Overview

URL duanlocphatresidence.com/
IP45.252.248.18
ASN
Location Unknown
Report completed2019-05-24 18:34:59 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-05-24 2 duanlocphatresidence.com/ Malware
2019-05-24 2 duanlocphatresidence.com/wp-includes/css/dist/block-library/style.min.css?v (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/assets/css/fl-icons.css (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/plugins/contact-form-7/includes/css/sty (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/style.css?ver=3.7.2 Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/assets/css/flatsome.css (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/plugins/revslider/public/assets/js/jque (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/plugins/revslider/public/assets/css/set (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.2 Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/plugins/contact-form-7/includes/js/scri (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/assets/css/icons/fl-ico (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/inc/extensions/flatsome (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/assets/css/icons/fl-ico (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1 Malware
2019-05-24 2 duanlocphatresidence.com/wp-content/themes/flatsome/assets/js/flatsome.js?v (...) Malware
2019-05-24 2 duanlocphatresidence.com/wp-includes/js/wp-embed.min.js?ver=5.2 Malware
DNS-BH  No alerts detected
mnemonic secure dns
Added / Verified Severity Host Comment
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted
2019-05-24 2 duanlocphatresidence.com Blacklisted


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 45.252.248.18

Date UQ / IDS / BL URL IP
2019-06-10 09:07:16 +0200
0 - 0 - 6 sieure.asia/AT_T_Online/US/llc/pjil-jeGv_tjPGFx-jx 45.252.248.18
2019-06-09 20:13:20 +0200
0 - 0 - 4 sieure.asia/AT_T_Online/US/llc/pjil-jeGv_tjPG (...) 45.252.248.18
2019-06-09 17:36:06 +0200
0 - 0 - 3 duannamvanphong.com/maria/wp-admin/css/colors/blue 45.252.248.18
2019-05-17 06:38:15 +0200
0 - 0 - 1 sieure.asia/ 45.252.248.18
2019-05-06 17:41:52 +0200
0 - 0 - 38 duanlocphatresidence.com 45.252.248.18
2019-04-05 22:37:38 +0200
0 - 0 - 1 bietthubien.org/wp-admin/HismO-727953LW8vq4JI (...) 45.252.248.18
2019-03-22 22:47:11 +0100
0 - 0 - 2 https://myphamthienthao.com/wp-admin/krdwj-18 (...) 45.252.248.18
2019-03-18 18:57:35 +0100
0 - 0 - 2 https://myphamthienthao.com/wp-admin/sendincs (...) 45.252.248.18
2019-02-24 18:16:42 +0100
0 - 0 - 2 chuyensacdep.com/ 45.252.248.18
2019-02-16 17:56:42 +0100
0 - 0 - 2 chuyensacdep.com/ 45.252.248.18

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-07-02 09:48:15 +0200
0 - 0 - 0 https://www.imdb.com/list/ls049696316/ 143.204.52.228
2019-07-02 09:48:17 +0200
0 - 0 - 0 https://www.imdb.com/list/ls049696333/ 143.204.52.228
2019-07-02 09:48:03 +0200
0 - 0 - 0 https://www.spreaker.com/show/ver-peru-x-urug (...) 52.51.101.146
2019-07-01 11:37:34 +0200
0 - 0 - 0 https://www.tig-uk.com/tts/nbn4298k3o7tvns8vp (...) 144.217.235.30
2019-07-01 11:37:22 +0200
0 - 0 - 0 https://www.tig-uk.com/tts/nbn4298k3o7tvns8vp (...) 144.217.235.30
2019-07-01 11:36:59 +0200
0 - 0 - 0 https://healthadviserpro.com/power-efficiency (...) 108.179.246.37
2019-07-01 11:35:37 +0200
0 - 0 - 0 https://www.imdb.com/list/ls049291106/ 143.204.52.228
2019-07-01 11:31:59 +0200
0 - 0 - 1 https://fp.bwjf.cn/downInvoice/98d3884f381b46 (...) 39.107.217.15
2019-07-01 11:28:01 +0200
0 - 0 - 0 https://d9.flashtalking.com/d9core 52.211.104.166
2019-07-01 11:27:51 +0200
0 - 0 - 0 https://www.launchora.com/story/123movies-wat (...) 52.38.238.5

