Access to this page has been denied

English

_pxde

_px3

X-Sportsbook-Version

_pxvid

X-Sportsbook-Region

X-Sportsbook-Target-Region

pxcts

Domain 'account.nj.casino.fanduel.com' uses the commercial generic top-level domain (.com) with subdomain 'account.nj.casino'. Its registrable label 'fanduel' stretches across 7 characters split between 3 vowels and four consonants. Tokenizing the label suggests two words: fan, duel. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

html/94/ce/94ce04f5-fc63-4d11-9fcf-b4e68c73e4f3_fallback.html.gz

html/94/ce/94ce04f5-fc63-4d11-9fcf-b4e68c73e4f3.html.gz

default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests

aa80931f2b1364114b02830933364d8a6afadc0ecbd59b3f2c702e72d2d140d7

a51b3a238d5fcbe0f50e93cfe83e716cbc150c8f9b4fbed7576e65b4d676b1a5

d94be37de9d733602e2558d09be2ad69ef8c885d4515a565a055374707486116

viewport

description

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Gandi SAS

FANDUEL.COM

Amazon EC2 Abuse

IP Management

Amazon AWS Network Operations

Amazon.com, Inc.

AWS RPKI Management POC

IP Routing

Amazon EC2 Network Operations

AMAZO-CF


        /* PerimeterX assignments */
        window._pxVid = '';
        window._pxUuid = 'dbd6e97d-dd8b-11f0-8eea-0dd65643c93a';
        window._pxAppId = 'PXJMCVuBG8';
        window._pxHostUrl = '/JMCVuBG8/xhr';
        window._pxCustomLogo = '';
        window._pxJsClientSrc = '/JMCVuBG8/init.js';
        window._pxMobile = false;
        window._pxFirstPartyEnabled = true;

        var pxCaptchaSrc = '/JMCVuBG8/captcha/captcha.js?a=b&u=dbd6e97d-dd8b-11f0-8eea-0dd65643c93a&v=&m=0&b=aHR0cHM6Ly9hY2NvdW50Lm5qLmNhc2luby5mYW5kdWVsLmNvbS8v&h=R0VU';
        var script = document.createElement('script');
        script.src = pxCaptchaSrc;
        script.onload = onScriptLoad;
        script.onerror = onScriptError;
        var onScriptErrorCalled;
        document.head.appendChild(script);
        var timeoutID = setTimeout(onScriptError, 5000);
        function onScriptLoad() {
            clearTimeout(timeoutID);
            setTimeout(function() {
                if (!isContentLoaded()) {
                    onScriptError();
                }
            }, 2500);
        }
        function onScriptError() {
            if (onScriptErrorCalled) {
                return;
            }
            onScriptErrorCalled = true;
            script = document.createElement('script');
            script.src = 'https://captcha.px-cloud.net/PXJMCVuBG8/captcha.js?a=b&u=dbd6e97d-dd8b-11f0-8eea-0dd65643c93a&v=&m=0&b=aHR0cHM6Ly9hY2NvdW50Lm5qLmNhc2luby5mYW5kdWVsLmNvbS8v&h=R0VU';
            script.onload = function() {
                clearTimeout(timeoutID);
            };
            script.onerror = window._pxOnError;
            document.head.appendChild(script);
            timeoutID = setTimeout(function() {
                if (!isContentLoaded()) {
                    window._pxOnError();
                }
            }, 5000);
        }
        function isContentLoaded() {
            return !!document.querySelector('div,span');
        }
        window._pxOnError = function () {
            var style = document.createElement('style');
            style.innerText = '@import url(https://fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap);body{background-color:#fafbfc}.px-captcha-error-container{position:fixed;height:340px;background-color:#fff;font-family:Roboto,sans-serif}.px-captcha-error-header{color:#f0f1f2;font-size:29px;margin:67px 0 33px;font-weight:500;line-height:.83;text-align:center}.px-captcha-error-message{color:#f0f1f2;font-size:18px;margin:0 0 29px;line-height:1.33;text-align:center}.px-captcha-error-button{text-align:center;line-height:48px;width:253px;margin:auto;border-radius:50px;border:solid 1px #f0f1f2;font-size:20px;color:#f0f1f2}.px-captcha-error-wrapper{margin:18px 0 0}div.px-captcha-error{margin:auto;text-align:center;width:400px;height:30px;font-size:12px;background-color:#fcf0f2;color:#ce0e2d}img.px-captcha-error{margin:6px 8px -2px 0}.px-captcha-error-refid{border-top:solid 1px #f0eeee;height:27px;margin:13px 0 0;border-radius:0 0 3px 3px;background-color:#fafbfc;font-size:10px;line-height:2.5;text-align:center;color:#b1b5b8}@media (min-width:620px){.px-captcha-error-container{width:530px;top:50%;left:50%;margin-top:-170px;margin-left:-265px;border-radius:3px;box-shadow:0 2px 9px -1px rgba(0,0,0,.13)}}@media (min-width:481px) and (max-width:620px){.px-captcha-error-container{width:85%;top:50%;left:50%;margin-top:-170px;margin-left:-42.5%;border-radius:3px;box-shadow:0 2px 9px -1px rgba(0,0,0,.13)}}@media (max-width:480px){body{background-color:#fff}.px-captcha-error-header{color:#f0f1f2;font-size:29px;margin:55px 0 33px}.px-captcha-error-container{width:530px;top:50%;left:50%;margin-top:-170px;margin-left:-265px}.px-captcha-error-refid{position:fixed;width:100%;left:0;bottom:0;border-radius:0;font-size:14px;line-height:2}}@media (max-width:390px){div.px-captcha-error{font-size:10px}.px-captcha-error-refid{font-size:11px;line-height:2.5}}';
            document.head.appendChild(style);
            var div = document.createElement('div');
            div.className = 'px-captcha-error-container';
            div.innerHTML = '<div class="px-captcha-error-header">Before we continue...</div><div class="px-captcha-error-message">Press & Hold to confirm you are<br>a human (and not a bot).</div><div class="px-captcha-error-button">Press & Hold</div><div class="px-captcha-error-wrapper"><div class="px-captcha-error"><img class="px-captcha-error" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAAQCAMAAADDGrRQAAAABGdBTUEAALGPC/xhBQAAAAFzUkdCAK7OHOkAAABFUExURUdwTNYELOEGONQILd0AONwALtwEL+AAL9MFLfkJSNQGLdMJLdQJLdQGLdQKLtYFLNcELdUGLdcBL9gFL88OLdUFLNEOLglBhT4AAAAXdFJOUwC8CqgNIRgRoAS1dWWuR4RTjzgryZpYblfkcAAAAI9JREFUGNNdj+sWhCAIhAdvqGVa1r7/oy6RZ7eaH3D4ZACBIed9wlOOMtUnSrEmZ6cHa9YAIfsbCkWrdpi/c50Bk2CO9mNLdMAu03wJA3HpEnfpxbyOg6ruyx8JJi6KNstnslp1dbPd9GnqmuYq7mmcv1zjnbQw8cV0xzkqo+fX1zkjUOO7wnrInUTxJiruC3vtBNRoQQn2AAAAAElFTkSuQmCC">Please check your internet connection' + (window._pxMobile ? '' : ' or disable your ad-blocker') + '.</div></div><div class="px-captcha-error-refid">Reference ID ' + window._pxUuid + '</div>';
            document.body.appendChild(div);
            if (window._pxMobile) {
                setTimeout(function() {
                    location.href = '/px/captcha_close?status=-1';
                }, 5000);
            }
        };
    

Requests	IP Address	Location	AS Autonomous System
7	13.33.235.12	New York, New York, United States	AS16509AMAZON-02
4	34.36.73.246	Kansas City, Missouri, United States	AS396982GOOGLE-CLOUD-PLATFORM
4	13.33.235.96	New York, New York, United States	AS16509AMAZON-02
4	199.232.173.40	Stockholm, Stockholm County, Sweden	AS54113FASTLY
4	2.18.244.16	Schiphol, North Holland, Netherlands	AS20940Akamai International B.V.
4	34.120.250.63	Kansas City, Missouri, United States	AS396982GOOGLE-CLOUD-PLATFORM
27	6	-	-

Security Scan Report: account.nj.casino.fanduel.com

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Bot Protection Detected

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History