eoWzzXL8NddXF0js8ptKGkxXho3OF36mZ4sBXNWnu%2F1wTKU%2BGbCcVyGItLjuHAjUH7z9J2r9RXb5SQaPINxbEEuY28tGLMDPb3zA2ptwsCO9k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b041d5bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10032/1704450151823.jpg.base64

103.198.200.1

200 OK

202 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10032/1704450151823.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
202 kB (201677 bytes)
Hash
e68d4cf4b366ddbbc83ee0c001b4b5f6
f2228e1702a78ce91e6949f4153a97239a276dc3
023066eb14f4b1fab2793aa9ff2ef2ef970499eeaac4573cfb04b1fc48d5e99a

HTTP Headers

GET /fserver/files/gb/1761/carousel/10032/1704450151823.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 201677
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6597d867-313cd"
Date: Mon, 18 Mar 2024 03:14:33 GMT
Last-Modified: Fri, 05 Jan 2024 10:22:31 GMT
Expires: Wed, 17 Apr 2024 03:14:33 GMT
Age: 2511234
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: 3c287389a1816917b32d249df78ece18

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/all_bg.jpg.base64

103.198.200.1

200 OK

345 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/all_bg.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
345 kB (345171 bytes)
Hash
20d063fb55cf6dd6c784f84ae5b3bd18
0840181a044dcc8c3022cbfbe10a686cfd1f5f7e
cb4b1b696c9135571ec2a2d49b03ef3c16a9fee93620509e455a7b9175ab9443

HTTP Headers

GET /ftl/bet365-1761/images/all_bg.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 345171
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-54453"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: caa48db1a615ea60e5d4e82b54673ad9

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10025/1699797435278.jpg.base64

103.198.200.1

200 OK

172 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10025/1699797435278.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
172 kB (171549 bytes)
Hash
ab72c5d60ca98f8d7fa0458899d91343
048dd73ac3f67a0709b3941424033a598eee446b
61daf2229d51eb0c9578044f5ee2f82b721e04cbc7a2216f3efc77bb025a1281

HTTP Headers

GET /fserver/files/gb/1761/carousel/10025/1699797435278.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 171549
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "6550d9bb-29e1d"
Date: Mon, 18 Mar 2024 03:14:33 GMT
Last-Modified: Sun, 12 Nov 2023 13:57:15 GMT
Expires: Wed, 17 Apr 2024 03:14:33 GMT
Age: 2511234
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 3a1d424ff4377c0fe0ff49812e308067

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10019/1700636690750.jpg.base64

103.198.200.1

200 OK

235 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10019/1700636690750.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
235 kB (234937 bytes)
Hash
9f7870855e42e905cc9e1fedf975c3b1
073f4353c2f33567c5bb6f6d0c2acb2ff4683874
0a46c15b36d591a87b73f6a47c1f9bb612cb14873552d135cf8d1cc35d6bfa69

HTTP Headers

GET /fserver/files/gb/1761/carousel/10019/1700636690750.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 234937
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "655da812-395b9"
Date: Mon, 18 Mar 2024 03:14:34 GMT
Last-Modified: Wed, 22 Nov 2023 07:04:50 GMT
Expires: Wed, 17 Apr 2024 03:14:34 GMT
Age: 2511234
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 064e0b4495595ab880a59da121af3f79

55100-55100.xyz/favicon.ico

172.67.159.225

404 Not Found

6.4 kB

URL GET HTTP/3
55100-55100.xyz/favicon.ico
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
6.4 kB (6440 bytes)
Hash
597ba0d4396e9c906225140ce907092c
28ae2ba65ccdb583d79f85b8cc9509fae697493b
ee1a27178227546d3dcc49e611a6d72e4f1c30080ee4493ae4085b58a49e28e6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 04:48:26 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jFiKZfTxX07aqh9sFiIK4wrhXNK5t2nEE8nCfBHx0tiOUHVIJYaFmjsMa4vXHzmDGpFYwi7WsRadNBL%2FEJQnuNYuPXR8sLrzGCyZH7c3voO6zTyGjJhG%2Be%2BG7h73lZI7Eto%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518b05ce6bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10013/1696759154781.jpg.base64

103.198.200.1

200 OK

204 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10013/1696759154781.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
204 kB (203925 bytes)
Hash
b4ffea1390e6142b1f37e91df5fb79c7
3833e7513f89d565145b286124bd1baec52aa72f
2e0a949f3561242bbd0a8d571bc1ce8b7a801a3a1929a3019319419816a2e31e

HTTP Headers

GET /fserver/files/gb/1761/carousel/10013/1696759154781.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 203925
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "65227d72-31c95"
Date: Mon, 18 Mar 2024 03:14:35 GMT
Last-Modified: Sun, 08 Oct 2023 09:59:14 GMT
Expires: Wed, 17 Apr 2024 03:14:35 GMT
Age: 2511234
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: 61987c4078cc547e17a144a856d12357

55100-55100.xyz/mobile-api/v5/chess/getActivityMsg.html?function=sign

172.67.159.225

200 OK

210 kB

URL GET HTTP/3
55100-55100.xyz/mobile-api/v5/chess/getActivityMsg.html?function=sign
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
210 kB (210442 bytes)
Hash
5d062bc93ef9d75b27e852ed745d170f
1ecf82a0589608b26ee6a29b2cc3229916596626
26e77aa8c61c230db13c8fd74d4ab3adf8be54c3192c4e16f94e633a71efc2e1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mobile-api/v5/chess/getActivityMsg.html?function=sign HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:27 GMT
content-type: text/html;charset=utf-8
set-cookie: route=181dd5ae39c7acd81ad5ca039c14a954; Path=/
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-headers: Content-Type,Access-Token,X-Requested-With
content-disposition: inline;filename=f.txt
sub-sys: mobile
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-17132429069b75
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pjtc0QH%2BIf0I8C7Ppd5JuULC0VI%2BGI7Onh2NVnUvRnJDmexQc9fOmUBrNzHIwQ%2F3aeWm71%2FvshodPWa43hQvE%2BvaQvXNEcocXxPCHIOkcVUmAQ6QxaheT6kvhEYMeFUzmvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b078f9bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10015/1696759239453.jpg.base64

103.198.200.1

200 OK

199 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10015/1696759239453.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
199 kB (199445 bytes)
Hash
de834af21f3ec7d6690b01b01fb66c74
7eef7e0f74364b5e78c25b06b71a667ceb77d3e6
89371e2d21dac4d0b7ed109347b761c0e11e8a5179dcfc192cef5344b6172d27

HTTP Headers

GET /fserver/files/gb/1761/carousel/10015/1696759239453.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 199445
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "65227dc7-30b15"
Date: Mon, 18 Mar 2024 03:18:25 GMT
Last-Modified: Sun, 08 Oct 2023 10:00:39 GMT
Expires: Wed, 17 Apr 2024 03:18:25 GMT
Age: 2511004
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 439e4ac5031129c6e722ee014dce56f3

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10016/1696759307522.jpg.base64

103.198.200.1

200 OK

117 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10016/1696759307522.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
117 kB (116745 bytes)
Hash
11eaad9cf48937b1944bc529a74330fc
3a608b6325a88722d4716c94005c8592d8fca6b8
20d3edd57a3cee9f1c638e8cb9d38596b1037afac13beb1a3caa75c34e88e623

HTTP Headers

GET /fserver/files/gb/1761/carousel/10016/1696759307522.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 116745
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "65227e0b-1c809"
Date: Mon, 18 Mar 2024 03:20:44 GMT
Last-Modified: Sun, 08 Oct 2023 10:01:47 GMT
Expires: Wed, 17 Apr 2024 03:20:44 GMT
Age: 2510865
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: a78593a4a6f363de0f0a4464e88900fc

brhrjf.gaokejd.xyz/fserver/files/gb/1761/Logo/405/1696591118080.png.base64

103.198.200.1

200 OK

11 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/Logo/405/1696591118080.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (10561), with no line terminators
Size
11 kB (10561 bytes)
Hash
dcb21e1cb4345883769f1c63e4723e63
50dfc5668158f5bdf69aebcdae19949379a9a769
6d138822885c4667a8c1530e030433b11856431043db5d2c305adec55bf22a37