Last 1 reports on domain: duanlocphatresidence.com

Date UQ / IDS / BL URL IP
2019-05-06 17:41:52 +0200
0 - 0 - 38 duanlocphatresidence.com 45.252.248.18


JavaScript

Executed Scripts (27)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (61)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
X-Powered-By: PHP/7.0.33
X-Pingback: http://duanlocphatresidence.com/xmlrpc.php
Link: <http://duanlocphatresidence.com/wp-json/>; rel="https://api.w.org/", <http://duanlocphatresidence.com/>; rel=shortlink
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:26 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   16584
Md5:    5adf35082c05083953afe0697d0d5b93
Sha1:   c6307b51ae7e2c44ee389a6a73960d333ba84e83
Sha256: 40e4a77c4cb163c3ca02e9783bf8de8a29d3ed7602549e042106f8a2944f204c

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:28 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6f4befe78a1e656e3df2ac36f46ec3b8
Sha1:   444289f50e97e2ef339e52163c6294d8b818b49b
Sha256: 13029145eda83cb9e2ef36e5eccfd1e73e51433397ddd9c9a61aeb80e5519aa1
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:28 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /gtm.js?id=GTM-PLNRZWG HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         172.217.20.40
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:34:28 GMT
Expires: Fri, 24 May 2019 16:34:28 GMT
Cache-Control: private, max-age=900
Last-Modified: Thu, 23 May 2019 22:31:53 GMT
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   21428
Md5:    a10b64fffc6fa00fa04deb82e1e76e60
Sha1:   743b50c957d239456979d68d1dd2e26fc0c7af32
Sha256: 2a0fdf7c0650ef5f2a040eac9510d00a3b041c333cec7e0970b7864b9d9977f4
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:34:28 GMT
Expires: Fri, 24 May 2019 16:34:28 GMT
Cache-Control: private, max-age=3600
Etag: 2606668133852809251
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 8870
X-XSS-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   8870
Md5:    fe11461e6d3a0475ab8d42f9dc0d5083
Sha1:   5ea8ab8355346b797afc3db0b0d66b659f1c5a8c
Sha256: 6d70555a0bd1a193d53f0332ffcd4baf4daa85a27b5c8ea4d6d8e4769f2e100e
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Mon, 22 Apr 2019 12:40:04 GMT
Content-Length: 5891
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5891
Md5:    86c070b764a8f404fac6fe4b41d7e1ae
Sha1:   c40498227c0668da98c2c07bd960bb95ac3eec81
Sha256: 317cc56177bd1d9857c94524f4705f1d31a6c3b8a4756cfe5b6da53ccda10a94

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Fri, 07 Dec 2018 07:38:28 GMT
Content-Length: 192
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   192
Md5:    9e8e764c7e119cd5ac2eeae85715074f
Sha1:   e296f93cf6dd91f5ec72abd840824f734fdddf7e
Sha256: 6db7d6ef46a6024279e8f45fea9e260fb6838fe0ded0a5caebe3f13bb69001ad

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Sat, 18 May 2019 03:18:04 GMT
Content-Length: 706
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   706
Md5:    d61edd300b6219f956d7e080bba0106b
Sha1:   37f5035038565834dd547d997bad373563ff9457
Sha256: cf420ffe49768838b348f0e78e6c546e4befeaa0343f257e7090173164014e48

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/style.css?ver=3.7.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Sun, 17 Mar 2019 04:35:29 GMT
Content-Length: 1640
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1640
Md5:    36c21b0e8fafe77411bf9c23e26dba2e
Sha1:   6aeb218c7becfcc8e2d48029f3ba8b8e34f4909c
Sha256: cc251cf99fa6159de6df4aebdd512a2d50bb533a99a2fbf9befa5074afb1a99b

