Report - www.bangcapchungchitoanquoc.com/

Report Overview

Submitted URL
www.bangcapchungchitoanquoc.com/
IP
150.95.113.28
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company
Submitted
2023-01-20 07:52:38
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.bangcapchungchitoanquoc.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	363 B	495 B	150.95.113.28
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	69 kB	34.120.237.76
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	1.2 kB	216.58.211.4
bangcapchungchitoanquoc.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	29 kB	294 kB	150.95.113.28
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	766 B	746 B	142.250.74.106
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.88.143.102
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	95.101.11.115
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	21 kB	216.239.36.178
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	45 kB	172.217.21.168
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.1 kB	206 kB	142.250.74.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	7.7 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-20	medium	www.bangcapchungchitoanquoc.com/	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.9	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.6.2	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.6.2	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.7.6	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-includes/js/wp-embed.min.js?ver=5.4.12	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.88	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.1.3	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/10-400x400.jpeg	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.2.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-457.css?ver=1657542127	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-587.css?ver=1657542593	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/style.css?ver=1.0.0	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-460.css?ver=1657542747	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/js/jquery-scrolltofixed.js	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.88	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=2.9.8	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.1.3	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4	Phishing
2023-01-20	medium	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	bangcapchungchitoanquoc.com/	924 B	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 341801b6e8c9b05c0763e891853f1ccf f3da9388e1b5c0982d4891c6cc91900c9c011a1c 7d8ec83e7397ed96d9ec5fe6423ce78820282b1f330c3b0bcfddc15c7676765d Loading...

	bangcapchungchitoanquoc.com/	2.2 kB	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash bb9d1c331164d42f32cdec4c5f178cef 899b69f8933de736e844ff234c3eb09125235295 43be563260d4a3d6ecc5cbbad327832ff730d27d133a41862dfae20c53ba7509 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.36.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-19
Pretty URL bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 01:19:39 Times Seen37082 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/js/jquery-scrolltofixed.js	23 kB	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/js/jquery-scrolltofixed.js IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:42:20 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 7bb2990fabc61a9c9ee53e9728f04a1b bd9d1c519cf7d01fe2ec1839659fb7c83b24c2f0 787c71b5609881269d04ce6e9298fad72bb3abd84306edd8ff37dd2cc53c2b12 Loading...

	www.google.com/recaptcha/api.js?hl=vi	850 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?hl=vi IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 5fa5511b8862771af99d08a3534341ea b227af6d9b694cb0142b912afac84d3a0d337e3f 1b68b3fd1dd83be62068f7ed2043c935dfafd84575538384f3b20440e9ae870c Loading...

	bangcapchungchitoanquoc.com/	529 B	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:42:20 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 80eb96ca7814f1250a3d71375c154915 180807c6b0626b6b1d7bbac0981db0a027d6ecf1 43a6e1c1e38ace1c8f8949db6ecce1b4c55964d2887ac68fe84efa26452fcd50 Loading...

	bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-18
Pretty URL bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-18 16:58:36 Times Seen17716 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	www.googletagmanager.com/gtag/js?id=UA-158051703-1	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-158051703-1 IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 9ef27e24a09d6ec3acd5486d573550d1 50d3aaabda817571c55d202450688114ec55d9eb ea50247dd1f9bd183ae0014eb2b3a9fe5257d018321582c20fd192e73a643f8b Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.7.6	11 kB	2023-03-07	2024-04-04
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.7.6 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:35 Last Seen2024-04-04 22:17:46 Times Seen717 Hash 79e1042d54d4f1619591d95183c7bf44 52027ab5d042ef46837f4298320dc401fe985274 eb567d9bafc7064a86cd894d15a4a43073fe20789bafc64a47ac5efcf7a78285 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	139 kB	2023-03-07	2024-04-07
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:35 Last Seen2024-04-07 22:14:48 Times Seen541 Hash e5bb26def607ac0e0e114a502ac65e38 2cd244e7a00c598ed9ec4e0d04325f8511667816 770008a560398e6ab513700705e2431fce9e999b8e10c299ad9c4dafd0c9010b Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=2.9.8	60 kB	2023-03-07	2024-01-02
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=2.9.8 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:36 Last Seen2024-01-02 16:03:14 Times Seen79 Hash afa0553528d4060380811d3e4edc4653 21ac89dd6dbc7167fda12b5aa653a6b8a554579e ca3043e21ab00fc0d5c2ce543b5c49d40cd8c07e6a26373dc54fc0a7fffb00eb Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=2.9.8	2.6 kB	2023-03-07	2024-04-04
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=2.9.8 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-04 22:17:45 Times Seen659 Hash 40b7fbab8b1a9cd4d500fe48a3de90db a3562e9b54db671903c0c0f05f0cc946d34af643 20d67dc1d22cadd6326639e1510929bd3bfdefe7a3a4bd2d78160514b3aa6f50 Loading...