HTTP Headers

GET /fserver/files/gb/1761/Logo/405/1696591118080.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 10561
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651fed0e-2941"
Date: Mon, 18 Mar 2024 02:59:18 GMT
Last-Modified: Fri, 06 Oct 2023 11:18:38 GMT
Expires: Wed, 17 Apr 2024 02:59:18 GMT
Age: 2512152
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: ee2878506b4b7346c696103593ffdeae

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_2.png.base64

103.198.200.1

200 OK

4.4 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_2.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
4.4 kB (4398 bytes)
Hash
df54bc05692ebeffa0ae1824e45d7faf
f24c5b93e65ff4072cb1c8b93578af6e3cca0c7a
bf30381b0583165a21e2f7fb6ad4e4a60067f4bf932d243025708844f17353e6

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_2.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 4398
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-112e"
Date: Sun, 17 Mar 2024 09:55:15 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:15 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 2a7d12efe253bb7ffabee5b7c64108fc

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_0.png.base64

103.198.200.1

200 OK

7.6 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_0.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
7.6 kB (7583 bytes)
Hash
897179c2412a00bc172e65f68fb625f5
4a2964c8ed541244302d701b0f3cb214314109b4
95ccfe8219faf97fef25a6ee8aaaac699043a1a7a5f320b432429b6563db0aca

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_0.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 7583
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-1d9f"
Date: Sun, 17 Mar 2024 09:55:15 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:15 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: 6fff991e58eefe9d7fcbd585f03b876d

brhrjf.gaokejd.xyz/ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png

103.198.200.1

200 OK

1.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1321 bytes)
Hash
a2e938202c0287b9c82461a6fd94dee9
b5e2adc7cb07c18a70a88af314e56b946ec1a1b6
df9ce20db277ad8302c704a73aff5024683a0d38aff0d3e7e884a67a24439936

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brhrjf.gaokejd.xyz/ftl/commonPage/themes/gui-layer.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1321
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "5d848f4f-529"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 47add2504f32aa4d93117eb16a749210

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_3.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_3.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
12 kB (12073 bytes)
Hash
4b38732c5b8de56052bccd81f71697b5
063b92c66472a8a8c2135d53bb329c58d92af8bf
57570201778aad64b8865048f4a05bc31b6d0192b2484fbb827cca5874ac5c3b

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_3.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 12073
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "651e5941-2f29"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573594
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 6b594e9d61e9ed734a35d9aec09e823a

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_4.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_4.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
12 kB (12021 bytes)
Hash
67c7e4ddec5ed1c7b19985ba79b009f1
c96f95e50ba328952e533bccbe3eedf7170c066f
56fb136669b7e18f22b5a33575d1873f1963a11e799eaccd6e296a7398d2b19a

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_4.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 12021
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-2ef5"
Date: Sun, 17 Mar 2024 09:55:15 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:15 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: 12d7c40eeacd1af2f33c205beb359e46

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_1.png.base64

103.198.200.1

200 OK

14 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_1.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
14 kB (14270 bytes)
Hash
3cbd8556f2eed77ba75bdce9565d6308
c7b5e7dd574369f29de7f5e126381f6ffce79f76
d865aea3e252342d2a644b53595df7b610369d5cda80f807cc455abdcbb18435

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_1.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 14270
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-37be"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573593
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: bce669b06dfe322159cb65c3198d28d8

55100-55100.xyz/index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion=

172.67.159.225

200 OK

11 kB

URL GET HTTP/3
55100-55100.xyz/index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion=
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
11 kB (10664 bytes)
Hash
866440b53a6c7f13189735817bc96e61
3e5e63776d7973b72249b22f16ef5b94fe28934d
1875e3e542f6e4a75683678309a93ed40e02093f72b97f9fdedfec68560394cb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion= HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:25 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: route=cff4f63a4f0402d67e06fc02582263f1; Path=/
content-disposition: inline;filename=f.txt
sub-sys: msite
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-17132429051808
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wYkhH%2F8WpEYN5OIPN1hD%2F1qxEAXfAoFYN0t%2B%2F%2FZ6TSC0wDQpX%2FM1jhbCfXImvlCFuf63rrOcUyPYf6XusV7dVLhlDM%2F6t6NsKHrms%2BFMkLkPDrXJpmmj%2F2xqa5Wi%2FMiICdE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518afec9bcb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_6.png.base64

103.198.200.1

200 OK

8.8 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_6.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
8.8 kB (8803 bytes)
Hash
3907667f97bf23dcf9392d85577f03e4
b1187b3f6b94b8a881788334f47dd22d4abacb99
3f80898035fdb5c5ab5c8518343384c4c5a9dc940ef4ac85c36323f45d52f0ee

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_6.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 8803
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-2263"
Date: Sun, 17 Mar 2024 09:55:15 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:15 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 5dfedae32d9c454c7a7444bc77456280

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_7.png.base64

103.198.200.1

200 OK

8.4 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_7.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
8.4 kB (8357 bytes)
Hash
32bfd94a4370db1703b0a0507dfa7974
82ca77e7881bd3423444c74490489f5690535ec9
45e7ff4a22dc48e6b8ed979a7b3193b441933bce13890eff13a23ff865e06f6c

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_7.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 8357
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-20a5"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573594
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: 3873bf3e0f691badf90eaa77e3f0ef26

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/hot_game_title.png.base64

103.198.200.1

200 OK

6.4 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/hot_game_title.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
6.4 kB (6359 bytes)
Hash
6b335204841cc0633cbbbbcee504ba88
5a3f59de9702a72da27a4dad7b3ecc555ddbe18c
123f6d232d9b5cad4e399570951b36989b2e045122a16727fcc8e4f353554ad9

HTTP Headers

GET /ftl/bet365-1761/images/index/hot_game_title.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 6359
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6528d986-18d7"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573594
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: ae69783356ce7f003326299a46a812b9

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_fish_42_5.png.base64

103.198.200.1

200 OK

31 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_fish_42_5.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
31 kB (30930 bytes)
Hash
f7252e16aa8585d8ec3c2d1b4a91c614
4edcb0e99a0ab7620557e24a0eeb9d0dc41583d3
40156cb38f2b2d9b1563ff20153cf7aa6d17625bed96afc8f7cae8e1d89c33b2

HTTP Headers

GET /ftl/bet365-1761/images/index/game_fish_42_5.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 30930
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "6528d986-78d2"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: abeb8681b0269c52ea967275f696d5cf

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_3.png.base64

103.198.200.1

200 OK

46 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_3.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
46 kB (45507 bytes)
Hash
0784410dfd931c2d015a1ec34284c4a4
57429cb871dfc4baa05d0e4e71287cd087ed5e1d
e8dc2df9c3db686d0ba0ba9a8479148aa89c88b62885537acd597014cfbf6172

HTTP Headers

GET /ftl/bet365-1761/images/index/icon_game_3.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 45507
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "6528d986-b1c3"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: 5c359e54dc8a3409c792966e195d9ec0

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_5.png.base64

103.198.200.1

200 OK

42 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_5.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
42 kB (41690 bytes)
Hash
a58b7a079de13e60b8aa06df0cc3ec17
aab1d3cc21ebeb0942065a117d91312419a07a6d
609a5f875cf524e3ebd00af6da3508efefb6e7e12b6f0146bed9e1a6a46c9267

HTTP Headers

GET /ftl/bet365-1761/images/index/icon_game_5.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 41690
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "6528d986-a2da"
Date: Sun, 17 Mar 2024 09:55:15 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:15 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: cb2005c88f7aa8d2fbc788ce5486279a

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_1.png.base64

103.198.200.1

200 OK

51 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_1.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
51 kB (51210 bytes)
Hash
1a3b7b872cfb9c0a73ec87d63ae2fd9f
510f79d200458d4d3e22e576809080b7a42d14a5
92be1132a53ddf570c7b7e54590265634403e40ab3ef727b8e9de1029e4bac21

HTTP Headers

GET /ftl/bet365-1761/images/index/icon_game_1.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 51210
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "6528d986-c80a"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 5a7d97d9fadf1e41fefc64b858559c44

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/1_9.png.base64

103.198.200.1

200 OK

67 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/1_9.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
67 kB (67120 bytes)
Hash
f81d8acb221080bc35f16df4cd7a1877
127c621a51785b98733e77028ff52cbac09bdb7c
15f33801348d49d77fba98d334733933a60c863840791417b5f611ded4911c01

HTTP Headers

GET /ftl/bet365-1761/images/index/1_9.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 67120
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6528d986-10630"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: a3bb0a61ba00a09ea57cc63c84d8aa68

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/3_108.png.base64

103.198.200.1

200 OK

68 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/3_108.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
68 kB (68056 bytes)
Hash
9c40f1f40e776696312f231f887a86a8
a6afaa9c18067db8d146184e469a06976e435650
94ae512150438d7fe23e4531179f59b82333b5cc57055b10c667a3dce9676f0c

HTTP Headers

GET /ftl/bet365-1761/images/index/3_108.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 68056
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6528d986-109d8"
Date: Sun, 17 Mar 2024 09:55:15 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:15 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 60470e42e618069cfeb1acb00917509e

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/download_apple.png.base64

103.198.200.1

200 OK

2.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/download_apple.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
2.7 kB (2651 bytes)
Hash
e6d65084111a2d0708bd539a1313343e
5b991e4fcbdd6f9acfc81227ceed12b67c4773a4
458990a9d9b52ff030cee8a53f3b97706febf696590d254b7c575531a281eaaa

HTTP Headers

GET /ftl/bet365-1761/images/index/download_apple.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 2651
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "651e5941-a5b"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 842383defa69169575df4d5233c7c46b

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title.png.base64

103.198.200.1

200 OK

5.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
5.3 kB (5326 bytes)
Hash
a8b13803719550021f910b2b073eb258
0a6b779a1d12c5a24d16e01757edea3e1c65c7ba
b884171fe2ccd46ae436b9674a86144fb072f4a6b680709e074441eb2c3d0fcb

HTTP Headers

GET /ftl/bet365-1761/images/index/services_title.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 5326
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "651e5941-14ce"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 7df2174e76c9d177e12117f10a48ab41

brhrjf.gaokejd.xyz/fserver/files/gb/1761/Logo/405/1696591118080.png.base64

103.198.200.1

200 OK

11 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/Logo/405/1696591118080.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (10561), with no line terminators
Size
11 kB (10561 bytes)
Hash
dcb21e1cb4345883769f1c63e4723e63
50dfc5668158f5bdf69aebcdae19949379a9a769
6d138822885c4667a8c1530e030433b11856431043db5d2c305adec55bf22a37

HTTP Headers

GET /fserver/files/gb/1761/Logo/405/1696591118080.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 10561
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651fed0e-2941"
Date: Mon, 18 Mar 2024 02:59:18 GMT
Last-Modified: Fri, 06 Oct 2023 11:18:38 GMT
Expires: Wed, 17 Apr 2024 02:59:18 GMT
Age: 2512153
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: d4469cf6e69ebb24eaf055a227214a22

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_4.png.base64

103.198.200.1

200 OK

62 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/icon_game_4.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
62 kB (61730 bytes)
Hash
f7a9518371813e5798fe14152fcee2aa
01da567f67d1e85ac723f190f65fbe168e29fd8b
319f48db80b80e4a28c20b9ed1f2fac00ff6b7f29be4a8a9bf8638520179512d

HTTP Headers

GET /ftl/bet365-1761/images/index/icon_game_4.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 61730
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6528d986-f122"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 8c0673c2d92907ad063f81765b02d521

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/icon_marquee.png.base64

103.198.200.1

200 OK

1.9 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/icon_marquee.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
1.9 kB (1921 bytes)
Hash
116830d924f20877f6f51c45deb2fdab
ee727352d629e0e0096e04cf671c1cec9b0feb66
0f9b7c24b6d441a58d3e3803f2cb8f34f43658b29f9825b21af100c447451d08

HTTP Headers

GET /ftl/bet365-1761/images/icon_marquee.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1921
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "651e5941-781"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573763
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: 333c1b144caee8a96c28ca72e0e8cad4

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/top_bg.png.base64

103.198.200.1

200 OK

2.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/top_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
2.7 kB (2675 bytes)
Hash
5d63dda023c61cc4e4dc5f9a4f00f8af
2d231822fef6a976e9a29be9dc81b09c4141e933
627b212a4dfcdddfd3a20504e4f33240a7dbb5a90a3149ae25b2f31dac29aa0a

HTTP Headers

GET /ftl/bet365-1761/images/header/top_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 2675
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-a73"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573762
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 0389758521a4ddd4cc5260ae14767f70

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/header_bg.jpg.base64

103.198.200.1

200 OK

13 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/header_bg.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
13 kB (12726 bytes)
Hash
bf50cf81445c5c7a1cf246a0bc8d8832
08a79e16bceb283fb78660567fe70e42cc44015f
5acb5ff787e86ab351c630ba7102b3c06b7e066b1afc416c712a5a7425f97cff

HTTP Headers

GET /ftl/bet365-1761/images/header/header_bg.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 12726
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "651e5941-31b6"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573763
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: 26537dd4f2fd7c52fa1e359bbd298787

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64

103.198.200.1

200 OK

4.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
4.7 kB (4677 bytes)
Hash
cc80efc11aa1f0398dc64c82b8677f4a
ce3aca6cf2606d0c745a9336ef1e88ed267a5745
8a9eef12d0747114c7e07a8dc90dbc1bcd6b0e355a3e9f2db455b189743ffeef

HTTP Headers

GET /ftl/bet365-1761/images/index/services_title_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 4677
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-1245"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: ee3a3a49507598c8a33f149c161b950a

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/hotgame_title_bg.jpg.base64

103.198.200.1

200 OK

7.1 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/hotgame_title_bg.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
7.1 kB (7064 bytes)
Hash
027f783afe39ef6130fd352d53385ced
a62b115a760388f0b75dd24648f135f5df0efc15
5fae52c3cd0081ad30a0c0ae82bd2672dcdd25eb78ee99db2879ac18c235120c

HTTP Headers

GET /ftl/bet365-1761/images/index/hotgame_title_bg.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 7064
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6528d986-1b98"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: 0f8dc3d8dda6cb53ae61f33270f9e463

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_3.png.base64

103.198.200.1

200 OK

6.4 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_3.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
6.4 kB (6351 bytes)
Hash
fc708af39b010564b51063cb57c1102b
8aae2937460075386afa264fcce40b065dc5b804
6901be4dc422b85cfbd3accd4b2c57580d4b978fbe56f033aa112d5c692075f2

HTTP Headers

GET /ftl/bet365-1761/images/index/game_3.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 6351
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6528d986-18cf"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 49cb785df79ddb665711b02047f76001

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_5.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_5.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
12 kB (11514 bytes)
Hash
a57f10e46680debbda70570b7b27abda
4c7e6ba7080263d5f08298c6db0fd79e03638d24
affc722c0e860dc0f53bb819db91f84b64b5870eda41f0916f58de6b190e62fd

HTTP Headers

GET /ftl/bet365-1761/images/index/game_5.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 11514
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6528d986-2cfa"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: a85618d2405baf21683db50943a383f9

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_4.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_4.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
12 kB (11700 bytes)
Hash
91cd73465d4c8287e4ee6fb24c9131b4
548c3a7f1f41e44bfe3ecf83fe11bcc609d10a73
c8213ea30251747d1cd81183bb544999f5873c61257c62e22db095af8b325955

HTTP Headers

GET /ftl/bet365-1761/images/index/game_4.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 11700
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6528d986-2db4"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: d90054b9e9bb9453de62ff3da26f42f1

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_1.png.base64

103.198.200.1

200 OK

10 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_1.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
10 kB (10541 bytes)
Hash
91f67896d3a26370c40c3104367a5f7e
dea09a037d97c23393e86fc8f6c4216085df8dbb
eaaf05fd9128d55f27d36c4131c8b86bd5c1e0f840e9d45a69a1944876f03351

HTTP Headers

GET /ftl/bet365-1761/images/index/game_1.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 10541
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "6528d986-292d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 01408c5b967547e3cf570052e58f65fb

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64

103.198.200.1

200 OK

1.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
1.7 kB (1723 bytes)
Hash
f0902d9a906b7ceaeba59fb84bd22c33
a3f4679f707812dd984aa1c31bed9a0b2b17b722
9deb7a4f17e83916dfebf95e6cf366a77f521240c9fc90f6d2a02c0a1f71e8b8

HTTP Headers

GET /ftl/bet365-1761/images/index/code_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1723
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "652cae50-6bb"
Date: Sun, 17 Mar 2024 09:55:18 GMT
Last-Modified: Mon, 16 Oct 2023 03:30:24 GMT
Expires: Tue, 16 Apr 2024 09:55:18 GMT
Age: 2573594
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: ab98f17e1473c3311b8c98309896c8ae

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64

103.198.200.1

200 OK

1.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
1.7 kB (1723 bytes)
Hash
f0902d9a906b7ceaeba59fb84bd22c33
a3f4679f707812dd984aa1c31bed9a0b2b17b722
9deb7a4f17e83916dfebf95e6cf366a77f521240c9fc90f6d2a02c0a1f71e8b8

HTTP Headers

GET /ftl/bet365-1761/images/index/code_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1723
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "652cae50-6bb"
Date: Sun, 17 Mar 2024 09:55:18 GMT
Last-Modified: Mon, 16 Oct 2023 03:30:24 GMT
Expires: Tue, 16 Apr 2024 09:55:18 GMT
Age: 2573594
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: cdc6cb7b058231ffc95b7ea00bb42b51

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 66681806d2a6528d771f009f8021d3ce

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64

103.198.200.1

200 OK

4.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
4.7 kB (4677 bytes)
Hash
cc80efc11aa1f0398dc64c82b8677f4a
ce3aca6cf2606d0c745a9336ef1e88ed267a5745
8a9eef12d0747114c7e07a8dc90dbc1bcd6b0e355a3e9f2db455b189743ffeef

HTTP Headers

GET /ftl/bet365-1761/images/index/services_title_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 4677
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-1245"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: e55036db7b85d6dab8ece200f42fb76e

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/all_bg.jpg.base64

103.198.200.1

200 OK

345 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/all_bg.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
345 kB (345171 bytes)
Hash
20d063fb55cf6dd6c784f84ae5b3bd18
0840181a044dcc8c3022cbfbe10a686cfd1f5f7e
cb4b1b696c9135571ec2a2d49b03ef3c16a9fee93620509e455a7b9175ab9443

HTTP Headers

GET /ftl/bet365-1761/images/all_bg.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 345171
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-54453"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573762
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: d3b3250bc10b423a45a4c40ea535a7c9

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 9356e6cfb2c7850b211e0a7c698b588d

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 8452063df26ca368430897e182f7e1b4

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: feb9e073eb61bbf06ea9653a7dad59ed

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 8ae2e8c80b4726cad4d09d18ba4e4c57

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 5ea3ac5cbaa03109a4984562e7fb2f83

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 690c7c822af524d9b5121003b84fc8bd

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: ef1aa9298051087b3cf9baf959a44ea5

55100-55100.xyz/message_zh_CN.js?v=1712742347025

172.67.159.225

200 OK

11 kB

URL GET HTTP/3
55100-55100.xyz/message_zh_CN.js?v=1712742347025
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (18069)
Size
11 kB (11149 bytes)
Hash
8e3a3463437bc8b56e112f0b87b6a0d0
dfaac70f23b58a771856460bb00aebc5fcadb2ce
0aa3002021c50dd94fcd0eb615a6735db1b54723503264f1c24985e0bcdd868b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /message_zh_CN.js?v=1712742347025 HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:22 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 04:48:22 GMT
cache-control: max-age=86400
x-cache: HIT
uuid: 01761-01-00000000-17132429023d83
out-line: gb-source-137
cf-cache-status: EXPIRED
last-modified: Mon, 15 Apr 2024 00:02:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z62xA9d%2FiDTvCJzlbAgd9V9OW2hvO2VNBCCnaOfCxEWmEXAn4rYbrbfwMSlvZQx9gqDKQnuORwNZWPZ0cdjh%2FGdz%2FEicZHVgDgW36y5ADdkRY9YekB0ZMwN5QKWSu9IA%2B5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518ae91a87b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/ftl/commonPage/images/favicon/favicon_1761.png.base64

103.198.200.1

200 OK

787 B

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/images/favicon/favicon_1761.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
787 B (787 bytes)
Hash
7b0c9827674508bf9e14f37d4bb346ba
6277cbd52743249b83008970b513ec68c754a596
0f512b8d92cce977fc32b606fdbfb24ea4ebfa2b82c567967a5e9d3ebfbee09d

HTTP Headers

GET /ftl/commonPage/images/favicon/favicon_1761.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 787
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "651b89e8-313"
Date: Sun, 17 Mar 2024 09:52:28 GMT
Last-Modified: Tue, 03 Oct 2023 03:26:32 GMT
Expires: Tue, 16 Apr 2024 09:52:28 GMT
Age: 2573765
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 9d34279b49e2d8a9517066504a22cba7

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/top_bg.png.base64

103.198.200.1

200 OK

2.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/top_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
2.7 kB (2675 bytes)
Hash
5d63dda023c61cc4e4dc5f9a4f00f8af
2d231822fef6a976e9a29be9dc81b09c4141e933
627b212a4dfcdddfd3a20504e4f33240a7dbb5a90a3149ae25b2f31dac29aa0a

HTTP Headers

GET /ftl/bet365-1761/images/header/top_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 2675
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-a73"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573763
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 8743e4b50104c25c3cfe8c9b69bd273a

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/download_bg.png.base64

103.198.200.1

200 OK

618 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/download_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
618 kB (617990 bytes)
Hash
b8dbc94fe0b1350f2bf538ddc7b98ac3
3695472dd28883edfc586df78d7bf56acbb16abf
546a11b0f6736feaafcd9404ea1f3b9b591deba17e6bd0c2477145055ca6aa86

HTTP Headers

GET /ftl/bet365-1761/images/index/download_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 617990
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-96e06"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: ec06a42d7faae282b9ee25bc65a08618

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/icon_marquee.png.base64

103.198.200.1

200 OK

1.9 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/icon_marquee.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
1.9 kB (1921 bytes)
Hash
116830d924f20877f6f51c45deb2fdab
ee727352d629e0e0096e04cf671c1cec9b0feb66
0f9b7c24b6d441a58d3e3803f2cb8f34f43658b29f9825b21af100c447451d08

HTTP Headers

GET /ftl/bet365-1761/images/icon_marquee.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1921
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "651e5941-781"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573764
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: e0556fd9beba46fb9b1ae69a60b07992

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/all_bg.jpg.base64

103.198.200.1

200 OK

345 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/all_bg.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
345 kB (345171 bytes)
Hash
20d063fb55cf6dd6c784f84ae5b3bd18
0840181a044dcc8c3022cbfbe10a686cfd1f5f7e
cb4b1b696c9135571ec2a2d49b03ef3c16a9fee93620509e455a7b9175ab9443

HTTP Headers

GET /ftl/bet365-1761/images/all_bg.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 345171
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-54453"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573764
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 9838839ac95ae62c38f6c9d7c963eba6

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64

103.198.200.1

200 OK

4.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
4.7 kB (4677 bytes)
Hash
cc80efc11aa1f0398dc64c82b8677f4a
ce3aca6cf2606d0c745a9336ef1e88ed267a5745
8a9eef12d0747114c7e07a8dc90dbc1bcd6b0e355a3e9f2db455b189743ffeef

HTTP Headers

GET /ftl/bet365-1761/images/index/services_title_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 4677
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-1245"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 77655f539732468cf5db1ee2ed9c2be4

55100-55100.xyz/mobile-api/v5/origin/loginSwitchCheck.html

172.67.159.225

200 OK

7.2 kB

URL GET HTTP/3
55100-55100.xyz/mobile-api/v5/origin/loginSwitchCheck.html
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
7.2 kB (7195 bytes)
Hash
1452cebf3e2bb129b06762f43f09e5c8
0ec65f1e79233e8c59f76c55fb89ac8637cfb070
99a31cd18b8ce37d3725d0a77d5e314452d2906ed2b54b8b19d4de849d1bf13d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mobile-api/v5/origin/loginSwitchCheck.html HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:27 GMT
content-type: text/html;charset=utf-8
set-cookie: route=66776b881a59021b52807ef9298664ac; Path=/
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-headers: Content-Type,Access-Token,X-Requested-With
content-disposition: inline;filename=f.txt
sub-sys: mobile
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-1713242906906b
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VkQSdl%2FVNCjaSH%2FSosJcO6sJd3LUxnWEOUUUgwS0kZ2p1D1JEsyO%2Bq8R%2BghHFZjRmOHvoe9E8Zg7EGpIF4Q0cs1nJJMwc8X6ush4uuzuBKrbHj4Z2lXG4KNEpDmCEWyoeW4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b07cfc2b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/header_bg.jpg.base64