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.7.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Fri, 07 Dec 2018 07:38:28 GMT
Content-Length: 35781
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   35781
Md5:    a9c5a615160f0194c88ea2310f637d4c
Sha1:   912c54bbc08c6ca484ff60bbac6222a2363e99c8
Sha256: c9e70c05f258322458018a70a4f957e98b83d5d37b26c20799f4c52a618bffcc

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Content-Length: 4303
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4303
Md5:    cbb781ab16adc76588b488d1e472b8a9
Sha1:   85455b9c0b265a0bb9815ce834c67972ff0d437d
Sha256: 4ae120ba11bfa1cb6f71ceeecc5b6a0abe34cb4fb195a46ef3a85b40d1e1244e

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Wed, 23 May 2018 10:05:30 GMT
Content-Length: 39403
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   39403
Md5:    ee66b40e3ddfee912512fc9fde968c8b
Sha1:   048d3bc1ad05e3382bf470eebe0132c6d3df0c0f
Sha256: 5cb2c2c6cf60f8df0e3c5fa82d79677831b01af959477ec3a1bd62659a6976a8

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:28 GMT
Last-Modified: Tue, 19 Jun 2018 04:28:36 GMT
Content-Length: 21443
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:28 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21443
Md5:    02a417d55043c7a156a06e9473d307ad
Sha1:   59b3030c81ebdf3d4a45315a4abdb34b5c288ec4
Sha256: 5c9380695b19e3b12421e90444629d37653086dffdaec51056066be162526d9c

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/logo-locphat-final-1.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:28 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:06 GMT
Content-Length: 1872
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:28 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 200 x 76, 8-bit colormap, non-interlaced
Size:   1872
Md5:    c2d54f4b22a280892aab7f570ea98ddf
Sha1:   1c7a756dc2d0f6b6a49b3dd58366efe6120b058f
Sha256: a7096c608e7e3ae1a83479a9f84a24c1dd2a0c1c3bb73ea6952b2752578a42a4

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:28 GMT
Last-Modified: Wed, 13 Jun 2018 08:15:10 GMT
Content-Length: 43941
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:28 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   43941
Md5:    7516fee0e823327783f00edcec84d331
Sha1:   fb21d914ec5b7ccb69aba61f1b8a28839c909c9b
Sha256: a4fed09cec03f63c20d06c22f4c0ee61dba8bc333dcb9e4238760017c8bfed1c

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 24 May 2019 15:27:28 GMT
Expires: Fri, 24 May 2019 17:27:28 GMT
Last-Modified: Tue, 21 May 2019 23:53:44 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17595
Cache-Control: public, max-age=7200
Age: 4021
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17595
Md5:    585dd98ad9bada516652979df577ade8
Sha1:   b81e0ee5e2648994c7c92e4becb6a8420113e462
Sha256: e88dfebceadff72fc5bb3ab4a4dfa71d835acbb4d183091d66e72e762fb306d5
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:29 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6a390342c55f0747a4ba9b5cdd0f7cd7
Sha1:   25eb74fb1683a8b59b86bc5de8ff70cf06a77fac
Sha256: 21be17a6c67d582b5d012806b8ff30309d0f456fd98b8e64ab3d834c6a4def0c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:29 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    bada82144a5c9d09cdd36160336bfe95
Sha1:   8570308936ba3b9eb74632f4b428464eb33d262c
Sha256: d5a3bd4cd9ef87949404399f99a8398915f3def110671bd1b04a58d397f7b2d9
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Wed, 05 Dec 2018 04:07:48 GMT
Content-Length: 11477
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11477
Md5:    23f557e54f984dca8db73ebdddccf087
Sha1:   377881e3e7b50270038d8470f02008e25dcdf426
Sha256: 22b7eb3765aa3190b5435b0fa2275de451dd598e5318a216996d88bfa3bbf7c4

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /r/collect?v=1&_v=j76&a=352302831&t=pageview&_s=1&dl=http%3A%2F%2Fduanlocphatresidence.com%2F&ul=en-us&de=UTF-8&dt=Home%20-%20Locphatresidence&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=YEBAAAQ~&jid=654846624&gjid=1764743945&cid=886280519.1558715670&tid=UA-120608931-12&_gid=1850299804.1558715670&_r=1&gtm=2wg5f2PLNRZWG&z=1403634258 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 24 May 2019 16:34:29 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /pagead/viewthroughconversion/761236235/?random=1558715668627&cv=9&fst=1558715668627&num=1&fmt=3&guid=ON&resp=GooglemKTybQhCsO&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=2wg5f2&frm=0&url=http%3A%2F%2Fduanlocphatresidence.com%2F&tiba=Home%20-%20Locphatresidence&async=1 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Fri, 24 May 2019 16:34:29 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Location: https://www.google.com/pagead/1p-user-list/761236235/?random=1558715668627&cv=9&fst=1558713600000&num=1&fmt=3&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=2wg5f2&frm=0&url=http%3A%2F%2Fduanlocphatresidence.com%2F&tiba=Home%20-%20Locphatresidence&async=1&cdct=2&is_vtc=1&random=1072909609&resp=GooglemKTybQhCsO
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 24-May-2019 16:49:29 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:27 GMT
Last-Modified: Mon, 08 Apr 2019 05:22:50 GMT
Content-Length: 5233
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:27 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5233
Md5:    a2bcd6695d6d0d58ef1db0c658eb2bce
Sha1:   262b3ac4d036fc3a71715cfdece9d841e2748cd8
Sha256: aa7115b44ea52a5d810fc9d5f0417941f989da6c0a4957ba9dc2de3e97e5e615

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /css?family=Roboto:300,400,500,700,900&subset=vietnamese HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/wp-content/themes/flatsome/style.css?ver=3.7.2

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 24 May 2019 16:34:29 GMT
Date: Fri, 24 May 2019 16:34:29 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   280
Md5:    658ce226a1f6cfff780cae80863cd0ea
Sha1:   8c1c3f15753e92c6193d31ca34281e86654c6bbd
Sha256: 04b7811504a0fa0f192e0425a0af5eaaad3d9e4b9a42afef12466ff8429372b8
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:29 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4df703dc9c83186d3007432a60174926
Sha1:   ef8378af33cae98279027a5cc48f1114e210bc36
Sha256: e18b664a969fb26d35cf2bc723631cda3d8d85bda5f844b9ff745020a123a467
                                        
                                            GET /wp-content/uploads/2019/03/baa.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:58 GMT
Content-Length: 7373
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 227 x 103, 8-bit/color RGB, non-interlaced
Size:   7373
Md5:    b3f8f06fcb207f5db793c4998b65bad4
Sha1:   4c7ec73eb6cfb8e188b11d9d3a2caf51bbd4913c
Sha256: 04f83f82f163b3c64fe28b3dc6a7317e2098d29c894cb28ed02dd35cabb26fc1

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/6-tien-ich-loc-phat-residence0-1.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:56 GMT
Content-Length: 5116
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 500 x 100, 8-bit colormap, non-interlaced
Size:   5116
Md5:    0f5bbd27dcdb33ae5dd738503cdbe298
Sha1:   c0e550cf8466c88e1db11b8cea6d5210f53ca5e5
Sha256: 28e04fded0b33f13b0b5605c56b0112afafa76e6f987de6dd221c8de1e59d458

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/icon2.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:04 GMT
Content-Length: 836
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   836
Md5:    26f7aee970b6b547cf123e5deeb45f47
Sha1:   814f3be4383d52915e1d7025c6286cbffa94a27c
Sha256: 5d97def6a5fdda47574e231321d6e1cbc57d8c77393c80431df9e82b01f276a5

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/icon5.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:03 GMT
Content-Length: 852
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   852
Md5:    11fe6e1e2b8a1ff9771b48c7bef692f5
Sha1:   6410202c55cb452c339f51a2fadaf2fd634e4905
Sha256: fa64dce94c0344e4553737cc68fb64dc569a3ee26966027d6abe47a69c37f0b1

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/ICON7.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:03 GMT
Content-Length: 892
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   892
Md5:    0a60da5f15222939266cff16d832de12
Sha1:   80f00b5af5df94b3f8b25d8e4980a69619b2ec5d
Sha256: dd7918d1e6e45d94897d13a55a86cb9bcd4c8007dc473eb0b873a2f5bc0c8457

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /pagead/1p-user-list/761236235/?random=1558715668627&cv=9&fst=1558713600000&num=1&fmt=3&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=2wg5f2&frm=0&url=http%3A%2F%2Fduanlocphatresidence.com%2F&tiba=Home%20-%20Locphatresidence&async=1&cdct=2&is_vtc=1&random=1072909609&resp=GooglemKTybQhCsO HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         216.58.207.196
HTTP/1.1 302 Found
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 24 May 2019 16:34:30 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Location: https://www.google.no/pagead/1p-user-list/761236235/?random=1558715668627&cv=9&fst=1558713600000&num=1&fmt=3&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=2wg5f2&frm=0&url=http%3A%2F%2Fduanlocphatresidence.com%2F&tiba=Home%20-%20Locphatresidence&async=1&cdct=2&is_vtc=1&random=1072909609&resp=GooglemKTybQhCsO&ipr=y
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /wp-content/uploads/2019/03/icon-1.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:03 GMT
Content-Length: 739
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   739
Md5:    046584ba48f927f7d9aa756890fc48ba
Sha1:   f00fb3c00e1873f183d1fb97e5b3292593d236bc
Sha256: c16b6ab8612d24b77fbbb0543fd720a80334b87a9aea047f7cb24789c5bdb8c1

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Sat, 18 May 2019 03:18:04 GMT
Content-Length: 4703
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4703
Md5:    c1fda3999eab3982afd8c6ed9483cd88
Sha1:   92bb2006bdfd65dee67b80519b73805820eedd3d
Sha256: bce1b98fb149a2f96ee6838a924afb53394586b748c158c6be3c301c333d1bde

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    017320fc45f4131de5d10c6d68660d1e
Sha1:   25004bb6d6dd3d2e42e74f836f972dd1baf06b22
Sha256: 41b829d2a6be10d8b176fe0670f27a64484e0dba3b54fae05f0cae67be6028ef
                                        
                                            GET /ajax/libs/webfont/1/webfont.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 5437
Date: Fri, 19 Apr 2019 15:06:06 GMT
Expires: Sat, 18 Apr 2020 15:06:06 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 3029304
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   5437
Md5:    d6a013c3fd6c6f8d7883b3b2e4ce4894
Sha1:   2c7fa2cd6f3601e1edf23e2ddb1a8562ee6abf28
Sha256: 308e8345a2fd05640a723c445dc6781eabe0efc968292c2e0d1899cbdc30b8f3
                                        
                                            GET /wp-content/uploads/2019/03/icon6.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:03 GMT
Content-Length: 797
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   797
Md5:    26b899435610d3bf1d5c203a5d2dda87
Sha1:   85511adcc11ebdb7b78022987d6cc790e26a3b7a
Sha256: c71f64603a8bbf09825098278d5839bf5295144402b31dc28bb9b80c6c221b89

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /css?family=Roboto:regular,700%7CRoboto:regular,regular%7CRoboto:regular,700%7CDancing+Script:regular,400 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 24 May 2019 16:34:31 GMT
Date: Fri, 24 May 2019 16:34:31 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   291
Md5:    7ccbbd7d39aff5414dba620cbd35e5b2
Sha1:   5da8f15475ff4211eb33870f62e6a404689d97c5
Sha256: 47a435a8099981dafd614a31fd491e768c84200ec2b44e2a7c2dbe9b47d136fc
                                        
                                            GET /s/roboto/v19/KFOlCnqEu92Fr1MmEU9fCxc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=vietnamese
Origin: http://duanlocphatresidence.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 23888
Date: Fri, 19 Apr 2019 15:22:57 GMT
Expires: Sat, 18 Apr 2020 15:22:57 GMT
Last-Modified: Mon, 25 Mar 2019 20:14:17 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 3028293
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   23888
Md5:    60a9a5eebd49b9be7a169b0b49c7b9ab
Sha1:   3ff7d5376167fc182f6e66930eb823e3fe1825a7
Sha256: 0823af875b23915eac999256c9d425f6abd5be908f676e54583b284575735880
                                        
                                            GET /wp-content/uploads/2019/03/san-gofl-song-be-1-1.jpg HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:53 GMT
Content-Length: 45879
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   45879
Md5:    74c3e88d8b3284c4908e961ea0a062e1
Sha1:   546cd7fb854ca399f60d094daf87d0e092b8f655
Sha256: 0def7b5f0871ce24f00a0aa785bfa6631e89b5ddc109a355c0d830a6d0b3eabd

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.ttf HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: font/ttf
                                        
Last-Modified: Fri, 07 Dec 2018 07:38:28 GMT
Content-Length: 9848
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   9848
Md5:    f359d0b861f9998e4788ef270fb1c8ae
Sha1:   f116c62acae5822ae24b393035b2bb95a6a6e887
Sha256: 38f9850454e3c74dc5abb6bac7f1fdcfcc84a4d7712228d3bc995fc13ae600c3

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.7.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:30 GMT
Last-Modified: Fri, 07 Dec 2018 07:38:28 GMT
Content-Length: 5756
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5756
Md5:    66d6d564a3791d5f46301a7c69802096
Sha1:   ea42d1b54e99094859abd65d8281af25fb38c19e
Sha256: 7fa99746f6b68a3ded7f0f9f20c0134de2c9a4d1be8e1fb639fa80945ab5885e

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/icon4.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:30 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:03 GMT
Content-Length: 1191
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit colormap, non-interlaced
Size:   1191
Md5:    2d9c188864cec5f7cbe23901d6c6bc7d
Sha1:   749e7ad88cb4886f090c23777465fc252c380d0f
Sha256: fd81c40ce9d6b9fb0c3d2ab2416fa5b809769564019a6b807aeeeac9e92177ae

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /s/roboto/v19/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Roboto:regular,700%7CRoboto:regular,regular%7CRoboto:regular,700%7CDancing+Script:regular,400
Origin: http://duanlocphatresidence.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20268
Date: Fri, 19 Apr 2019 15:15:47 GMT
Expires: Sat, 18 Apr 2020 15:15:47 GMT
Last-Modified: Mon, 25 Mar 2019 20:12:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 3028724


--- Additional Info ---
Magic:  data
Size:   20268
Md5:    60fa3c0614b8fb2f394fa29944c21540
Sha1:   42c8ae79841c592a26633f10ee9a26c75bcf9273
Sha256: c1dc87f99c7ff228806117d58f085c6c573057fa237228081802b7d8d3cf7684
                                        
                                            GET /s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Roboto:regular,700%7CRoboto:regular,regular%7CRoboto:regular,700%7CDancing+Script:regular,400
Origin: http://duanlocphatresidence.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20356
Date: Fri, 19 Apr 2019 15:37:09 GMT
Expires: Sat, 18 Apr 2020 15:37:09 GMT
Last-Modified: Mon, 25 Mar 2019 20:13:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 3027442


--- Additional Info ---
Magic:  data
Size:   20356
Md5:    adcde98f1d584de52060ad7b16373da3
Sha1:   0a9b76d81989a7a45336ebd7b48ed25803f344b9
Sha256: 806ea46c426af8fc24e5cf42a210228739696933d36299eb28aee64f69fc71f1
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 24 May 2019 16:34:31 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e52fbe82693137b2a8788afc47475b5b
Sha1:   142f18fa7e6e6d1adf69bd68f0a7e8184e553712
Sha256: 53896035b8584e9d1157b7032ed0411c21f7ccf928601eff662389e8682eae4b
                                        
                                            GET /s/dancingscript/v10/If2RXTr6YS-zF4S-kcSWSVi_szLgiuc.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Roboto:regular,700%7CRoboto:regular,regular%7CRoboto:regular,700%7CDancing+Script:regular,400
Origin: http://duanlocphatresidence.com

                                         
                                         216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 33212
Date: Fri, 19 Apr 2019 15:22:05 GMT
Expires: Sat, 18 Apr 2020 15:22:05 GMT
Last-Modified: Tue, 19 Feb 2019 22:34:33 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 3028346


--- Additional Info ---
Magic:  data
Size:   33212
Md5:    cb7bc4ef6f3d28701fbab09a756dbde5
Sha1:   38d0fef341239862380fe2613bbb5434397048d6
Sha256: 806e56c1175bd1235d4d209f5bd22c066932f79056de88d7dcb0d624e108c06d
                                        
                                            GET /wp-content/uploads/2019/03/benh-vien-columbia-1.jpg HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:52 GMT
Content-Length: 90946
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   90946
Md5:    c4f2989becfbe211ccc3fa64766219d2
Sha1:   6ab98a7d079955b50c3baef9874dce9b26bfe712
Sha256: b90b6f0cd895868530a39e3821873901c7c5cc357d653870e72dc4dcab0b2698

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.ttf HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.3
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1
Range: bytes=2920-
If-Range: Fri, 07 Dec 2018 07:38:28 GMT

                                         
                                         45.252.248.18
HTTP/1.1 206 Partial Content
Content-Type: font/ttf
                                        
Last-Modified: Fri, 07 Dec 2018 07:38:28 GMT
Content-Range: bytes 2920-9847/9848
Content-Length: 6928
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  Applesoft BASIC program data
Size:   6928
Md5:    f3ca80c56ada16f5d58b28e3f52e1208
Sha1:   2b5bf6324518fcc7251e60ae9d998adc2f2ca62b
Sha256: c9e658062b03b0bfdae4592eeb60cf4f74462cc394e30a3e6ef114ada6377e57

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:30 GMT
Last-Modified: Wed, 11 Mar 2015 17:15:26 GMT
Content-Length: 496
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   496
Md5:    96064029a57598de8acba51960bf11ff
Sha1:   93bab1d55f6732ff7e575292dab0d6b8f3a87ef5
Sha256: c0ed7cf59ebd2f1f385ddc934d7371dead6bad013f8fb78f38a98db554614c57

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/dat-nen-phan-lo-1024x666.jpg HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:30 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:01 GMT
Content-Length: 142777
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   142777
Md5:    e320b5b959ae4135741c975f8dd687a0
Sha1:   01265b07dd9ba4ba14d95883f9bc25b698ff27f6
Sha256: aa85fd18d3adeb0d8cb068087d4e44a924e2f4335d9d743d7e095bcc4cd8c445

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/shophouse-1024x666.jpg HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:30 GMT
Last-Modified: Tue, 19 Mar 2019 02:00:11 GMT
Content-Length: 111818
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   111818
Md5:    02d5aa1324eaef811ab05421277b2240
Sha1:   240bfc0676bcbaee2d952502d3199645816d3301
Sha256: d201ad1de74f2ff21ce82bd1a3a8bc2def4ae39f4c40159f3bccc2b344a00641

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/thpt-tran-van-on-1.jpg HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:54 GMT
Content-Length: 142756
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   142756
Md5:    4065f316cf107ffc2171860edb2deed5
Sha1:   5eb81d1137b37ad699f46089e7841779b3b3ef0e
Sha256: daa54495e193767bbff316457c1f49ac090d2243fde3331c5bc971d88b97f984

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/cropped-logo-locphat-final-1-192x192.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:31 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:59 GMT
Content-Length: 4442
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:31 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 192 x 192, 8-bit colormap, non-interlaced
Size:   4442
Md5:    d7fc7c36e8c57d7ef6b3b077cae763b7
Sha1:   3dddb4bfddfbfc5eb88431a3b5899ff2fe5f5110
Sha256: 6c68769b9a01d6d35f21f37a740dbd0a100ac3b40faf1657b1e5ccfcdc7fded0

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /pagead/1p-user-list/761236235/?random=1558715668627&cv=9&fst=1558713600000&num=1&fmt=3&guid=ON&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_his=1&u_tz=120&u_java=true&u_nplug=10&u_nmime=92&gtm=2wg5f2&frm=0&url=http%3A%2F%2Fduanlocphatresidence.com%2F&tiba=Home%20-%20Locphatresidence&async=1&cdct=2&is_vtc=1&random=1072909609&resp=GooglemKTybQhCsO&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 24 May 2019 16:34:33 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 42
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /wp-content/uploads/2019/03/eaon-mall.jpg HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:31 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:55 GMT
Content-Length: 115695
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:31 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   115695
Md5:    50a834f3c1b5ed19fa172fd5e2439b62
Sha1:   3c17cbd68bfcf405534261f5a03efae9e6c06f8d
Sha256: 98548e70804fea29b8880af87a17c77e21598ce009f60c2952bbe5c8b4fefdb2

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/cropped-logo-locphat-final-1-32x32.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:32 GMT
Last-Modified: Tue, 19 Mar 2019 01:59:59 GMT
Content-Length: 573
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:32 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit colormap, non-interlaced
Size:   573
Md5:    0081f407669c54d55edee56dc91c5773
Sha1:   4c8b8efbad027a2cbbe00e88a4ebe01d4149fcb2
Sha256: d49872128c945203799b75db6613cab4c1f1582ad1f7fcc3271f2f1d13f26e3d

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.7.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:31 GMT
Last-Modified: Fri, 07 Dec 2018 07:38:28 GMT
Content-Length: 56342
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:31 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   56342
Md5:    61e342c784c875c2e3f503fd7546f9ae
Sha1:   0ce888d145706aa70f79072751b377de5556052f
Sha256: 6691d3c83b6b394c9209030daa3d0b1358db8116838bff57e2d4ca85ccbdd9e7

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/maps-loc-phat-residence.gif HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:30 GMT
Last-Modified: Fri, 15 Mar 2019 09:11:53 GMT
Content-Length: 164782
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:30 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1020 x 680
Size:   164782
Md5:    50849c1710a5630cd8a81c02fb2858c3
Sha1:   2ebb44bd1f85a829c3ed1c1dfe886ca9e4071cd9
Sha256: 2dcbb67e0942fb2f0adc6aab34b2733578c43c29dd88d19bbcfde592553884f6

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.2 HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:33 GMT
Last-Modified: Thu, 30 Aug 2018 12:40:26 GMT
Content-Length: 767
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 24 May 2019 16:33:33 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   767
Md5:    fe6243ad6b87f904a1a3495c3188e768
Sha1:   cedd6d98559aa2ad591b306ded0d13241704fef0
Sha256: 1235e5add5817020528b1c972b43ebaded6a1a4cff631158360ab36a7b9f6449

Alerts:
  Blacklists:
    - fortinet: Malware
    - mnemonic_dns: Blacklisted
                                        
                                            GET /wp-content/uploads/2019/03/hinh-nen-website-1500x547-1.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://duanlocphatresidence.com/
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         45.252.248.18
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: public, max-age=604800
Expires: Fri, 31 May 2019 16:33:29 GMT
Last-Modified: Mon, 18 Mar 2019 13:11:14 GMT
Content-Length: 1055287
Accept-Ranges: bytes
Date: Fri, 24 May 2019 16:33:29 GMT
Server: LiteSpeed
X-Frame-Options: SAMEORIGIN
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 1500 x 547, 8-bit/color RGB, non-interlaced
Size:   1055287
Md5:    8013ff67aed9cab56913069a310821e7
Sha1:   f2717e313588008d2f390811015c803b89996ed7
Sha256: f41d2450892a66fc0568bbb503f1669a91a69d1447367bb46d8f17647b23f129

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted
                                        
                                            GET /s/roboto/v19/KFOlCnqEu92Fr1MmWUlfCxc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900&subset=vietnamese
Origin: http://duanlocphatresidence.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2019/03/cropped-logo-locphat-final-1-32x32.png HTTP/1.1 
Host: duanlocphatresidence.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.886280519.1558715670; _gid=GA1.2.1850299804.1558715670; _gat_UA-120608931-12=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - mnemonic_dns: Blacklisted