	www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__vi.js	420 kB	2023-03-13	2023-03-13
Pretty URL www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__vi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash a79076c86b581031b50f8d6f30ee3ee9 560cee7eca2b040ffe86acf514fce6b9bd93fa2c 52e4b9de3e2caa8930a7c0824cabe1083af87153742eeb99a9d6941887789515 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4	6.6 kB	2023-03-07	2024-04-18
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-18 13:42:01 Times Seen4076 Hash e16a8821e5f099c3a619889ea7cf0399 a38e0c736aaf0b019b29b63b00e68c1381502217 a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=2.9.8	15 kB	2023-03-07	2024-04-11
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=2.9.8 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:35 Last Seen2024-04-11 10:46:21 Times Seen616 Hash 2ad7a30635f384d807734d9631643297 b1e6b30b70be56af0498e90ef76d7b416a6c0840 374b38618c111a9eccbdd003ac49ae6d80f5b624602b48feb73c0fc29b8b9d75 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9	15 kB	2023-03-07	2024-04-07
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-07 18:52:19 Times Seen958 Hash eea94f6013d8a939c0b4ace7753afe6e df8fa5affa60932e9aa1cfbda370c0c1bb3b380f 72ebfeb1ce24b152349b7a231f6fc29ff2a2b7a5ede91dcdb80d6b9de1779046 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.1.3	1.9 kB	2023-03-07	2024-02-25
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.1.3 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:54 Last Seen2024-02-25 16:24:22 Times Seen70 Hash ec5778ba3a0451e0265a02c26458a00e 3170e2381ab6c13e2ed79cedaf3ab5f689e73b1a b8c0ce32234af999076b48518b249d477718550593a782e170f159477e8b4265 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.88	3.3 kB	2023-03-07	2024-04-18
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.88 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:47 Last Seen2024-04-18 21:08:33 Times Seen1239 Hash 830dae7fb9dfd5ac1879a83dd028083d 6be6afca684e3305000879ad71f264f0c6549bd1 c42425f18923921089911e70f39c6dd462794df2e42ac0596abc3884da6471fc Loading...

	bangcapchungchitoanquoc.com/	2.3 kB	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:42:20 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 5c346907fecdaaa7e2b68f72b8c951c9 d42583f5186fa1c266a7b06f183c5c0fa45f15cd 86bcccb6d4d813e255481965bc2c99ec5146e902c4ac3b5aade34315055539f9 Loading...

	bangcapchungchitoanquoc.com/wp-includes/js/wp-embed.min.js?ver=5.4.12	1.4 kB	2023-03-07	2024-04-19
Pretty URL bangcapchungchitoanquoc.com/wp-includes/js/wp-embed.min.js?ver=5.4.12 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-19 01:16:23 Times Seen6857 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-19
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 01:58:23 Times Seen16554 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	bangcapchungchitoanquoc.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0	8.1 kB	2023-03-07	2024-04-15
Pretty URL bangcapchungchitoanquoc.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:06 Last Seen2024-04-15 15:38:28 Times Seen601 Hash b89ed002fd8fa08062ac8018e5416432 8196c522a7a1a506dde696f68de76c1658a61610 afbd6d3dbf677900ec3d80e8057a7b9f93f72e5971494ed7ce7a4be1cb7c9ae8 Loading...

	bangcapchungchitoanquoc.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4	6.4 kB	2023-03-07	2024-04-17
Pretty URL bangcapchungchitoanquoc.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:55 Last Seen2024-04-17 06:06:54 Times Seen1797 Hash d1c2e97eeca08ca067ccf2c5736f0390 5281985542fcc8c5a651d1991296e12c39bfcb82 0ce51090b148a45a0e3d652719ed6ef7f1a38e5d272dbf874f86a49664e897a3 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=2.9.8	116 kB	2023-03-07	2024-01-02
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=2.9.8 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:36 Last Seen2024-01-02 16:03:14 Times Seen71 Hash 3bbcfbd769aaf96c7736fdc86f975414 0eb070fa482fe37a5c1ea57e986d99569e3d2bd4 e1e69cc775a18d34eeb16ade98fd6e374a048e93510f6653135045af4213379e Loading...

	bangcapchungchitoanquoc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12	14 kB	2023-03-07	2024-04-18
Pretty URL bangcapchungchitoanquoc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-18 02:51:38 Times Seen2868 Hash c8d5a4cd14632bc2bdf15b5e45ca9d4d cdf210b710c2792eda450a1a11e5dc1f8dae8594 956fa56f513e1a8025bc85f9314a1747eb061d434403393591145e4ae898c694 Loading...

	bangcapchungchitoanquoc.com/	177 B	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash f03f1d31651a74276c4eecee6f88fe81 2e7dc11a1c32540a25e4bd3be7bda387141ba39a 8ae49ba7c8c46f04f0ac8b24c5f9fa5a0ce27a93f1ec1d7ace630b2706b08426 Loading...

	bangcapchungchitoanquoc.com/	1.0 kB	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:26 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 430a49c69629f4074b56c1b729c572d2 3d45ec3620fdf45f5c99c142c5683f6d05a28c03 e61b1a8f202d0467d5922a6adab92b41440aea0f1e6744120b66053433b64bdc Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-19
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 01:58:23 Times Seen52483 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	bangcapchungchitoanquoc.com/	155 B	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:42:20 Last Seen2023-03-13 03:50:26 Times Seen1 Hash c2d9bd3473de7bb876e4df50392cfe3a a894f6d4c6c2c7b02f9ac7af70b50656ce6f2209 95146ff27674b919eca741ec5c7d21121fbf70a14c85b4f20c92a1facb790925 Loading...

	bangcapchungchitoanquoc.com/	167 B	2023-03-13	2023-03-13
Pretty URL bangcapchungchitoanquoc.com/ IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:42:20 Last Seen2023-03-13 03:50:26 Times Seen1 Hash 97cba0e0e014d39714a6fc212f88c202 ed5e5fb4edfbca3db751510cd89b47cc25ec27df cb8406a64989963386bfedb6027638acb3102918cb5c98587b530798217ae90f Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4	101 kB	2023-03-07	2023-12-04
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:46 Last Seen2023-12-04 18:46:27 Times Seen33 Hash 2f2cac9bae2e4d6ab4de1b52c6cdbb09 d251784223ad0880830185312786b99b3b652e2a b2313b1716e0941f7c6b1ed726d191d9c61934c430cbb281feb1fbdee8fa6298 Loading...

	bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.2.8	20 kB	2023-03-13	2024-02-13
Pretty URL bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.2.8 IP 150.95.113.28 ASN #131392 GMO-Z.com Runsystem Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:42:20 Last Seen2024-02-13 18:56:18 Times Seen10 Hash 586f628ba3cd5dc218d634f59bd12fb0 22cb1778c1a9badb4f26e8535c751809b2c183dd 5bcaf232bb78c750d76da8d723b0f89f7771bc633c543f6093f516a0da5471eb Loading...

HTTP Transactions (113)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5051
Expires: Fri, 20 Jan 2023 09:16:38 GMT
Date: Fri, 20 Jan 2023 07:52:27 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2774
Expires: Fri, 20 Jan 2023 08:38:41 GMT
Date: Fri, 20 Jan 2023 07:52:27 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7afaa97fbfa9baa1485c892eac8e114d
8c17c707c218e28ac14197ce8e5eef873207a732
59db16baacb452453dbf44fc2a24f25ab09c4dbaec3a9271fda84230d8f11925

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59DB16BAACB452453DBF44FC2A24F25AB09C4DBAEC3A9271FDA84230D8F11925"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8271
Expires: Fri, 20 Jan 2023 10:10:18 GMT
Date: Fri, 20 Jan 2023 07:52:27 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 20 Jan 2023 07:49:33 GMT
content-type: application/json
age: 174
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: zmsjexdAevfYx9i0Yrfg5WwlHSjFH10bss2yH5l8oS/aXAuEmLN1MNNM/8kWs5uhVv3VxxHLeBE=
x-amz-request-id: DW8PD68HVCDFDG0N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 20 Jan 2023 07:46:15 GMT
age: 372
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 07:52:27 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.bangcapchungchitoanquoc.com/

150.95.113.28

301 Moved Permanently

169 B

URL HTTP/1.1
www.bangcapchungchitoanquoc.com/
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
b51956ed2a6129f43c5d0ecc011cc5a5
c03157aff80067b6b57903d3843b9fd9e07b33ab
1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.22.0
Date: Fri, 20 Jan 2023 07:52:27 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://bangcapchungchitoanquoc.com/
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 20 Jan 2023 07:48:58 GMT
age: 209
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
dce4a8be753d4a93db03ffca50421c43
068040a8f69777484e545c0053ad54f273710797
7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3464
Cache-Control: max-age=94322
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:27 GMT
Etag: "63c90825-1d7"
Expires: Sat, 21 Jan 2023 10:04:29 GMT
Last-Modified: Thu, 19 Jan 2023 09:06:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.88.143.102

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.88.143.102:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yn+/LuXIfNOPnuYpz+IwMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WgAaM6sc7HhEsQTU6KYQVimgLf4=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6f388839bb20f83659f185e20aed2e06
6737046135f17b470683820fb1df6660ff820299
0d66f3f7f0eea730db279dfa0400300764755458f7e6bd9d0610160a0cd25180

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D66F3F7F0EEA730DB279DFA0400300764755458F7E6BD9D0610160A0CD25180"
Last-Modified: Wed, 18 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21590
Expires: Fri, 20 Jan 2023 13:52:18 GMT
Date: Fri, 20 Jan 2023 07:52:28 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6f388839bb20f83659f185e20aed2e06
6737046135f17b470683820fb1df6660ff820299
0d66f3f7f0eea730db279dfa0400300764755458f7e6bd9d0610160a0cd25180