103.198.200.1

200 OK

13 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/header_bg.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
13 kB (12726 bytes)
Hash
bf50cf81445c5c7a1cf246a0bc8d8832
08a79e16bceb283fb78660567fe70e42cc44015f
5acb5ff787e86ab351c630ba7102b3c06b7e066b1afc416c712a5a7425f97cff

HTTP Headers

GET /ftl/bet365-1761/images/header/header_bg.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 12726
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "651e5941-31b6"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573764
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: ce9f224cff49434dcec305d6269fbe98

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_5.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_5.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
12 kB (11514 bytes)
Hash
a57f10e46680debbda70570b7b27abda
4c7e6ba7080263d5f08298c6db0fd79e03638d24
affc722c0e860dc0f53bb819db91f84b64b5870eda41f0916f58de6b190e62fd

HTTP Headers

GET /ftl/bet365-1761/images/index/game_5.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 11514
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6528d986-2cfa"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 589e60bf35bd8e03ad722e0451efdc2a

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_3.png.base64

103.198.200.1

200 OK

6.4 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_3.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
6.4 kB (6351 bytes)
Hash
fc708af39b010564b51063cb57c1102b
8aae2937460075386afa264fcce40b065dc5b804
6901be4dc422b85cfbd3accd4b2c57580d4b978fbe56f033aa112d5c692075f2

HTTP Headers

GET /ftl/bet365-1761/images/index/game_3.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 6351
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6528d986-18cf"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 7137de4a502ed55af971e2482a0f17ee

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_1.png.base64

103.198.200.1

200 OK

10 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_1.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
10 kB (10541 bytes)
Hash
91f67896d3a26370c40c3104367a5f7e
dea09a037d97c23393e86fc8f6c4216085df8dbb
eaaf05fd9128d55f27d36c4131c8b86bd5c1e0f840e9d45a69a1944876f03351

HTTP Headers

GET /ftl/bet365-1761/images/index/game_1.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 10541
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "6528d986-292d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: ef8920021a7b39dee21fbc641a813181

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64

103.198.200.1

200 OK

1.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
1.7 kB (1723 bytes)
Hash
f0902d9a906b7ceaeba59fb84bd22c33
a3f4679f707812dd984aa1c31bed9a0b2b17b722
9deb7a4f17e83916dfebf95e6cf366a77f521240c9fc90f6d2a02c0a1f71e8b8

HTTP Headers

GET /ftl/bet365-1761/images/index/code_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1723
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "652cae50-6bb"
Date: Sun, 17 Mar 2024 09:55:18 GMT
Last-Modified: Mon, 16 Oct 2023 03:30:24 GMT
Expires: Tue, 16 Apr 2024 09:55:18 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 5e80410cc882e1b0458cd7e2f947a636

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_4.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/game_4.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
12 kB (11700 bytes)
Hash
91cd73465d4c8287e4ee6fb24c9131b4
548c3a7f1f41e44bfe3ecf83fe11bcc609d10a73
c8213ea30251747d1cd81183bb544999f5873c61257c62e22db095af8b325955

HTTP Headers

GET /ftl/bet365-1761/images/index/game_4.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 11700
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6528d986-2db4"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Fri, 13 Oct 2023 05:45:42 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573598
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 2de66fb376bc5982a2c7b472e383159a

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64

103.198.200.1

200 OK

1.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/code_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
1.7 kB (1723 bytes)
Hash
f0902d9a906b7ceaeba59fb84bd22c33
a3f4679f707812dd984aa1c31bed9a0b2b17b722
9deb7a4f17e83916dfebf95e6cf366a77f521240c9fc90f6d2a02c0a1f71e8b8

HTTP Headers

GET /ftl/bet365-1761/images/index/code_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1723
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "652cae50-6bb"
Date: Sun, 17 Mar 2024 09:55:18 GMT
Last-Modified: Mon, 16 Oct 2023 03:30:24 GMT
Expires: Tue, 16 Apr 2024 09:55:18 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 0dd685bf257cf98f585d4e0b1cedcd8c

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64

103.198.200.1

200 OK

4.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/services_title_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
4.7 kB (4677 bytes)
Hash
cc80efc11aa1f0398dc64c82b8677f4a
ce3aca6cf2606d0c745a9336ef1e88ed267a5745
8a9eef12d0747114c7e07a8dc90dbc1bcd6b0e355a3e9f2db455b189743ffeef

HTTP Headers

GET /ftl/bet365-1761/images/index/services_title_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 4677
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-1245"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 21b88ee5bb9d7f2df9324f9fe2812b7c

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 14ff039fbfa22e98b167e575d10d506f

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 25534b69d2ab63d847259b49f78356a1

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 891bf8adbc89890da68f97d99a834e0b

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 8b06d91ced643eac5f72ca050274f8b2

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: b9d523b8b7175a02d998662c18171744

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: d5f77ab1d46b7ab18e7587e8c2063cbc

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64

103.198.200.1

200 OK

9.3 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_out_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
9.3 kB (9261 bytes)
Hash
516fea3331e485dab19c685c7d295296
12a4e83ae652dd3e72372694e3efe4ac4d3408ba
840e4cbc89974a55073c71c6df9757fbb21ec85ae147225b0c1885b740e2e731

HTTP Headers

GET /ftl/bet365-1761/images/index/service_out_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9261
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-242d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 26ff2699cf93d08032605b3ed6f0b6ba

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64

103.198.200.1

200 OK

3.7 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_inner_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.7 kB (3741 bytes)
Hash
243dc62f409091d7bc5f5152702173b3
839123e0640d03462bad90bbcba92676b7795505
75f976e9d0cf260b3376f28f782fdf5e75b1b388b9915cf115b3446efcbb8ce6

HTTP Headers

GET /ftl/bet365-1761/images/index/service_inner_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3741
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "651e5941-e9d"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 0045f50f66c8731b76d56101b86ec860

brhrjf.gaokejd.xyz/ftl/commonPage/images/favicon/favicon_1761.png.base64

103.198.200.1

200 OK

787 B

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/images/favicon/favicon_1761.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
787 B (787 bytes)
Hash
7b0c9827674508bf9e14f37d4bb346ba
6277cbd52743249b83008970b513ec68c754a596
0f512b8d92cce977fc32b606fdbfb24ea4ebfa2b82c567967a5e9d3ebfbee09d

HTTP Headers

GET /ftl/commonPage/images/favicon/favicon_1761.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 787
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "651b89e8-313"
Date: Sun, 17 Mar 2024 09:52:28 GMT
Last-Modified: Tue, 03 Oct 2023 03:26:32 GMT
Expires: Tue, 16 Apr 2024 09:52:28 GMT
Age: 2573766
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 90a3df8c5b09d3ad2dbefb3d671d0e7d

brhrjf.gaokejd.xyz/ftl/commonPage/images/favicon/favicon_1761.png.base64

103.198.200.1

200 OK

787 B

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/images/favicon/favicon_1761.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
787 B (787 bytes)
Hash
7b0c9827674508bf9e14f37d4bb346ba
6277cbd52743249b83008970b513ec68c754a596
0f512b8d92cce977fc32b606fdbfb24ea4ebfa2b82c567967a5e9d3ebfbee09d

HTTP Headers

GET /ftl/commonPage/images/favicon/favicon_1761.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 787
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "651b89e8-313"
Date: Sun, 17 Mar 2024 09:52:28 GMT
Last-Modified: Tue, 03 Oct 2023 03:26:32 GMT
Expires: Tue, 16 Apr 2024 09:52:28 GMT
Age: 2573766
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 8b3f25edae840250bac6f4af6b7b72a0

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/download_bg.png.base64

103.198.200.1

200 OK

618 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/download_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
618 kB (617990 bytes)
Hash
b8dbc94fe0b1350f2bf538ddc7b98ac3
3695472dd28883edfc586df78d7bf56acbb16abf
546a11b0f6736feaafcd9404ea1f3b9b591deba17e6bd0c2477145055ca6aa86

HTTP Headers

GET /ftl/bet365-1761/images/index/download_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 617990
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "651e5941-96e06"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573596
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: cd920f811d209ec6a7e55621ea715a93

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_shadow.png.base64

103.198.200.1

200 OK

3.6 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/service_shadow.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
3.6 kB (3551 bytes)
Hash
ff208c82103dbc1db0aeed4d8a3fac38
33925df48253e6863116a6e1a68364ac5331f635
1244c680c28900aa177de771ee960a3d77b27c7dc23bd6763d97dff21c89e152

HTTP Headers

GET /ftl/bet365-1761/images/index/service_shadow.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 3551
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "651e5941-ddf"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573598
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 4a9990c534c8f773ec1d95dbbbedf86b

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_bg.png.base64

103.198.200.1

200 OK

15 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_bg.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text
Size
15 kB (15121 bytes)
Hash
80cb62ae4423c092f6de6ebb57f64e9d
d820422348a406507c78c1c65e5131d5ac3f4ee1
5609ab9eafa39e50f2db281ffc114132eefd77c46c466d52e619a3e264a5fc86

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_bg.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 15121
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "651e5941-3b11"
Date: Sun, 17 Mar 2024 09:55:17 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:17 GMT
Age: 2573597
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: e4a5069b7e3bc3366165c38fc1fc14ab

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/205/1704007727315.png.base64

103.198.200.1

200 OK

26 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/205/1704007727315.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (25873), with no line terminators
Size
26 kB (25873 bytes)
Hash
69df3bc853d037e68cd2320e2a574971
b2b5d5f22741260a44564a465714a3435481d4bc
dffc4dcaff45c895a6ff56d80f48bb112edc5df9abf301fb4e90d61f789ef02f

HTTP Headers

GET /fserver/files/gb/1761/floatImage/205/1704007727315.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 25873
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6591182f-6511"
Date: Mon, 18 Mar 2024 03:09:16 GMT
Last-Modified: Sun, 31 Dec 2023 07:28:47 GMT
Expires: Wed, 17 Apr 2024 03:09:16 GMT
Age: 2511559
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 51a2cddea0d1398aead0308b5e55b445

55100-55100.xyz/index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion=

172.67.159.225

200 OK

102 kB

URL GET HTTP/3
55100-55100.xyz/index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion=
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
102 kB (102417 bytes)
Hash
866440b53a6c7f13189735817bc96e61
3e5e63776d7973b72249b22f16ef5b94fe28934d
1875e3e542f6e4a75683678309a93ed40e02093f72b97f9fdedfec68560394cb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion= HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:32 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-disposition: inline;filename=f.txt
sub-sys: msite
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-1713242911c8f5
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CGZudvphD42%2BxMCYcFBLYGU94EWLvTi8QZkASSNSA%2FdTLN7TmCHN19MIErWZNqxgrySYqrhjK9%2Bv7MUmIxIhx%2BwV4UCuLuatDTRRmSvoxdfEOKysEedCLoqjOs74H7zCFHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b26ec1bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/205/1704007727473.png.base64

103.198.200.1

200 OK

26 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/205/1704007727473.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (25537), with no line terminators
Size
26 kB (25537 bytes)
Hash
3ff35e2b817861b0b9ace9de3b33f93c
92a6a1c0ff541d3c6561f1236a887c3551e23278
53c1f0d9fca4d2888a2aa00314e460d724e56b722a04a30ab25079d133e0269e

HTTP Headers

GET /fserver/files/gb/1761/floatImage/205/1704007727473.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 25537
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6591182f-63c1"
Date: Mon, 18 Mar 2024 03:09:15 GMT
Last-Modified: Sun, 31 Dec 2023 07:28:47 GMT
Expires: Wed, 17 Apr 2024 03:09:15 GMT
Age: 2511560
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: 4a20eda012a38cc0223c7a88cf7b6ccc

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359441.png.base64

103.198.200.1

200 OK

101 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359441.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
101 kB (101357 bytes)
Hash
34a5ac22ae05e2ab73e733f85dae3d65
d21a5c7df6b7721bf9b40585d18df2cd23a7b490
6dd154d43279d79f5d7cc2ad32646462caa83b54eb11c829d2ef1b8ab1886dfb

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957359441.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 101357
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "6590536f-18bed"
Date: Mon, 18 Mar 2024 03:09:15 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:19 GMT
Expires: Wed, 17 Apr 2024 03:09:15 GMT
Age: 2511560
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: b7efd16a22bac4ce020c99c9eb3e89ba

55100-55100.xyz/index/getAppsUrl.html?device=ios&fPixelId=&accessToken=&apiVersion=

172.67.159.225

200 OK

19 kB

URL GET HTTP/3
55100-55100.xyz/index/getAppsUrl.html?device=ios&fPixelId=&accessToken=&apiVersion=
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
JSON text data
Size
19 kB (19073 bytes)
Hash
866440b53a6c7f13189735817bc96e61
3e5e63776d7973b72249b22f16ef5b94fe28934d
1875e3e542f6e4a75683678309a93ed40e02093f72b97f9fdedfec68560394cb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index/getAppsUrl.html?device=ios&fPixelId=&accessToken=&apiVersion= HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=66776b881a59021b52807ef9298664ac
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: route=cff4f63a4f0402d67e06fc02582263f1; Path=/
content-disposition: inline;filename=f.txt
sub-sys: msite
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-1713242911e948
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KFVjydWPyuxxvSPiIcGJ%2F8lD3QpGHST2ihif4BApMDr2iy6uiTZliC94mFOzGZSgK3HlduVD3GXTHZj14mmTortH9o7sX8oLauwXPsSDGZHq1PoK0CMfZ8Hjvn%2BEYQcw2fQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b24fab4b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359728.png.base64

103.198.200.1

200 OK

17 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359728.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (16797), with no line terminators
Size
17 kB (16797 bytes)
Hash
c3afc001b86d9a8b25d291da35825d6e
1fcba7960a3fa087b7d1515e1775c2e1f7036d21
307dbadda29c94b2d79d0a1a75dcf2fe3914c59ad248f6b1a3e93996f46b2a94

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957359728.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 16797
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "6590536f-419d"
Date: Mon, 18 Mar 2024 03:09:15 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:19 GMT
Expires: Wed, 17 Apr 2024 03:09:15 GMT
Age: 2511560
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 3be60bfd9b19ac4b1170ae32130b206d

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359954.png.base64

103.198.200.1

200 OK

16 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359954.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (16485), with no line terminators
Size
16 kB (16485 bytes)
Hash
ba8b57e45ad9b8d0bca97d65738ad15f
fb749a0d1f805e50eb255d12c2c8e4e23ca5ec36
6302d3a9ec717fbab1ce0405ff5f74719967da0365bddaa179656b374d077fd5

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957359954.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 16485
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "6590536f-4065"
Date: Mon, 18 Mar 2024 03:09:16 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:19 GMT
Expires: Wed, 17 Apr 2024 03:09:16 GMT
Age: 2511559
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 309b983418b85c9c85a1e73636fbe04c

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359837.png.base64

103.198.200.1

200 OK

16 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359837.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (15753), with no line terminators
Size
16 kB (15753 bytes)
Hash
81aa26db6a921e041d0d235821088516
9a710d0fd2fc75cdb3832f1cbb1bad32ed4fc217
4277dea96e2d25fcd83a85acea15ef45159d419abeb639d959824d607e35748b

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957359837.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 15753
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "6590536f-3d89"
Date: Mon, 18 Mar 2024 03:09:15 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:19 GMT
Expires: Wed, 17 Apr 2024 03:09:15 GMT
Age: 2511560
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 3c83a01a32c84f6100dd9f3badf526c0

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957360075.png.base64

103.198.200.1

200 OK

17 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957360075.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (17313), with no line terminators
Size
17 kB (17313 bytes)
Hash
b9ab6715c74d9fbddd9d34d6bcd27f68
cb97f37d72273acb1dbb19da628946dfc3d4a416
fbe4ed6a85ca490d3528eeb4ed594da6105f498dcf66ee9d98b2bb9e7073f736

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957360075.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 17313
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "65905370-43a1"
Date: Mon, 18 Mar 2024 03:09:16 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:20 GMT
Expires: Wed, 17 Apr 2024 03:09:16 GMT
Age: 2511559
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: b75df68fe4700e23ae55eca57a8f5de8

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957360174.png.base64

103.198.200.1

200 OK

16 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957360174.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (16493), with no line terminators
Size
16 kB (16493 bytes)
Hash
b9da0a481461f3918a85c678bbbeab41
9b3715e1a75998c2b46fdc3cd1df61fd17466391
4e18a4c1116e223b5d2bed162ffc40a7ebb77f1aae9c6e25ccb8a0f1e9e51db6

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957360174.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 16493
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "65905370-406d"
Date: Mon, 18 Mar 2024 03:09:16 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:20 GMT
Expires: Wed, 17 Apr 2024 03:09:16 GMT
Age: 2511559
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: d9235160db3286d3fe5b3956051df089

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10004/1696598420816.jpg.base64

103.198.200.1

200 OK

219 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10004/1696598420816.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
219 kB (218909 bytes)
Hash
7a9714d11de81573d3e3e775d786de84
6a4ff1c2c2658ef88a7bc4e81edbd64c4003bab6
670ee798692a1dce558e1f3b26da6b33e8907a2ea98466deaf139d04a4684a25

HTTP Headers

GET /fserver/files/gb/1761/carousel/10004/1696598420816.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 218909
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "65200994-3571d"
Date: Mon, 18 Mar 2024 04:31:26 GMT
Last-Modified: Fri, 06 Oct 2023 13:20:20 GMT
Expires: Wed, 17 Apr 2024 04:31:26 GMT
Age: 2506628
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 608bef1f022c756c6923dba81b0db628

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1707473456549.png.base64

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1707473456549.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (11705), with no line terminators
Size
12 kB (11705 bytes)
Hash
8ca0036da947af51783767e51671850f
adca72188ab8430136550a3c305ab20a77a047c0
05cd792ac92f63f18e4710cc0b13e781d876dcbb6894f134684e22a6a350a796

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1707473456549.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 11705
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "65c5fa30-2db9"
Date: Tue, 09 Apr 2024 10:38:17 GMT
Last-Modified: Fri, 09 Feb 2024 10:10:56 GMT
Expires: Thu, 09 May 2024 10:38:17 GMT
Age: 583818
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 9fe2711ce9e3e1803bce028fb7218a67

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1704434589435.png.base64

103.198.200.1

200 OK

16 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1704434589435.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (16173), with no line terminators
Size
16 kB (16173 bytes)
Hash
0bc52e63ea96ba7670b0ef96bec0757e
7f6ea54b2f879dba6f87e310fad515d7f201a1f6
b0989eebab2e4dabb707e879c234f3eede5a3eb44150b94bc867f02b7310fad9

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1704434589435.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 16173
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "65979b9d-3f2d"
Date: Mon, 18 Mar 2024 03:09:15 GMT
Last-Modified: Fri, 05 Jan 2024 06:03:09 GMT
Expires: Wed, 17 Apr 2024 03:09:15 GMT
Age: 2511560
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 6ddda41d678956a1f20419e62f395c13

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1707473456703.png.base64

103.198.200.1

200 OK

31 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1707473456703.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (30633), with no line terminators
Size
31 kB (30633 bytes)
Hash
f4ed7753ee27572700a90b876d59b1eb
9980b04371f97999c9c1f59d430e554a6b8edf66
652e84557b19ec80e118390974498497b1e0797fd017ee0013565d0bde98e8bb

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1707473456703.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 30633
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "65c5fa30-77a9"
Date: Tue, 09 Apr 2024 10:38:14 GMT
Last-Modified: Fri, 09 Feb 2024 10:10:56 GMT
Expires: Thu, 09 May 2024 10:38:14 GMT
Age: 583821
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 58f713e1aafda90d6fb491ffae927e36

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10006/1696601102926.jpg.base64

103.198.200.1

200 OK

231 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10006/1696601102926.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
231 kB (230597 bytes)
Hash
2e174922517da3d5b0aac5cd13cb6340
c13b69673d80fda2485b5927f021c7813522890e
6d1dcade6758073c560124debf08ee440a316658765b07313a9ff57fb352ea40

HTTP Headers

GET /fserver/files/gb/1761/carousel/10006/1696601102926.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 230597
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "6520140f-384c5"
Date: Mon, 18 Mar 2024 04:31:29 GMT
Last-Modified: Fri, 06 Oct 2023 14:05:03 GMT
Expires: Wed, 17 Apr 2024 04:31:29 GMT
Age: 2506626
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 52d2498faeb5afa9383a9ceb06f28722

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10010/1696601322564.jpg.base64

103.198.200.1

200 OK

202 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10010/1696601322564.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
202 kB (202445 bytes)
Hash
fe75ca27964b3afc61554c804c1072a2
d9e63db4677606e0f51775e54d54524490db709f
ece6263364bbe8ca2bb3c382fb580a3ca8f8a3f1febbf7af37c9685daa43e29c

HTTP Headers

GET /fserver/files/gb/1761/carousel/10010/1696601322564.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 202445
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "652014ea-316cd"
Date: Mon, 18 Mar 2024 04:35:11 GMT
Last-Modified: Fri, 06 Oct 2023 14:08:42 GMT
Expires: Wed, 17 Apr 2024 04:35:11 GMT
Age: 2506405
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 899f75e663538ad3b8f143b2f6b546f1

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10008/1696601229560.jpg.base64

103.198.200.1

200 OK

236 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10008/1696601229560.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
236 kB (235873 bytes)
Hash
578eeea71eb627c16e371f0461342c61
15d81f6b4c13e141722eb5a6f5028c24c2e105a6
17d13eb76eb3c7c4af2ddb850145ebf27aecfc2cc0814ae341aa18ed57d6e307

HTTP Headers

GET /fserver/files/gb/1761/carousel/10008/1696601229560.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 235873
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "6520148d-39961"
Date: Mon, 18 Mar 2024 04:35:12 GMT
Last-Modified: Fri, 06 Oct 2023 14:07:09 GMT
Expires: Wed, 17 Apr 2024 04:35:12 GMT
Age: 2506406
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: a6aa2a056a3fc50c8fab1a0b72f8be9d

55100-55100.xyz/headerInfo.html?t=lv1wlb4t

172.67.159.225

200 OK

127 B

URL GET HTTP/3
55100-55100.xyz/headerInfo.html?t=lv1wlb4t
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
127 B (127 bytes)
Hash
cd0db8c5f90c5aa09ed7899d518f5d4a
0eaa335c3b3ea572f6de103113995bf223b40644
5fde89cc183cd8d8ab572a293081728d5af31827a30502f986baa036ae9dc51b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /headerInfo.html?t=lv1wlb4t HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:26 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-disposition: inline;filename=f.txt
sub-sys: msite
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-1713242906f90e
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tLUP%2FulZHebmrxymlsMvsd734pOy7Wy2kXXYF%2BXtKtVhZ6uc6DvjMlkePJ0insdL0rVXblsj2x5Yre%2FsWDMfJgwVSSJia1FXO1DiUpPZb%2FQ0r6A76BcpIP%2FAht9EoHYlD6Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b05ce6fb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/hot.gif.base64

103.198.200.1

200 OK

1.9 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/header/hot.gif.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (1945), with no line terminators
Size
1.9 kB (1921 bytes)
Hash
d0dea4ae542bc873925a6d5301743270
0eddd904bde098af16a63e4830e90c75e3ab28f1
622cf67e8c2f453c99b31457334d3f06c4314b81fe9a0afec781685019dafb84

HTTP Headers

GET /ftl/bet365-1761/images/header/hot.gif.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 1921
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "6526148f-781"
Date: Sun, 17 Mar 2024 09:52:29 GMT
Last-Modified: Wed, 11 Oct 2023 03:20:47 GMT
Expires: Tue, 16 Apr 2024 09:52:29 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: 867a8a1e61d7b055c71a62cd77cba3be

brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery-1.11.3.min.js

103.198.200.1

200 OK

96 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/commonPage/js/jquery/jquery-1.11.3.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
JavaScript source, ASCII text, with very long lines (32038)
Size
96 kB (95956 bytes)
Hash
b091a47f6b91e26c93a848092c6f3788
52918af2d431e73464060b35d364640c8db75606
329ab92b9276ef4e3148f69be6b208969bebdf2db3121a589caa172453fd9f10

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery-1.11.3.min.js HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 33545
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"5d848f4f-176d4"
Date: Sun, 17 Mar 2024 09:52:26 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Tue, 16 Apr 2024 09:52:26 GMT
Age: 2573757
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 1d13b4f172e36b4c0b214fa3e69ab633

55100-55100.xyz/mobile-api/v5/origin/getThirdParam.html

172.67.159.225

200 OK

103 B

URL GET HTTP/3
55100-55100.xyz/mobile-api/v5/origin/getThirdParam.html
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Size
103 B (103 bytes)
Hash
696fb49ead30121d5513e1c2b60d42a2
dd34a288bf6b0e4c295c1bb848705f58ba5f245d
c030ec18bd43fe0351659670355a8fc897e26b6a34b990e8a4878a51b76a268d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mobile-api/v5/origin/getThirdParam.html HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=66776b881a59021b52807ef9298664ac
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:27 GMT
content-type: text/html;charset=utf-8
access-control-allow-methods: *
access-control-max-age: 3600
access-control-allow-headers: Content-Type,Access-Token,X-Requested-With
content-disposition: inline;filename=f.txt
sub-sys: mobile
x-frame-options: SAMEORIGIN
uuid: 01761-01-00000000-1713242907753a
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z1QKX477%2FbfwgVzSAU3RZ7Aa1t5z8PSZ5yxcta5DUatcgkMwBbbM1UTFT5YQnQD%2BRyFFW5jHO2sCBtfWs4%2FSsZswaf8waL8YT%2BV3JADB3DIsh44gd4%2FFCkUHOTl8CHtc%2F2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518b098926b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359578.png.base64

103.198.200.1

200 OK

18 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/204/1703957359578.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (18197), with no line terminators
Size
18 kB (18197 bytes)
Hash
957498cc25e5d75a72a3a196e1cd7c4c
baeb3b1b3c6d5aaeb69cbd586000ef47461801d3
5f3ffc7e8019ac1ae5d76aea97fddf7c6e6f736e34a818c85efe87bda479b8d8

HTTP Headers

GET /fserver/files/gb/1761/floatImage/204/1703957359578.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 18197
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6590536f-4715"
Date: Mon, 18 Mar 2024 03:09:16 GMT
Last-Modified: Sat, 30 Dec 2023 17:29:19 GMT
Expires: Wed, 17 Apr 2024 03:09:16 GMT
Age: 2511559
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: f4e357268afad3e5772b385c37fa9419

brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_5.png.base64

103.198.200.1

200 OK

9.8 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/ftl/bet365-1761/images/index/collabor_5.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (9915), with no line terminators
Size
9.8 kB (9788 bytes)
Hash
3e06643ca730b9f1a93e0f39621480b3
430fed470bef73623ef157d2fdc3df9ef147aa48
3308e9ae6df70f5a34aa66b7d39533f5f2c1211db647fe74aafa22416d1cba7c

HTTP Headers

GET /ftl/bet365-1761/images/index/collabor_5.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 9788
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "651e5941-263c"
Date: Sun, 17 Mar 2024 09:55:16 GMT
Last-Modified: Thu, 05 Oct 2023 06:35:45 GMT
Expires: Tue, 16 Apr 2024 09:55:16 GMT
Age: 2573595
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: e2f939fbb594797e807a6f56cd20bd4c

brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/205/1704007727176.png.base64

103.198.200.1

200 OK

102 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/floatImage/205/1704007727176.png.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
102 kB (101541 bytes)
Hash
8c521cc6384563187028c33b40228b07
a883c0fae94f2fd1825178249727258f636a83df
08647bd0a96abce267d9a931d04de0dc358fc53feb57648c569d6193389b5083

HTTP Headers

GET /fserver/files/gb/1761/floatImage/205/1704007727176.png.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 101541
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "6591182f-18ca5"
Date: Mon, 18 Mar 2024 03:09:16 GMT
Last-Modified: Sun, 31 Dec 2023 07:28:47 GMT
Expires: Wed, 17 Apr 2024 03:09:16 GMT
Age: 2511558
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 54c2f249cdd24ee3f3c740f436734f0d

brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10014/1696759213666.jpg.base64

103.198.200.1

200 OK

210 kB

URL GET HTTP/1.1
brhrjf.gaokejd.xyz/fserver/files/gb/1761/carousel/10014/1696759213666.jpg.base64
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://55100-55100.xyz/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.gaokejd.xyz
Fingerprint0C:64:1D:5D:7A:1C:81:05:EF:CD:74:CC:64:84:BF:1B:CB:80:25:BA
ValidityThu, 30 Nov 2023 01:16:02 GMT - Fri, 29 Nov 2024 01:16:01 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
210 kB (210321 bytes)
Hash
086217898339223fb470b0dd8407dff7
27e75e998458d011a615b2406f223048f8e9db8b
0492032ebc7091422a965e49ef892dc67e3a0857b991be448d560a1df431f04b

HTTP Headers

GET /fserver/files/gb/1761/carousel/10014/1696759213666.jpg.base64 HTTP/1.1
Host: brhrjf.gaokejd.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://55100-55100.xyz
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Content-Length: 210321
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "65227dad-33591"
Date: Mon, 18 Mar 2024 03:14:36 GMT
Last-Modified: Sun, 08 Oct 2023 10:00:13 GMT
Expires: Wed, 17 Apr 2024 03:14:36 GMT
Age: 2511233
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: bfd7e045debea0fb403cc9512aa3ac5c

55100-55100.xyz/ftl/commonPage/themes/images/hongbao/icon-close-1.png

172.67.159.225

200 OK

6.1 kB

URL GET HTTP/3
55100-55100.xyz/ftl/commonPage/themes/images/hongbao/icon-close-1.png
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Requested by
https://55100-55100.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
6.1 kB (6087 bytes)
Hash
30eb0e841ea47a1f05854ebca3f9e9c1
0cb9874c32ff8837c1ffaf89cba502ceb3483b2b
382670ae61fc81522b190a0536d7b993058183aea2ffe81d197ded6af07d2183

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ftl/commonPage/themes/images/hongbao/icon-close-1.png HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://55100-55100.xyz/
Cookie: route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:48:26 GMT
content-type: image/png
content-length: 6087
last-modified: Wed, 11 Aug 2021 06:10:54 GMT
etag: "611369ee-17c7"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
expires: Wed, 17 Apr 2024 04:48:26 GMT
cache-control: max-age=86400
x-cache: HIT
uuid: -
out-line: gb-source-137
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TI9tD6IIKNjZThhLIX172UXO3WtPeV9zI4o6dzt%2FsayQ%2BA%2F221Q6X2nyGSvaUvb14Auhee2JO2%2BGmB0DktDt%2Bfe3JDuDOROJp6v0sZSyzUe2NHix49%2Fl2rXIqDxg7S%2FXw2M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518b022bf3b4ff-OSL
alt-svc: h3=":443"; ma=86400

55100-55100.xyz/

172.67.159.225

200 OK

440 kB

URL User Request GET HTTP/2
55100-55100.xyz/
IP
172.67.159.225:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subject55100-55100.xyz
Fingerprint83:A9:06:68:4A:60:73:89:B7:B7:1C:6C:31:74:D8:B7:EA:43:08:C8
ValiditySun, 24 Mar 2024 06:15:46 GMT - Sat, 22 Jun 2024 06:15:45 GMT

File type

Size
440 kB (439985 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bet365
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 55100-55100.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 04:48:21 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-html-cache: HIT-3600
x-frame-options: SAMEORIGIN
uuid: -
out-line: gb-source-137
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LNSTGIIU02dn%2B9gV1Wq2rzNWeAt7ev5Y1FkKG233g2FVmhmwcsX1zIRDA%2Fx2CJRyAA6J26iwFKvkabfKfzzWhnjgrsb8LRoabYYxQa%2BoasdgNtoEsvI0Xj5DjtfEA4%2BWaIU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518ae46a185697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML