Report Overview

  1. Submitted URL

    licogi18.com.vn/login.microsoftonline.com/login.php?tes.php?login.live.com/getsessionstate.srf?response_type=code&client_id=51483342-085c-4d86-bf88-cf50c7252078&scope=openid+profile+email+offline_access&response_mode=form_post&redirect_uri=login.microsoftonline.com/common/federation/oauth2&state=rqiiaenisnllkckpklbs109myc3m0ysoyi9jts7jzm_tyy8tycnpz9zlzs_vyy9kz0wbsyqeuaqun61sl7ly4n-7wpjwqz9ev2yxcsbnzjalgurxmwosy6b-ankb_gvgxhemjjuy2h2dpoo9xsnpmdufk7vfjohflo6zel7slpqswpqi0nmbreavc48bsxuhb5saowsdasmpfszfrecntao1qlmuzuk0oati9yltyyztrpof2flj3mf5xz5ubgbzfvmu5mmrptmpzmemxvplazyf5vu-fafhzb4b2vxjtkzwhhpyhcawmz1iy9jfsbzlaq2&estsfed=1&uaid=27aab22138724fb08da033daeafc4afa&vaccess&vv=1600&mkt=en-us&lc=1033&emailcmd=login_submit&id=228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6&session=228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6

  2. IP

    123.30.171.132

    ASN

    #45899 VNPT Corp

  3. Submitted

    2022-09-17 04:27:48

    Access

  4. Website Title

  5. Final URL

  6. Tags

    None

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    80

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
licogi18.com.vnunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.pki.goog1750001-01-01T00:00:00Z0001-01-01T00:00:00Z
region1.google-analytics.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
connect.facebook.net1390001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.google.com70001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.googletagmanager.com750001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumlicogi18.com.vn/wp-content/themes/caia/style.css?ver=4.2.1Phishing
mediumlicogi18.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2Phishing
mediumlicogi18.com.vn/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.9Phishing
mediumlicogi18.com.vn/wp-content/themes/caia/custom/js/slick.js?ver=5.1.4Phishing
mediumlicogi18.com.vn/wp-includes/js/wp-embed.min.js?ver=5.1.4Phishing
mediumlicogi18.com.vn/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2Phishing
mediumlicogi18.com.vn/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.9Phishing
mediumlicogi18.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2Phishing
mediumlicogi18.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.0.0Phishing
mediumlicogi18.com.vn/wp-content/themes/caia/font/SFProDisplay-Regular.ttfPhishing
mediumlicogi18.com.vn/wp-content/themes/caia/font/SFProDisplay-Semibold.ttfPhishing
mediumlicogi18.com.vn/wp-content/themes/caia/font/SFProDisplay-Bold.ttfPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed
mediumlicogi18.com.vnSinkholed

Files detected

  1. URL

    ocsp.pki.goog/gts1c3

  2. IP

    142.250.74.3

  3. ASN

    #15169 GOOGLE

  1. File type

    gzip compressed data, max compression\012- data

    Size

    27 kB (27176 bytes)

  2. Hash

    97b01a05c9f8f91256730f0a6277277e

    807d1dd39a4efb8ccaaa547c2fb3fee32a9a3b09

    Detections

    AnalyzerVerdictAlert
    VirusTotal0/0

JavaScript (42)

HTTP Transactions (62)

URLIPResponseSize
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK939 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK329 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
push.services.mozilla.com/
34.214.17.205101 Switching Protocols0 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg
34.120.237.76200 OK6.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
34.120.237.76200 OK8.5 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg
34.120.237.76200 OK10 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK6.1 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK7.8 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1024748-f90f-4a93-b16b-b8f8110102f2.jpeg
34.120.237.76200 OK8.9 kB
licogi18.com.vn/login.microsoftonline.com/login.php?tes.php?login.live.com/getsessionstate.srf?response_type=code&client_id=51483342-085c-4d86-bf88-cf50c7252078&scope=openid+profile+email+offline_access&response_mode=form_post&redirect_uri=login.microsoftonline.com/common/federation/oauth2&state=rqiiaenisnllkckpklbs109myc3m0ysoyi9jts7jzm_tyy8tycnpz9zlzs_vyy9kz0wbsyqeuaqun61sl7ly4n-7wpjwqz9ev2yxcsbnzjalgurxmwosy6b-ankb_gvgxhemjjuy2h2dpoo9xsnpmdufk7vfjohflo6zel7slpqswpqi0nmbreavc48bsxuhb5saowsdasmpfszfrecntao1qlmuzuk0oati9yltyyztrpof2flj3mf5xz5ubgbzfvmu5mmrptmpzmemxvplazyf5vu-fafhzb4b2vxjtkzwhhpyhcawmz1iy9jfsbzlaq2&estsfed=1&uaid=27aab22138724fb08da033daeafc4afa&vaccess&vv=1600&mkt=en-us&lc=1033&emailcmd=login_submit&id=228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6&session=228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6
123.30.171.132301 Moved Permanently1.1 kB
r3.o.lencr.org/
23.36.77.32200 OK503 B
licogi18.com.vn/login.microsoftonline.com/login.php?tes.php?login.live.com/getsessionstate.srf?response_type=code&client_id=51483342-085c-4d86-bf88-cf50c7252078&scope=openid+profile+email+offline_access&response_mode=form_post&redirect_uri=login.microsoftonline.com/common/federation/oauth2&state=rqiiaenisnllkckpklbs109myc3m0ysoyi9jts7jzm_tyy8tycnpz9zlzs_vyy9kz0wbsyqeuaqun61sl7ly4n-7wpjwqz9ev2yxcsbnzjalgurxmwosy6b-ankb_gvgxhemjjuy2h2dpoo9xsnpmdufk7vfjohflo6zel7slpqswpqi0nmbreavc48bsxuhb5saowsdasmpfszfrecntao1qlmuzuk0oati9yltyyztrpof2flj3mf5xz5ubgbzfvmu5mmrptmpzmemxvplazyf5vu-fafhzb4b2vxjtkzwhhpyhcawmz1iy9jfsbzlaq2&estsfed=1&uaid=27aab22138724fb08da033daeafc4afa&vaccess&vv=1600&mkt=en-us&lc=1033&emailcmd=login_submit&id=228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6&session=228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6
123.30.171.132404 Not Found8.5 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
www.google.com/recaptcha/api.js?render=6LcZKSkcAAAAAOe683kf6ZbwuJryt3JRn8xZ0LIl&ver=3.0
142.250.74.164400 Bad Request119 B
www.googletagmanager.com/gtag/js?id=G-S2RJHLLQ19
142.250.74.72200 OK75 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
licogi18.com.vn/wp-content/themes/caia/style.css?ver=4.2.1
123.30.171.132200 OK5.5 kB
licogi18.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
123.30.171.132200 OK833 B
licogi18.com.vn/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.9
123.30.171.132200 OK1.6 kB
licogi18.com.vn/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.9
123.30.171.132200 OK10 kB
licogi18.com.vn/wp-includes/js/jquery/jquery.js?ver=1.12.4
123.30.171.132200 OK34 kB
licogi18.com.vn/wp-content/uploads/2021/09/mail-logo.png
123.30.171.132301 Moved Permanently272 B
licogi18.com.vn/wp-content/themes/caia/custom/js/slick.js?ver=5.1.4
123.30.171.132200 OK10 kB
licogi18.com.vn/wp-content/uploads/2022/08/z3647869742853_8e9eb39dbe04f3d3132e78f568ed4e62-360x240.jpg
123.30.171.132200 OK22 kB
licogi18.com.vn/wp-content/uploads/2022/07/z3599664945716_b6af56be7e8dec4959c4bbe8c5dd81d6-360x240.jpg
123.30.171.132200 OK21 kB
licogi18.com.vn/wp-content/uploads/2021/08/kdt-cau-han-360x240.jpg
123.30.171.132200 OK26 kB
licogi18.com.vn/wp-content/uploads/2022/06/z3451680902611_3b1f5a93c1be639c702d26a180bcb54f-360x240.jpg
123.30.171.132200 OK25 kB
licogi18.com.vn/wp-includes/js/wp-embed.min.js?ver=5.1.4
123.30.171.132200 OK753 B
licogi18.com.vn/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.4.2
123.30.171.132200 OK847 B
licogi18.com.vn/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.9
123.30.171.132200 OK2.4 kB
licogi18.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
123.30.171.132200 OK4.1 kB
ocsp.pki.goog/gts1c3
142.250.74.3200 OK27 kB
licogi18.com.vn/wp-content/uploads/2021/09/image003-3-360x240.jpg
123.30.171.132200 OK18 kB
licogi18.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.0.0
123.30.171.132200 OK33 kB
licogi18.com.vn/wp-content/uploads/2021/08/image001-8-360x240.jpg
123.30.171.132200 OK23 kB
licogi18.com.vn/wp-content/uploads/2021/08/anh-da-huong-thuong-360x240.jpg
123.30.171.132200 OK24 kB
licogi18.com.vn/wp-content/uploads/2021/08/image001-1-360x240.png
123.30.171.132200 OK31 kB
licogi18.com.vn/wp-content/themes/caia/images/xlogo2.png.pagespeed.ic.QkdUQz6A3O.png
123.30.171.132200 OK26 kB
region1.google-analytics.com/g/collect?v=2&tid=G-S2RJHLLQ19&gtm=2oe9e0&_p=632064380&cid=176377320.1663378559&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663388844&sct=2&seg=0&dl=https%3A%2F%2Flicogi18.com.vn%2Flogin.microsoftonline.com%2Flogin.php%3Ftes.php%3Flogin.live.com%2Fgetsessionstate.srf%3Fresponse_type%3Dcode%26client_id%3D51483342-085c-4d86-bf88-cf50c7252078%26scope%3Dopenid%2Bprofile%2Bemail%2Boffline_access%26response_mode%3Dform_post%26redirect_uri%3Dlogin.microsoftonline.com%2Fcommon%2Ffederation%2Foauth2%26state%3Drqiiaenisnllkckpklbs109myc3m0ysoyi9jts7jzm_tyy8tycnpz9zlzs_vyy9kz0wbsyqeuaqun61sl7ly4n-7wpjwqz9ev2yxcsbnzjalgurxmwosy6b-ankb_gvgxhemjjuy2h2dpoo9xsnpmdufk7vfjohflo6zel7slpqswpqi0nmbreavc48bsxuhb5saowsdasmpfszfrecntao1qlmuzuk0oati9yltyyztrpof2flj3mf5xz5ubgbzfvmu5mmrptmpzmemxvplazyf5vu-fafhzb4b2vxjtkzwhhpyhcawmz1iy9jfsbzlaq2%26estsfed%3D1%26uaid%3D27aab22138724fb08da033daeafc4afa%26vaccess%26vv%3D1600%26mkt%3Den-us%26lc%3D1033%26emailcmd%3Dlogin_submit%26id%3D228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6%26session%3D228499b55310264a8ea0e27b6e7c6ab6228499b55310264a8ea0e27b6e7c6ab6&dt=Kh%C3%B4ng%20t%C3%ACm%20th%E1%BA%A5y%20-%20Licogi%2018&en=page_view&_ss=1&_ee=1
216.239.32.36204 No Content0 B
ocsp.pki.goog/gts1c3
142.250.74.3200 OK472 B
licogi18.com.vn/wp-content/themes/caia/font/SFProDisplay-Regular.ttf
123.30.171.132200 OK147 kB
licogi18.com.vn/wp-content/plugins/google-language-translator/images/xflags.png.pagespeed.ic.Ez8qx8OZvV.png
123.30.171.132200 OK55 kB
licogi18.com.vn/wp-content/themes/caia/images/favicon.ico
123.30.171.132200 OK170 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
connect.facebook.net/vi_VN/sdk.js
31.13.72.12200 OK1.7 kB
ocsp.digicert.com/
93.184.220.29200 OK471 B
connect.facebook.net/vi_VN/sdk.js?hash=2b5e495ee7a264ebe515624df8f2b2f7
31.13.72.12200 OK87 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg
34.120.237.76200 OK5.2 kB
licogi18.com.vn/wp-content/themes/caia/font/SFProDisplay-Semibold.ttf
123.30.171.132200 OK0 B
licogi18.com.vn/wp-content/themes/caia/font/SFProDisplay-Bold.ttf
123.30.171.132200 OK0 B