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D66F3F7F0EEA730DB279DFA0400300764755458F7E6BD9D0610160A0CD25180"
Last-Modified: Wed, 18 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 20 Jan 2023 13:52:28 GMT
Date: Fri, 20 Jan 2023 07:52:28 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10352
Expires: Fri, 20 Jan 2023 10:45:01 GMT
Date: Fri, 20 Jan 2023 07:52:29 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10352
Expires: Fri, 20 Jan 2023 10:45:01 GMT
Date: Fri, 20 Jan 2023 07:52:29 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6557 bytes)
Hash
5553b06c7dde4dc377f9f4e65bc8ace7
9dca5486485416d1aef199be08a50abd717addc7
33a5d1a21738218e0a6fe16d79045bd390af2e84073330a0a94c03812e1ba3ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 70710215-b8fd-44eb-8b50-f0948f98366c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmQWFNvoAMF3ZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b735-19e7e3865ce991cb5447f0f2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fc9dIiT5QQaTowAA6lp8ffJl4Niq3i_iVe54lYhAV52kJ8Q98EMJqQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 21:58:19 GMT
age: 35650
etag: "9dca5486485416d1aef199be08a50abd717addc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccd80a00-28b1-4908-8a08-93d9379c2c2e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8968 bytes)
Hash
7fe166bba32d744d841252f3e0e3957e
0f43812cddf63c4b33dbe922c27ca32ce9e6406f
db17ff864c0a82bee284dbcaaabfb5bb8afc7b764e3882b9b9408594d6000c54

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccd80a00-28b1-4908-8a08-93d9379c2c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8968
x-amzn-requestid: ec02528a-588b-46fe-8a37-eae74c3231fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7UZ2EWqoAMF8Cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79aa5-3bc049985202e47479d910ac;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:07:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jf6Ad0o0J4U_QLrvkWF4plIdm3zITZkmQoZ-Zw0eYihzCL6RPrV_ig==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 07:25:47 GMT
age: 1602
etag: "0f43812cddf63c4b33dbe922c27ca32ce9e6406f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10867 bytes)
Hash
3638dc76d0638625ac9a31c038df3a44
deff1903d591273a96d538ae77988d8a080e228c
8382af3843ebeca8e5c13fdd60f7fb92b479915416f36686fce40566fd87ce68

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10867
x-amzn-requestid: 8d882e21-d4c5-49ac-b76a-198cec065377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAnVTEfpoAMFgJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b8ee-6579537e6a82269f4bc99395;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:41:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U9KuaPBC5u3bWYidHridxyj8GEYB79yig6zD9FxGCGwXh6zvs7QokA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:01:55 GMT
age: 35434
etag: "deff1903d591273a96d538ae77988d8a080e228c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1ca04e6-1065-4245-9b8a-3ffd11238e67.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13383 bytes)
Hash
10654c1f4148826354dc8ccd8a3ed20b
6a53a07e284a316073fb2d40c2515978b662c947
d7d46a3c5470f1ead1b3a992782d4f07f913187f47155c62e13acf511930d569

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1ca04e6-1065-4245-9b8a-3ffd11238e67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13383
x-amzn-requestid: c9bade48-e562-4b6c-bd14-c9641643ae09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRaEodIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73c-3e5ddece6ab24f464b4a6cab;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQ07DcLbqmJwRgjf7ta57zlC-uh619FaC0v8xJAyNMzuc7YUoNrURw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:13:54 GMT
age: 34715
etag: "6a53a07e284a316073fb2d40c2515978b662c947"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d12cb7-b021-47eb-a0b0-ff949f96b6de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10359 bytes)
Hash
86ca07c03adbaa31374225110924b188
b1bd67630aea727a624f00b8cfd660d3b0848de1
471e3db64c9a6ec7ae4a76ea1a0835bd90dc55b389e3fe2f90c18c4dd2dbec27

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d12cb7-b021-47eb-a0b0-ff949f96b6de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10359
x-amzn-requestid: 4d5dedb2-c1a3-4433-a754-28e16385d9fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmw1EbzoAMFqww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b805-1520bf0a4fa4717e786a666f;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:37:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3h-LbrkCb1JFLLy-KKOJCf3MqVFXjgJDOf_EqMwxEsb6_a5O7j9vrw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:01:54 GMT
etag: "b1bd67630aea727a624f00b8cfd660d3b0848de1"
content-type: image/jpeg
age: 35435
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03bd9522-eeb8-49fc-b9be-5881b7bc5ce5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12174 bytes)
Hash
eeb5713ea23c36906255e88dc10eadbf
896d92a22f676b5946004feb723b094a8a36e09c
eb75a6fcc83d5134137caa6aa110e284a93149faab9557aea8853f9d63f82bc8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03bd9522-eeb8-49fc-b9be-5881b7bc5ce5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12174
x-amzn-requestid: 79fee0c7-be5a-4467-b351-aeb8a7e7d19f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULMH_noAMF77g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a47-7d7d140511fbcb6063868fd3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fenvyWs_eMj4KsJoKfVuu6tB3GIRW-Ar3tx0IYhl1LC667Jv7OjXRA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 07:26:41 GMT
age: 1548
etag: "896d92a22f676b5946004feb723b094a8a36e09c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a435563e4adb6d7d64a8600e6250bf45
a8f5a99620153938ec4cfba0423d6d06c66bb7fe
9e5c713c50dca08152c55041574e3e4003213133a8c78494ff18d1d1808589fb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
149a7cdd0e94d31b2237ac241b3bad35
c6e2c3aba0c96ffc26114f79306930a4554964b3
fe9cd8e03a847278924ed338131b5ef16b8ef315db81f3e6387c0621baa46232

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d202273e867b01591672b07722f430fb
4bbab50550b5b6a583e1fcdeb68c1b6b67b0cd87
5b4ab20a3dc9a884b04e727e6d62a1428984126ea975e308c48a6e9b6581146a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?hl=vi

216.58.211.4

200 OK

555 B

URL HTTP/2
www.google.com/recaptcha/api.js?hl=vi
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
555 B (555 bytes)
Hash
44c3e8545f8e07c2376ceb1f14b6e36a
3b3b4e9ef46196fc9125f4ab1ff49ec8ba953dfb
533cfdc28c65c72b694a7926a81cc1c60f587648879547d4a2bb4895ff5c12d1

HTTP Headers

GET /recaptcha/api.js?hl=vi HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 20 Jan 2023 07:52:30 GMT
date: Fri, 20 Jan 2023 07:52:30 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-158051703-1

172.217.21.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-158051703-1
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (44060 bytes)
Hash
850923cfe5b7bb0ba448a0b9d881057e
df462ee95a80c7922384807f22098703e22958d7
1d122247e4674dcec8a046bc28d50e763f4140aa63b70119ef10a54cf98ac96a

HTTP Headers

GET /gtag/js?id=UA-158051703-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 20 Jan 2023 07:52:30 GMT
expires: Fri, 20 Jan 2023 07:52:30 GMT
cache-control: private, max-age=900
last-modified: Fri, 20 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44060
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a435563e4adb6d7d64a8600e6250bf45
a8f5a99620153938ec4cfba0423d6d06c66bb7fe
9e5c713c50dca08152c55041574e3e4003213133a8c78494ff18d1d1808589fb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
623f341fa3fd0e09d3a2b649ea882919
98c12490034b5633fcc6386b627947806495fc61
edf2873ae5aee565800ffbd38c62519e683adf9f4624bd49af202b64f158f5eb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d202273e867b01591672b07722f430fb
4bbab50550b5b6a583e1fcdeb68c1b6b67b0cd87
5b4ab20a3dc9a884b04e727e6d62a1428984126ea975e308c48a6e9b6581146a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 19:33:54 GMT
expires: Thu, 18 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 130717
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.9

150.95.113.28

200 OK

1.1 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.9
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
data
Size
1.1 kB (1148 bytes)
Hash
45c6688769dd40e4f2d2c7fc0bad97ba
b7553de678381063afafe58d356d3c46cf6b1edc
74e986f9cf8d693921d5c746b6791319ab43e2e8427121b2d181fb3908daa133

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.9 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Wed, 27 May 2020 07:05:11 GMT
vary: Accept-Encoding
etag: W/"5ece1127-6d2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.6.2

150.95.113.28

200 OK

15 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.6.2
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
data
Size
15 kB (15224 bytes)
Hash
833ed3e1dfef79a1f26a7a32b466529d
7933bd2c5d36ae65161cde175128cbbb49b7d1d8
13e27663fea84c6aa955a26299f2aec48e29acff104f24d534be862e3d1ecb88

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.6.2 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-3e7e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2

142.250.74.35

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12704, version 1.0\012- data
Size
13 kB (12704 bytes)
Hash
965c5326300c39f5fd9a512f1560c77f
f55ba7514a35797b7006c0354b68d5a88229d032
9582ced8a675bf267cc7ac392a86413ed850e53c85919b93719134ecc22ea04b

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xGIzIFKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 10:14:56 GMT
expires: Thu, 18 Jan 2024 10:14:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 164255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Jan 2023 10:26:49 GMT
expires: Sun, 14 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 509142
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 07:01:24 GMT
expires: Wed, 17 Jan 2024 07:01:24 GMT
cache-control: public, max-age=31536000
age: 262267
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2

142.250.74.35

200 OK

5.6 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Size
5.6 kB (5560 bytes)
Hash
ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Jan 2023 13:50:31 GMT
expires: Sun, 14 Jan 2024 13:50:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
age: 496920
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2

142.250.74.35

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
716871ec15f054ec158445180fe280e1
d7d746e03e49f7e10ca0b11e598f3d6db5e34a2b
b076e86301cbee8c5c9aef51863a9c0a88e6f6d2aabdffca93e031113c6caa74

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 20:05:57 GMT
expires: Thu, 18 Jan 2024 20:05:57 GMT
cache-control: public, max-age=31536000
age: 128794
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Size
17 kB (17032 bytes)
Hash
05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38

HTTP Headers

GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 13:03:57 GMT
expires: Fri, 19 Jan 2024 13:03:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
age: 67714
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2

142.250.74.35

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size
12 kB (11800 bytes)
Hash
e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 00:55:57 GMT
expires: Mon, 15 Jan 2024 00:55:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
age: 456994
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 13:09:06 GMT
expires: Wed, 17 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 240205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 07:51:59 GMT
expires: Thu, 18 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 172832
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

142.250.74.35

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 22:06:28 GMT
expires: Thu, 18 Jan 2024 22:06:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
age: 121563
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17336, version 1.0\012- data
Size
17 kB (17336 bytes)
Hash
eec8dbfc49267c4d33cf31b49661bf37
0f49d4563cf9e22e3af6907d0785b9a6facadbf0
661d4b208656c006e7aab58acf7784857963123675de2302279fbe6c05313547

HTTP Headers

GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 21:41:48 GMT
expires: Wed, 17 Jan 2024 21:41:48 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 209443
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 07:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2

142.250.74.35

200 OK

5.5 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5548, version 1.0\012- data
Size
5.5 kB (5548 bytes)
Hash
cdaab83619fcacd4027a77c99dd51e69
9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 11:38:47 GMT
expires: Fri, 19 Jan 2024 11:38:47 GMT
cache-control: public, max-age=31536000
age: 72824
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2

142.250.74.35

200 OK

5.6 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5604, version 1.0\012- data
Size
5.6 kB (5604 bytes)
Hash
7cda2cfee99d697daf8c14819d9004eb
76f4002863493c93454a9f17424942f321287cba
0948409a22b5979aa7e1ec20da9e61f12e7d403800b541ece053881bd2542b70

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 10:14:10 GMT
expires: Thu, 18 Jan 2024 10:14:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
age: 164301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2

142.250.74.35

200 OK

5.9 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5928, version 1.0\012- data
Size
5.9 kB (5928 bytes)
Hash
791faa85fafa7cb786504f9c934206f1
1f93b5af14b6795e3b89bfefbe363100df1cc26d
0b68e8634c96265eb32a0c769416b5b02215ee3fee0c9e228f3455dc13ecabaf

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 14:53:30 GMT
expires: Fri, 19 Jan 2024 14:53:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:40 GMT
content-type: font/woff2
age: 61141
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2

142.250.74.35

200 OK

5.5 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5468, version 1.0\012- data
Size
5.5 kB (5468 bytes)
Hash
48c684d99330969e3ce90b9e9da2d698
aa3975c27acaa0fc617524acc2e001b714078b8d
51f3f41805329fb8341beb56ded833eae6c7a8a1a0a1d7e78960e1390fe928b6

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bangcapchungchitoanquoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5468
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 10:06:20 GMT
expires: Mon, 15 Jan 2024 10:06:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 423971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

150.95.113.28

200 OK

76 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Size
76 kB (76084 bytes)
Hash
f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: font/woff2
content-length: 76084
last-modified: Mon, 18 May 2020 02:35:53 GMT
etag: "12934-5a5e3059a322d"
accept-ranges: bytes
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

150.95.113.28

200 OK

76 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Size
76 kB (75936 bytes)
Hash
822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: font/woff2
content-length: 75936
last-modified: Mon, 18 May 2020 02:35:53 GMT
etag: "128a0-5a5e3059a322d"
accept-ranges: bytes
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.9.8

150.95.113.28

200 OK

16 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
data
Size
16 kB (16168 bytes)
Hash
444a1eec7b77efc69f6aca8963557999
0386c71e487a25f3b987608fb93fa27c27d0304c
550e5ae0b466f2d7ad63b1a8f8288ef7c5af402a217ded1cf1706efda5f7108d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-4824"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.239.36.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.36.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 20 Jan 2023 07:45:20 GMT
expires: Fri, 20 Jan 2023 09:45:20 GMT
cache-control: public, max-age=7200
age: 432
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.6.2

150.95.113.28

200 OK

80 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.6.2
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
Web Open Font Format (Version 2), TrueType, length 80132, version 1.0\012- data
Size
80 kB (80132 bytes)
Hash
7e6b10f33e50f63bf55ff3e70eaae65e
f89dd7d765ac498a59075daafa5bf6c6c875eef2
7159ee5fd035ed268ad16c8983d1e5cb6bfe07d7250d4e25b82333e70bd82906

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.6.2 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.6.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: font/woff2
content-length: 80132
last-modified: Mon, 18 May 2020 02:35:53 GMT
etag: "13904-5a5e3059a034d"
accept-ranges: bytes
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/icon-menu-right2.png

150.95.113.28

200 OK

1.6 kB

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/icon-menu-right2.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1605 bytes)
Hash
dedba659947bf4c512f891baed487fc5
f095d46e0bbd7d90ce1d6788005198e1f1649042
712720bb4f079b868c406235eb96cb86c1d2f61f0a143622721171d29ca5007d

HTTP Headers

GET /wp-content/uploads/2019/10/icon-menu-right2.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Thu, 24 Oct 2019 02:50:19 GMT
vary: Accept-Encoding
etag: W/"5db1116b-66a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.2.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Tue, 26 May 2020 04:05:05 GMT
vary: Accept-Encoding
etag: W/"5ecc9571-146f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/12.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/12.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/12.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:57:11 GMT
vary: Accept-Encoding
etag: W/"5daff9c7-651f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.7.6

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.7.6
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.7.6 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-29c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.2.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.2.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/jet-tricks/assets/css/jet-tricks-frontend.css?ver=1.2.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 30 Mar 2020 08:36:54 GMT
vary: Accept-Encoding
etag: W/"5e81afa6-56f4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/8.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/8.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/8.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:53:20 GMT
vary: Accept-Encoding
etag: W/"5daff8e0-102a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/js/wp-embed.min.js?ver=5.4.12

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.4.12 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:46:25 GMT
vary: Accept-Encoding
etag: W/"6077fd61-592"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=5.4.12

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=5.4.12
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=5.4.12 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jan 2023 07:52:30 GMT
date: Fri, 20 Jan 2023 07:52:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.12 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:31:05 GMT
vary: Accept-Encoding
etag: W/"5ec1f369-d159"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/js/jquery/ui/position.min.js?ver=1.11.4
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:46:25 GMT
vary: Accept-Encoding
etag: W/"6077fd61-1926"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.88

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.88
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.88 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Tue, 26 May 2020 04:01:07 GMT
vary: Accept-Encoding
etag: W/"5ecc9483-549"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/themes/hello-elementor/style.min.css?ver=2.2.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.2.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Tue, 26 May 2020 04:05:05 GMT
vary: Accept-Encoding
etag: W/"5ecc9571-19f1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-a4b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2020/07/photo_2020-07-04_09-57-55.jpg

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2020/07/photo_2020-07-04_09-57-55.jpg
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2020/07/photo_2020-07-04_09-57-55.jpg HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-457.css?ver=1657542127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: image/jpeg
last-modified: Sat, 04 Jul 2020 03:05:09 GMT
vary: Accept-Encoding
etag: W/"5efff1e5-a3e0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.1.3

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.1.3
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.1.3 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Wed, 27 May 2020 07:18:45 GMT
vary: Accept-Encoding
etag: W/"5ece1455-ba4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-3acf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/10-400x400.jpeg

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/10-400x400.jpeg
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2019/10/10-400x400.jpeg HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/jpeg
last-modified: Wed, 23 Oct 2019 06:55:35 GMT
vary: Accept-Encoding
etag: W/"5daff967-2c70"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:31:05 GMT
vary: Accept-Encoding
etag: W/"5ec1f369-1fd4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/global.css?ver=1589769415

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/global.css?ver=1589769415
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1589769415 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:36:55 GMT
vary: Accept-Encoding
etag: W/"5ec1f4c7-5377"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/13.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/13.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/13.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:57:41 GMT
vary: Accept-Encoding
etag: W/"5daff9e5-d93"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:54 GMT
vary: Accept-Encoding
etag: W/"5ec1f48a-19c3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.2.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.2.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jet-tricks/assets/js/jet-tricks-frontend.js?ver=1.2.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 30 Mar 2020 08:36:54 GMT
vary: Accept-Encoding
etag: W/"5e81afa6-4e34"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/9.jpg

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/9.jpg
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/9.jpg HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/jpeg
last-modified: Wed, 23 Oct 2019 06:56:15 GMT
vary: Accept-Encoding
etag: W/"5daff98f-1b6b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/images/w-logo-blue-white-bg.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/images/w-logo-blue-white-bg.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bangcapchungchitoanquoc.com/
Connection: keep-alive
Cookie: _ga=GA1.2.1684691043.1674201152; _gid=GA1.2.1597652564.1674201152; _gat_gtag_UA_158051703_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:33 GMT
content-type: image/png
last-modified: Thu, 11 Jun 2020 08:46:23 GMT
vary: Accept-Encoding
etag: W/"5ee1ef5f-1017"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-1b0f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-d9c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/8-400x400.gif

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/8-400x400.gif
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/8-400x400.gif HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/gif
last-modified: Wed, 23 Oct 2019 06:55:57 GMT
vary: Accept-Encoding
etag: W/"5daff97d-4859"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.4.12 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:46:25 GMT
vary: Accept-Encoding
etag: W/"6077fd61-363c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-457.css?ver=1657542127

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-457.css?ver=1657542127
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-457.css?ver=1657542127 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 11 Jul 2022 12:22:07 GMT
vary: Accept-Encoding
etag: W/"62cc15ef-bc52"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-587.css?ver=1657542593

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-587.css?ver=1657542593
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-587.css?ver=1657542593 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 11 Jul 2022 12:29:53 GMT
vary: Accept-Encoding
etag: W/"62cc17c1-1ced"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/4.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/4.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/4.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:51:29 GMT
vary: Accept-Encoding
etag: W/"5daff871-82f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-2fa6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/images/stars/rating_over.gif

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/images/stars/rating_over.gif
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/wp-postratings/images/stars/rating_over.gif HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: image/gif
last-modified: Tue, 26 May 2020 04:01:07 GMT
vary: Accept-Encoding
etag: W/"5ecc9483-20b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/style.css?ver=1.0.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/style.css?ver=1.0.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/akasa-theme/style.css?ver=1.0.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Wed, 27 May 2020 07:58:24 GMT
vary: Accept-Encoding
etag: W/"5ece1da0-429"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-460.css?ver=1657542747

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-460.css?ver=1657542747
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-460.css?ver=1657542747 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 11 Jul 2022 12:32:27 GMT
vary: Accept-Encoding
etag: W/"62cc185b-d3d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-29c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Wed, 07 Nov 2018 09:03:52 GMT
vary: Accept-Encoding
etag: W/"5be2aa78-2748"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:54 GMT
vary: Accept-Encoding
etag: W/"5ec1f48a-18ab1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-21fb7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-1c56c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-df5c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/js/jquery-scrolltofixed.js

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/themes/akasa-theme/js/jquery-scrolltofixed.js
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/akasa-theme/js/jquery-scrolltofixed.js HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Wed, 27 May 2020 09:08:25 GMT
vary: Accept-Encoding
etag: W/"5ece2e09-584b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.88

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.88
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.88 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Tue, 26 May 2020 04:01:07 GMT
vary: Accept-Encoding
etag: W/"5ecc9483-d01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-e983"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/logo-sinh-long-duong.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/logo-sinh-long-duong.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/logo-sinh-long-duong.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:52:42 GMT
vary: Accept-Encoding
etag: W/"5daff8ba-d10"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://bangcapchungchitoanquoc.com/wp-json/>; rel="https://api.w.org/", <https://bangcapchungchitoanquoc.com/>; rel=shortlink
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-295"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/lam-bang-dai-hoc.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/lam-bang-dai-hoc.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/lam-bang-dai-hoc.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:49:30 GMT
vary: Accept-Encoding
etag: W/"5daff7fa-1af55"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/11.png

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/11.png
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/11.png HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: image/png
last-modified: Wed, 23 Oct 2019 06:56:42 GMT
vary: Accept-Encoding
etag: W/"5daff9aa-f1e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/50-Beautiful-and-Minimalist-Presentation-Backgrounds-025.jpg

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2019/10/50-Beautiful-and-Minimalist-Presentation-Backgrounds-025.jpg
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/10/50-Beautiful-and-Minimalist-Presentation-Backgrounds-025.jpg HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-587.css?ver=1657542593
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: image/jpeg
last-modified: Wed, 23 Oct 2019 04:00:53 GMT
vary: Accept-Encoding
etag: W/"5dafd075-1c037"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.1.3

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.1.3
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.1.3 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Wed, 27 May 2020 07:18:45 GMT
vary: Accept-Encoding
etag: W/"5ece1455-77f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:54 GMT
vary: Accept-Encoding
etag: W/"5ec1f48a-322ac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=2.9.8

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=2.9.8
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=2.9.8 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-684e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: text/css
last-modified: Mon, 18 May 2020 02:35:53 GMT
vary: Accept-Encoding
etag: W/"5ec1f489-2a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/uploads/2020/07/photo_2020-07-04_09-57-48.jpg

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/uploads/2020/07/photo_2020-07-04_09-57-48.jpg
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2020/07/photo_2020-07-04_09-57-48.jpg HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/wp-content/uploads/elementor/css/post-457.css?ver=1657542127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:31 GMT
content-type: image/jpeg
last-modified: Sat, 04 Jul 2020 03:05:07 GMT
vary: Accept-Encoding
etag: W/"5efff1e3-9d49"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Fri, 14 Jun 2019 01:50:41 GMT
vary: Accept-Encoding
etag: W/"5d02fd71-17a69"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

150.95.113.28

200 OK

0 B

URL HTTP/2
bangcapchungchitoanquoc.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
150.95.113.28:0
ASN
#131392 GMO-Z.com Runsystem Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: bangcapchungchitoanquoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bangcapchungchitoanquoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 20 Jan 2023 07:52:30 GMT
content-type: application/javascript
last-modified: Mon, 18 May 2020 02:35:54 GMT
vary: Accept-Encoding
etag: W/"5ec1f48a-6272"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache: HIT from Backend
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML