Report - thienlong-phucsinh.com/

Report Overview

Submitted URL
thienlong-phucsinh.com/
IP
172.67.200.223
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-15 12:14:49
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
52

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	94 kB	31.13.72.12
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	278 B	18 kB	142.250.74.174
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
thienlong-phucsinh.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	533 kB	104.21.13.174
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	2.2 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.236.232.139

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-15	medium	thienlong-phucsinh.com/	Phishing
2022-09-15	medium	thienlong-phucsinh.com/test_files/null	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/zads.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/adr.150716.1726.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/beacon.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/za-adtima.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/zads-base-mod.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/openwidget.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/wp-emoji-release.min.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/jquery.min.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/ga.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/jquery.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/slides.min.jquery.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/SpryTabbedPanels.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/jquery-migrate.min.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/vltk2-index-2014-07-22.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/vltk2-index-2014-07-22(1).js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/jquery.cycle2.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/jquery-1.8.2.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/widget-login-jx2.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/call-topbar-zone-jx2.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/ga.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/rta.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/zt-1.04-1.min.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/index.js	Phishing
2022-09-15	medium	thienlong-phucsinh.com/css-js/mainsite.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	thienlong-phucsinh.com/css-js/index.js	63 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/css-js/index.js IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 9022803f3df611c3e26bc544bc848ffd 9ed24b572dfad84bf72c4d77f0c70259c50512a8 b07fcbc2cc1076c665a6bee75e5a7d988a41119f715b3ca24cb0826f4afade28 Loading...

	thienlong-phucsinh.com/	88 B	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 88132ce5cd340928fc064b6eda83efd5 6c3f3d7f34ff443d1e3db0da0f32073ba9c4732c 07124f9edad7c8d303cfc7e59160a94d759572c14b1d0b89c4a389d6573dacc8 Loading...

	thienlong-phucsinh.com/	1.5 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 977313be7389352f8af2f94dc5adbf97 72547102fba222f449ac38b35d9b787d4337e41a 0267a4968622f88acc00a214b9f2989d7877a740200782224328c8d34ceb7f6f Loading...

	thienlong-phucsinh.com/css-js/slides.min.jquery.js	6.9 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/css-js/slides.min.jquery.js IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 54e11c8e7e020c27b27dd7379a85e3fa 334f8473413d3810d24cbcc47b37c5e36a348da6 0c5faccd14b4e68fa0813b484a59bc03fb66314860aad0c34ef876be9f271c6e Loading...

	thienlong-phucsinh.com/css-js/jquery.cycle2.js	48 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/css-js/jquery.cycle2.js IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 8140d14c5d29d398ce15c956c04ad375 bfbc2eb8979b1802f009fc04caf059bc3421b249 8092c5c13eaa84a010ab8685ce6ffcdfe60377867d4be735c6fac6ba19b76ed9 Loading...

	thienlong-phucsinh.com/	1.2 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 57a6d62d0d79e1b54921c0491fc0cde5 2123d4ee8cca37443e3f1639e5936e0c0c346624 1800753b6c6d80955c6eb0a9c5f44018d33c6fe1e590f99fd2eb9baf6ede8d6e Loading...

	thienlong-phucsinh.com/	110 B	2023-03-07	2023-03-07
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-07 16:55:18 Times Seen1 Hash b1e7fb56952bcd845f7b180742e6618b 1129c10c0cc22e95101169bfcee0fc445801ea90 c05c9c81c36415f92a03758f510189da3bc5a36c2393225a3067da195dee2b9b Loading...

	thienlong-phucsinh.com/css-js/SpryTabbedPanels.js	12 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/css-js/SpryTabbedPanels.js IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash dcb457e71b77f3d1499f1e40e9a998be 5d9d708c156e4f6876350bab5e749e45cadeee24 819aee2e8c21564c089baef2601eba60e31ed44b24785471a30a95d777908213 Loading...

	thienlong-phucsinh.com/	317 B	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 6da58d5149009f16c3b78bb4db8b80a3 4952bd63f444a9b930c9e535913f8f1a2439bd2f 479c31b5fbac04e8a41ab9c39453113f353c99b8fa5f69d53766f1f514691d99 Loading...

	thienlong-phucsinh.com/	1.1 kB	2023-03-07	2023-12-17
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:49 Last Seen2023-12-17 13:59:58 Times Seen33 Hash b1c15dcaa4ebc8fd92a0d93a8a68d13f b0059ef0ef0a117567320d4527ce90fd799a236a 76ac8999a07c4e78eb272ffa4c3e88aefc2b945f8e33d5a5a1d6588f41cc687d Loading...

	thienlong-phucsinh.com/	435 B	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash 1123d85c5286c003336ab28dd6ea39f1 4dbd0e2ff4e5e1d104f0202739d09d52e10fcc42 31a19702a8da0c63de3e6b513bf06cde1a635cdedee2018807617a7033855ddb Loading...

	thienlong-phucsinh.com/	184 B	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash a48ae25f2855fa62a17e4be86881982d 6014aa46b5b01423406cbfbc1cd9fbf6a48f89ed 5a1470ad9d80937688f2e6cd6b0118405ee993853b93f987ac794b6184800ec2 Loading...

	thienlong-phucsinh.com/css-js/widget-login-jx2.js	5.5 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/css-js/widget-login-jx2.js IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash d0b95f0e5401d238d889a91b66c77af7 3a3c59e285550b425f3e14f60899e51820a9b599 8cd243b5ca5c45ccec7b3c104260d45762ed3d76d2d098ce8c8d1c1764ba39c9 Loading...

	www.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL www.google-analytics.com/ga.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	thienlong-phucsinh.com/css-js/mainsite.js	356 kB	2023-03-07	2023-03-26
Pretty URL thienlong-phucsinh.com/css-js/mainsite.js IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-26 00:16:23 Times Seen2 Hash de80eb6f6a1aae4ffe08fa878c779182 3a612a97d76f7aae6a388a6335cb8bdc6b019618 b673f835d318050cbbdba2445ea8ec66e23ff652c8d078d9f223e0c064deeccd Loading...

	connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js	334 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-03-07 16:55:18 Times Seen1 Hash 867d3bb6808aab00115c5872c7e7a675 2526f8e18cec4f76490c5c18207e15db6cf4fc78 57d1b1d97e591b9f59e54f38563567a25a8b80010c9281313d563d150a69e462 Loading...

	thienlong-phucsinh.com/	507 B	2023-03-07	2023-05-14
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:55:18 Last Seen2023-05-14 04:25:06 Times Seen3 Hash 8d1e5e6978d990f98b3a087f62f28688 a9f1af6b172c4b98e3d7a55e30328208e561e149 9157c6cb08159cc108b6d147e6a22a81a62e79d2f07a7d1ae737b7bcc8293489 Loading...

	thienlong-phucsinh.com/	499 B	2023-03-07	2023-10-22
Pretty URL thienlong-phucsinh.com/ IP 104.21.13.174 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:28 Last Seen2023-10-22 10:47:33 Times Seen7 Hash ebd0e142f367faed3a405090908a1739 35d2247d452d17ddc193be00ddb72fab25da1f16 2699b651ced6b8f21aa8dad519ee86eef94fb01d52e4ebcb5c9bb44ec6fb50d5 Loading...

	unknown	0 B	2023-03-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-07 06:23:53 Times Seen37395572 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (64)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 12:10:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X-dus4C5a2M67LNTKnKwqNLyenjak9qwbdNijkyk67s5obR-1U0OFA==
Age: 253

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19578
Expires: Thu, 15 Sep 2022 17:40:57 GMT
Date: Thu, 15 Sep 2022 12:14:39 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SN2rdnQTSeZCFzVbD29JACfRikQQ73B80K1xbGrABYnhP9RDXp18vA==
age: 27564
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 12:14:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

thienlong-phucsinh.com/

104.21.13.174

200 OK

11 kB

URL HTTP/1.1
thienlong-phucsinh.com/
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1163), with CRLF line terminators
Size
11 kB (10754 bytes)
Hash
be615c935277228fe9955152aa3cad08
01263b680e1096789b1e50ce63e618080e1d7081
f0f53aa921780cf2646913572a4bf17701d373d96a07e5bf8410c80147584202

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.2.6
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fd68D%2FTQvHVQnAXlS81aTe3JQ5K8Uy8Kq5LCxdSmzv3kNLmdVrYMdLlXeFlhezPsTEhsYMHJcFtp3jN73Kq93N2dmyseX81CH%2FnSKL8bpdTgJpxSExBCJHA%2F6O1O8xgBlxPuWnEZKGcn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74b14884b9cfb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 12:03:22 GMT
Expires: Thu, 15 Sep 2022 12:58:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CJ9_wRvrp-kB0mM6et_HaYuBTXV_SZ20IuFi4mDAKzHG7ob7qit65Q==
Age: 677

thienlong-phucsinh.com/test_files/null

104.21.13.174

404 Not Found

687 B

URL HTTP/1.1
thienlong-phucsinh.com/test_files/null
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
687 B (687 bytes)
Hash
e22457fc14dbde8d3809614e137f926e
15fada12d01574e32bf0cafd06eb767b83626aa4
58ac19040b1913a5a9eb11717892de0b70b420b0228d13673e96b4dfe5c8a316

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /test_files/null HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B9dX1mkb2tk3oGFrrvKrDGSYmCAtPLqZq7l8WfVu%2B2issFHK5i4f%2F%2FCmiTGCKXuNPCYBrbe6Dv%2BzKVxgJEAzRjwAV%2BJCDygRoPacjRGgbz%2FNWOxAFLVUWoh4RnQ3%2B3K9OfSwMbIIi2w3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74b14887d95ab517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/zads.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/zads.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/zads.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IH9XM8cYmG%2FfCU9eNCCwuTgkA9udQDxpeopUuY%2BwhKI3nsXJgka6R4E1BBV%2BY8SM6t%2FkZdyHdyU%2BWy6jagwSuEQu%2BRrtpZz1%2BvRDg1%2B%2BnXtSbyrfakfqSG8sw4hsqL1QeRFx%2BdGr55pL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14887ec030b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/adr.150716.1726.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/adr.150716.1726.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/adr.150716.1726.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HNvfWwS7vUcGqZBMYfU%2B%2F4wsLwj6BiHSW5MEJ1x%2Flz8jcvvTZaYvxJGw88y%2BnBOkAXdfLF%2FvPXEhA4HXvRKFoEJWXiRQKrLKuPJSo1yYvxLm1DP7lRL4%2BLgQWHJqOOhFqsSpcLlEfGNX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14887ede3b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/beacon.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/beacon.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/beacon.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AF0n0laJU9vokKRVDhlG8yilPW7qr213dQpYIvwISgIT%2B9MqlVMP%2B%2BVO9cKoi6DXqglO0%2Fgta1ytbrag6xpUwZnSt3sBN8zLxL%2BKIn0LxsHMmC2V6CcA7nclEtdoafZ6wnkqVUx5mAGz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14887eeedb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/za-adtima.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/za-adtima.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/za-adtima.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xo179BbZNrw6fX%2FWHcEcVqag269i6O3wEVsXyhUrXRO%2BLX9v5wq%2FUCDwdsPAPnnFdcAiv1Cji1OIULq9dcSLi4rIca6itDR9cFJsiG9K2AzyaXm14zX5%2B9nlZwetebcBUwVg4Lg%2FFZN4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14887ea6a1c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/zads-base-mod.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/zads-base-mod.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /zads-base-mod.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xmvf3eyilrPnz7LXotQxSa%2BC6ywoN9SsQP5rUAbrm9pmCjcFI5RxzRk%2BKL1NZkvu1Rt8JmAwZpqPMxDg8UvlC5cvlHdV7MBww96f6pxIBC9Qwk21329vSVuod7qnCf9J7%2FqUrZfqByrf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148885f82b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6410
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:14:39 GMT
Last-Modified: Thu, 15 Sep 2022 10:27:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

thienlong-phucsinh.com/openwidget.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/openwidget.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /openwidget.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65SF1SSgl58vZE4NQ4iaKx8dsgss4Kgt0ydHc1OG3bFz2btej3tEGgIrkDWPA4c%2BzNW543AYrwzkETTXW%2Bky4BFeGbhADeXmq%2BcpUxqaYY6uzoQ5OJOeNkp4UJ7zrFmcGTgnDP6LlDYC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488a3c79b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/wp-emoji-release.min.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/wp-emoji-release.min.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-emoji-release.min.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x8R4MDIbBmlgw3GeZOJ%2FmeY8SnyicqbCns61LBsQX%2FuJRWD6lKudDpq8jvGFNsHaaUiGlni9fltoOU0U7bTZ3dputTFKZ0zEsAxa9Qba712eHQuMaiV5BAO544lp%2BNKw0e%2F8K%2BBXvx4V"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488a6989b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/jquery.min.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/jquery.min.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jquery.min.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wb9ceh%2Fzw8CYlFuAsNRq1JykSrYc3xExL7NATeydETtN9tdh%2Fd8t2OcyjaocO9%2FANg0TOxLrBwGaamBlbVnwvbQsX2pHxjQHk6%2FRvzudVCPWiOOrH3nVHsyr7IWD%2BCUs1b7O6kD4DUWN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488a69efb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/ga.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/ga.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ga.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2%2B4Gs%2FpLBEF5slfRqa0T01b1JBmhS2d13XnxLzNdY0EbVWaP20Ewl8FfdYeGP7AW34bWI45iOPBT4uBLMacLnqQupL45wOrgzxaV3eySXS9bgHxJ%2F6D%2F1bjip%2BKigK7fkLqHk2yULGqy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488a5e3f0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/style.css

104.21.13.174

200 OK

490 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/style.css
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
490 B (490 bytes)
Hash
06a0c0f27580dca6929fc3593ebdb8c6
a2d24172bca9bae40cebd412aa1b33fae76934af
9000fbc768bd054577ac55b603c39a0830569a5cc6a10288c47412899c98b477

HTTP Headers

GET /css-js/style.css HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: W/"80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o9LsoSZTrHURSfr%2BLo40%2FAWzjgpMMF6k6hKa5lIGKN7DlHy%2FfXSCLpgfKSqPE4sGY8uyELXdjSroj04%2B29V3Y2fekAKbvNf4zY6PlfiyS2p6ItwZR5iAOExnc0Oblx%2BorwdPApsIqcp4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488a7c931c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/jquery.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/jquery.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/jquery.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u3LxjFACxVIKY05iOx%2BQyifjff5xFWogiFaMyRG7%2FFeSbRu98EK0afhHt53Nw8CzkKMnEBLPFMdf%2BQlnA%2Bak7NFkMviGqxWTDsy%2B1GFYIqODKcnmbZiF7gQ8M4YzFX6SZlM2TFvaTI1S"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488b0a9bb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

push.services.mozilla.com/

44.236.232.139

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.236.232.139:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R4uRgDfngMi4Cxs4Mxo3lg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 31uc6HTBgjMHIr7oy+qrofkd/xI=

thienlong-phucsinh.com/css-js/slides.min.jquery.js

104.21.13.174

200 OK

2.4 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/slides.min.jquery.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6142)
Size
2.4 kB (2388 bytes)
Hash
22cf12da89db11badf63084a9e2abce3
4dd955a6b98c575ebc61a42be0bbd6e7a60124b7
22b67022986f65880379d6d4c55ec396d1474482b8e575c9a62e946710145170

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/slides.min.jquery.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: W/"80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D9zdvRomcWlDiWQE4hvN44F9Mh7nfqf8IcaGw4BOlm1DHK%2FxOyZVmauWVdZP8nlQ6iENMrL7ShQWqgaP0zKH0m9GtdeXCs2zH2e2OuQsVxvCZwCF%2B319LOanzmHEesFz1mgKtO4yu%2FAE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488cacdcb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/SpryTabbedPanels.css

104.21.13.174

200 OK

729 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/SpryTabbedPanels.css
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
729 B (729 bytes)
Hash
0dbd7b22164ee4844911dc8a6a16e6ae
6b65a43299a7384d750c8d2cb0e5bbeef19d8ac9
2e6b3d62b56b2fd905b48a1e1a47e7778a1826fa98eaf7fc15e88e018aa0069d

HTTP Headers

GET /css-js/SpryTabbedPanels.css HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: W/"80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KnUrqnTYmnTTOhf2nHdsukf6WHbeEP2QPeOPJ15YA9M6mw9CrUqAgxaiOM7FftugWdLCsvNJFgbnfDFTYug3WJnGijsChinwaaqJnEw7bXPw54omaAHmX45T1rdc6%2Fx1Yz7Gkfe5zYwV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488ceea11c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/SpryTabbedPanels.js

104.21.13.174

200 OK

3.5 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/SpryTabbedPanels.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
3.5 kB (3459 bytes)
Hash
f435611ce45eda714b6f9894caae9bf4
9fb91576b99ec6db53b1730df686dd51bcaa8e30
36a0892a975c0a8a51cf7d110fcf0e059129c986c49c1e727ff055a7fa75ff41

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/SpryTabbedPanels.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: W/"80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D%2F6h4bCvL5l%2FR8dicN6lsIu4wN9vWEl8RVN8atDvxZFHKJ4a1rr4ZLWpGvHK8f9ptzdrVk5dvyG69WEM6Oy%2FfXN%2FfRd%2FxlyXZlZ1AbUZXkfBrcA1sZh0fcMlsDqWTqaruCdP4ZIZGGgc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488d3da7b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/jquery-migrate.min.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/jquery-migrate.min.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/jquery-migrate.min.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qFE5p1LpcV4uuS3F8SMVzmT7by1T8y6sINTH%2FBIO6Vch4jPn82nf06nDhXZ%2Feld9HiSwL5fzI7VSabT9%2BbaVHAsd5GplU2i%2F1x9PCvjtVUMbSPwB61AkKEPs95bmM2007waN2LO5JDi7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488c9fb9b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/vltk2-index-2014-07-22.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/vltk2-index-2014-07-22.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/vltk2-index-2014-07-22.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30ZQaWHOIy5HSyjl%2B4Bn70D4xYYVgiT337xcsHcJz0so%2Fcd4r1mj7%2BhRBQIK1wKkH51OBb788YIB960oNon2U96CPfQ31KejN2zsT24Mbih21Zm8HI%2Ft6bgmLop3atr8hKX7U%2BXC6ZGs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488f783bb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/mainsite.css

104.21.13.174

200 OK

1.7 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/mainsite.css
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.7 kB (1659 bytes)
Hash
4d5bfd80373c4103859a268c22e8776c
84bd1689f8ed5148552d996b87abf83c5d19d5b0
b3853fc1ec9ccf875579e6f895c10f11a14a01e511d396fd7a65544e856f0d74

HTTP Headers

GET /css-js/mainsite.css HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: W/"80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hioklFi0gdTSiHZMCSVeHUqcHS8eY96b9mvCi%2F%2BlYiXhv8md%2BQgtPUpx4gKfjq1bhavpH6E5N%2FswLGpdjfwHqsYV3%2F6zPFaZe3c4WYCjr4ntzvGjM17tgjWT2x4ORYVSZvhjEePeRjwJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488f1fcbb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/vltk2-index-2014-07-22(1).js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/vltk2-index-2014-07-22(1).js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/vltk2-index-2014-07-22(1).js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yfqNxtCsjerduURaJn4kRlB6Vh%2FVGgtUWa1d%2B5AfugYHCx0hIw4Kj6aEaHhDZvBpRdLgOGvABYLQ%2FjWffiPYczBqUG63oKTIaxQd7lqzFjfv%2FnPI8c9FYg5%2FaoEakzmR8wpnllLHuh%2Fk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148914ab9b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/jquery.cycle2.js

104.21.13.174

200 OK

10 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/jquery.cycle2.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
10 kB (10383 bytes)
Hash
96d8fa360608681041d9a250a903c158
8ec984e35a5c34129294024ff71bdee055340c79
36803f0e7dea0637738c95e7a743f8f1d28350037ca5ee75f0986435e457919f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/jquery.cycle2.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:02 GMT
ETag: W/"011e734bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cLGIq34H1d6B%2F6QF9CoEuo41tQ55%2BrkiXova2BeEL37gqgg%2BtV2dDE%2BhE3LyCO5TnrtKbrbNRVHPvId7YddfyRRLlElRThZuhhWaHvANlYBsbM3TRRf6KlwROZ%2BODEhMxVn71TKCm8ej"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488cb8990b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/vltk1.css

104.21.13.174

200 OK

9.4 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/vltk1.css
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text
Size
9.4 kB (9405 bytes)
Hash
1e907ce71e3c2fc4027910a087769a37
8ed5a94feec3581764320295de4d145899627ad0
94a4ef1430f2c08597ce6a3ac0262a3cbb71c16d9d81a100ee9d36b1b7957df3

HTTP Headers

GET /css-js/vltk1.css HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:04 GMT
ETag: W/"03e1836bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m%2FZpSKzZJBEEV00cy07XFDmN16RGY0y%2BuDv9TodRZc%2F0em4KZnZbBOsl4%2Br1c2WIaLLXRhrrAo8TnSShq0MCu69nIZ%2FnAWVjCVDyhIE860gLKWRXfzwBl0BjWjz%2FR9653gTqpQDEduQp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488f19161c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/jquery-1.8.2.js

104.21.13.174

200 OK

79 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/jquery-1.8.2.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
79 kB (79006 bytes)
Hash
bc31b95a87441dcf2d6d407a22d0baee
cd6782398b207fda5a530e2db284043ac4c8fbf7
84492529327b25a7805531e85b35e6e4a95d118abbc549db497384573663836b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/jquery-1.8.2.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:02 GMT
ETag: W/"011e734bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B7eRsrtNeYvrhK5ReQrx8%2FrAhuAHV9RRh4pp71dr90hCWDCaOop9nRXg%2FQdoUoXzUhSvRgcPFvsDIAgziouBSkVuPKvWU2Z3GlcUm9PSxn01j1hGDjdOoqovwYP%2BzHFIG7YqqebT5SrA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488c9c58b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Thu, 15 Sep 2022 12:52:49 GMT
Date: Thu, 15 Sep 2022 12:14:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Thu, 15 Sep 2022 12:52:49 GMT
Date: Thu, 15 Sep 2022 12:14:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Thu, 15 Sep 2022 12:52:49 GMT
Date: Thu, 15 Sep 2022 12:14:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Thu, 15 Sep 2022 12:52:49 GMT
Date: Thu, 15 Sep 2022 12:14:41 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8447 bytes)
Hash
5a6939786c9343412c9af87efd3f44e0
14131148fda4e8d85b582fd20e76bcc814341bf1
8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8447
x-amzn-requestid: 6a307dbf-af18-4b40-a2c4-cda4a6e302d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLe84HUzIAMFkUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631adeb8-166dc8b954f4e5b50a0843de;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 06:35:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qQaQeJRgo5OcpjqbzgyZQCl-pYpvj6P_aoB07WGfV0YXyZqv4AQNCg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:17 GMT
age: 52344
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9071 bytes)
Hash
1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:28 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 49753
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb961f65f-5b81-44f3-851d-bafffccf0ae1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6558 bytes)
Hash
528c3605e00eb3cf84d85a4ed34a3e46
1da888b7fe22e67e845f3acd24ae47621ae23dd9
31bbd3e8ee3f0d3e0d4137dca7db1f2d3c92fdc203e4d1dbf5980cdb9124a07d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb961f65f-5b81-44f3-851d-bafffccf0ae1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6558
x-amzn-requestid: 177b524c-fd47-4ead-837a-a3c8f49de9a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeCsxE90oAMFTxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63224b1e-4dc0883257b14510616b1abc;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:43:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: A5f709gBxUe9Z3wwmd_8KQeeblBD1XYn2vtQci19K973TAGBC0qZ6A==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:43:58 GMT
etag: "1da888b7fe22e67e845f3acd24ae47621ae23dd9"
content-type: image/jpeg
age: 52243
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9400 bytes)
Hash
4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0nTpbTo79RT78Sin1pTWaq4pRKWZyqnBkZCT2p66wWoW-A1OScJmIg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:09 GMT
age: 57212
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6770 bytes)
Hash
2e5f57ba37fac4e6047a9a321a8ec084
f6b742549ea35a4b1345cffb937a8bbcceee08ef
f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:04 GMT
age: 52357
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e20bf1d-c24c-4dc0-9796-f2f870591ff2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6484 bytes)
Hash
cb7c9c7f4257ab79526157f3ba507d6e
098d000aebd7ba0637fe420b9dfdacd2146af240
74fd95bcffcaf6919e8bca4184978340bef089528f9d184e7d88e1fd4c83288b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e20bf1d-c24c-4dc0-9796-f2f870591ff2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6484
x-amzn-requestid: cefd7270-c8ca-4ced-b9bd-52353fbefa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBIIUHOZIAMF9wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316ba35-7d4c4c53090c83ea3fadbf4e;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 03:10:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V0CJvbFSNJT2eHVOeCkdZNStr6eZg3EO0YTNyTUsmiirYMm9gfzBKg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:19 GMT
age: 52342
etag: "098d000aebd7ba0637fe420b9dfdacd2146af240"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

thienlong-phucsinh.com/css-js/widget-login-jx2.js

104.21.13.174

200 OK

2.0 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/widget-login-jx2.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1029)
Size
2.0 kB (2046 bytes)
Hash
3fa398cd2937c22b26d5b3e61f4b0a94
2eab00650ad3ab62f158bd975b3e64ad889381d1
e28c6858c46dd60ae2b09de33a63098d1f82e2062d3f038890704c6089b9bd89

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/widget-login-jx2.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:04 GMT
ETag: W/"03e1836bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cMRkxk%2BobCFH6P85g6lal1XcOhK%2BS%2FK2kqCpU371E6WN9g7s2Lm%2FH9DwjceqK%2Bh02OrrroSLSvspituH5cubOt%2Fss0JuZLEgtVwIFjIpm5jkNvD0by1GZel4znQj%2F7dD6q450rcX%2B648"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148928c2ab506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/call-topbar-zone-jx2.js

104.21.13.174

200 OK

464 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/call-topbar-zone-jx2.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
464 B (464 bytes)
Hash
ff81a182a209aeba74b74c64482dd5d0
74456f3d6c5764c4a0868a25b435c6a8ae2a176f
7a344fc7c1c18fadaf2e9c570f7f46b213c318a37ceeeb1f4721541f547e7751

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/call-topbar-zone-jx2.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:02 GMT
ETag: W/"011e734bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xlre1Vi78oYy1YEH7x2AQkdb%2Bx1gIs1Zv2ZF21b3yNAv6o9tc9FiBCSS9lAqRdOhe%2FC7ZnNwQLMVu4z0y3COXmgysxPW8oXiFLXxoXBCwl%2FexBpLEzFC7YVZJ8JvxfD3SPAWbpcBDPPG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148935ffa0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/ga.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/ga.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ga.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BrgjR8HUyCVsEKijtNsgo03NXt2W2bU6WeIB1VfuP749pac%2BRltq1NDVFrSgaAQolKV3xPv63L%2BlR2nTvEyB34LpcXJCIVmwAL5Mx5rkrv4sGNm9Iyz46T7jV1K7SNuoUBB69QMfb%2BZP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1489519ac0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/login_quickreg_1.05.css

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/login_quickreg_1.05.css
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

HTTP Headers

GET /login_quickreg_1.05.css HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TrQmcQ9c4YEddLiwaPaSeuOtmfu4vnwuTU%2BcTRgdtR%2BqDFXg313d7JMcGfTMjVYjcLTnXEflYCI5GmE6MjEgHqDaXObCeIWRKmgCb75lAirCP1a5ojC6fPO0bKu8lPv9wosTZ9kDOT%2Fm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148944fc4b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/rta.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/rta.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/rta.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yekpPBueeSIUgEujyEC2J%2FM9IiyrQC%2FZ%2B%2FaEU6eHBUs52WPNfgjw2XTxsCk5EdrZZGXlPaMh%2BSZkXlzrY0cV%2BxrGPa8lhqqakGu5XG3mRqZwSUMawgslWut2ZuKdf2ppJP7nwn6ITyHK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148937da41c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/zt-1.04-1.min.js

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/css-js/zt-1.04-1.min.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/zt-1.04-1.min.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BOo8%2Bm%2BtdW%2BAwGwJtIqSK0aCcEzaSPoJeziU1Jx14NSdlEUqCf8F2v9dKcEv9t852uMcxudeCQeXJ89IAizj3FZU29a8hVclcDHJ18I%2BSygChLEZQRQgTovOQ7TD0yQW94eg5RXUGmNF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14894bf3db506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/img/fullborder_bg_left1.gif

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/img/fullborder_bg_left1.gif
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

HTTP Headers

GET /img/fullborder_bg_left1.gif HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ohJATZC7zLpe02h0dalNODlxPBKdWDzOY4N7VSN1C6goHHCd4Dsa0lo6ge2gYyDRc5WMTpgdEMNs8DY%2BuJlhuebihTOlkMb9RsoR1xkqILamG0HbCZerAEDEaNi271EfeydTeJNgbDK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148956a020b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/index.js

104.21.13.174

200 OK

16 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/index.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (13638), with CRLF line terminators
Size
16 kB (16398 bytes)
Hash
d0e417b549263c5e7c53fd9f23f0ba7f
9c368bbe9c3b4682b1bede9cee5977dcede2c36f
48fba74d504f5d55901837c02febad89707631342ea8fe58b5330796e7b46a82

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/index.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:02 GMT
ETag: W/"011e734bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJm8dLxCmj1HRl5licip8JTpElZN44IpqXMZzDJwoXBKcx9ZqGf0u%2B91msCCaMfEEhd0g49Sj5r%2F%2B%2BtQ%2F0yWdYIvN%2FvHLDFpIWkJQUJoVDMM%2FYjlyRSRrIXGKvJmTLD2TDVG%2F%2FYW%2Fx4%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148910a6fb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/img/Inline_Icon_Sword.png

104.21.13.174

200 OK

1.0 kB

URL HTTP/1.1
thienlong-phucsinh.com/img/Inline_Icon_Sword.png
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1041 bytes)
Hash
fda87b678ecdeb9dfc65cbef9994061f
e3a5222b24210471d62a782813931b822c6e5688
ba24c8b0df22a242c79c154c1becb3d6aaa1e543939a6ac1f5d7d6121ef0e495

HTTP Headers

GET /img/Inline_Icon_Sword.png HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: image/png
Content-Length: 1041
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:05 GMT
ETag: "80d4b036bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zq%2FL6s%2FmFp7vbityvo31f2%2ByOD5Q0%2F4eOlzcH9cjo%2F3neYShJYZ%2F8BfQQ99QuJml883qiY1xEq%2BOMXoi3OX%2F7EZijJZmw18xaBDRo8Eb7054Gj4PQxpeks%2FIYXAaOSN2l1%2BhjN7Zz4WD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1489569c4b527-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/bg-text-theodongsukien.png

104.21.13.174

200 OK

1.9 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/bg-text-theodongsukien.png
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 140 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1906 bytes)
Hash
15e3a68c46d1c9805e9444bb6c5fbe78
2bbd5400a9ed893b4cfeafee0efa4feaeb33646e
cc4e535bbd902af1acd4434f4f96c98117b7ec91b884210c0bf0a85a80ec2f56

HTTP Headers

GET /css-js/bg-text-theodongsukien.png HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: image/png
Content-Length: 1906
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:01 GMT
ETag: "807a4e34bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jr1w6oa7wRX9R0VeJSVvRimfTtjQLDqzPqOToWYrf84HCy%2BpZHtREEOt0caWx0nr9SQu%2BFIWo0pbXlor3C1iPJEiM3N0MpjSg7ori3A5CXuDHm9R6R4baVk7WTgdTIhmh22CSMLI%2FodU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14895c8121c16-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/bg-text-congdongbaochi.png

104.21.13.174

200 OK

7.2 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/bg-text-congdongbaochi.png
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 176 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7172 bytes)
Hash
528e30853db9872ff1fa81a47d896360
215c552c007aa6f815a0755431c9bf5b7c185986
e2e04b080467b8261f3fa6f96c6c24df7802d169957cba528c030bd464bf5719

HTTP Headers

GET /css-js/bg-text-congdongbaochi.png HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: image/png
Content-Length: 7172
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:01 GMT
ETag: "807a4e34bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rFCbC5AHZb013c0PqRoTq7ezaOVZU7N9v5NEZwlThkzTnau5J3O90IGhSLEPsgw8DgwHKOonurUX4eoDofDhXoySrKMQngd0HqWaIDoYGrMlW5QDp9wN28iz7PJAxDq3X0BGSByBRF7O"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148960904b506-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/NM.jpg

104.21.13.174

200 OK

49 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/NM.jpg
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
49 kB (49361 bytes)
Hash
2819184d62b0272b0fb2bbafa348eada
44e6bccd28c56387e59ad233e17b7de2d6a34025
ac13c0ef08bae0dd8a3bb5a1bdb9167f7046db1123b14e8ea9a66c76136ec944

HTTP Headers

GET /css-js/NM.jpg HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: image/jpeg
Content-Length: 49361
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: "80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3c%2FSZFcf1LuiP8pNd4ptrNMxPmu0eI7Ef9bhBDjy9eva55vmAttUfYVb4wcPfVgN6dPL4zKohAxeyKKs4TeIntasEsbD0nK5i0cY%2BYrgPqIZjYSJ5NvyNlL%2FF8s3WVHOgyhHf%2B2OJNGs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14896fa63b506-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/mainsite.js

104.21.13.174

200 OK

104 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/mainsite.js
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65483)
Size
104 kB (104530 bytes)
Hash
4b8dc0f8523b48c0913c7b49a7665a6a
1e76fb66b917255ca4acac1ebd018604ed818876
90afdee757a1ac4501be893abafff8c4ab4467ebeebf9ae295b910b341a39de1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css-js/mainsite.js HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: W/"80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nPiy%2B%2F%2Fz3lUBAIh%2BqRI9E%2Bugivjso55QbtXkjOBk0jsmBn3vI6anZ4EONPGljCMu4E5Jmzcn2%2F1oXW3XIGk%2FiK9O4C3uDRkgz0Rv5MKh%2FqZaPKOgqbiUsEynriR6LxpPffTHpioomzyM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b1488fcc30b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/logo-vng.png

104.21.13.174

200 OK

3.2 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/logo-vng.png
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 37 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3161 bytes)
Hash
cebe45a0b023865d3ff61fc96524e9a9
491eba8e6a8653573cf5a6adba0e7a10ca765d8d
d4f3bfa8cfb7887736bc0e83cdc7369654041c716eb1d92c690cf676a8a12cc9

HTTP Headers

GET /css-js/logo-vng.png HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:42 GMT
Content-Type: image/png
Content-Length: 3161
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: "80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2B5sKLuLWN8qbsPuzxFoI0j5NBOQw%2BPBuYOhYqeHmo54zUDkFdvLq%2FPt5esgWfmDq70%2FQfQFyaPGKE98nng0MLpZt8vxoZ8oGd1R6AsXB2twTe44vEbWbBDAFppWEuB9rnd73K5M2CxH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148988c73b506-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/logo-kingsoft.png

104.21.13.174

200 OK

2.3 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/logo-kingsoft.png
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 108 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2264 bytes)
Hash
551d371decce5497a4442dc27e6109ff
e485c52da83cea9919b8601b4a7b73b63dd904f5
33c03a00bbd40e32e333a0c4d7e0ac0967b9d829cd336d36f0a6cc8e82784470

HTTP Headers

GET /css-js/logo-kingsoft.png HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:42 GMT
Content-Type: image/png
Content-Length: 2264
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:02 GMT
ETag: "011e734bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B47wts8v%2BeGn3gRLitlj3qEFtR%2Fi7ueQJ9TRDgFVHh6SuSRRyolpC7u1uRaGJ3gojEQRUAsGlg00GKcx%2BWzBe0ndOHacWPFRk1d4vb5AL%2Fv1d2yGCgBjmtMLlH3wdR3YQjQwyu79Lwpi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148997898b517-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/TD.jpg

104.21.13.174

200 OK

48 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/TD.jpg
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
48 kB (47790 bytes)
Hash
80da78dd33376d538016b7d8e36380ac
8f881cac1c9152c1302ebcae026fc78c3d7dfa7e
1448cebf56325e4c1831136979f3baf6bc1eb262945214e5510f65551c826497

HTTP Headers

GET /css-js/TD.jpg HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:42 GMT
Content-Type: image/jpeg
Content-Length: 47790
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: "80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qVowJlHBgRIPWVQl2Qw0%2Bg3cSEfMoWmsvUMjmwC0%2BYfwiLphX3kdeGsumGFeTv4UFXXY5hdixJT7fRbmShaYx07SxCRZiUtmn7BTxPe9ydVqGlYvg7t9MlCosBTq3SwL%2BFqCEe2QHYQB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148983c21b506-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/CB.jpg

104.21.13.174

200 OK

45 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/CB.jpg
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
45 kB (45064 bytes)
Hash
1ff00bbebdeecb52765be37aae7a7e7b
a66e902041ae68cea4727f434ac7858c1866b4c7
d7c742c462279597ad2e1d00049d1e093c8f4238cb8c5d1da42f74289b5f55a1

HTTP Headers

GET /css-js/CB.jpg HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:42 GMT
Content-Type: image/jpeg
Content-Length: 45064
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:02 GMT
ETag: "011e734bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2FHWHH35ZAwbq3qvtrA0pPfXoP1VJfSyCRJZNTE238DQXunhZOaxk1%2B4WiAjsQ9XW8vov7o9A5ulvwpvW2fG2gb4f0erl2XcIbS9Ktc3Bo4n13JK9mkqThEQeiFGNLyiYu9kEW6v8oOU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b14896eb340b61-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/VD.jpg

104.21.13.174

200 OK

47 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/VD.jpg
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
47 kB (46848 bytes)
Hash
9460ba6a675096520553c11fb5bfe272
f48bce514bf12e9b9a9438e75271a4c883198c69
4aa94a560c64239e4679981f1b5561d10de38868a6688d462e3be9f0a6141ca9

HTTP Headers

GET /css-js/VD.jpg HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:42 GMT
Content-Type: image/jpeg
Content-Length: 46848
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:04 GMT
ETag: "03e1836bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3AvrDZKqwIMhiXvtLHkB%2FXv0AMy888Q7y8NRIf65cLo%2BSKlLLbBnu58UGsVO5mY1NZuaPvLpwTkfvGkjFfLDscpIlapc7VgKPRAzQfh%2BAGFotBhqexfrIBQ4gOMB9BpkaOoumwA3Lqbb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148979d29b527-OSL
alt-svc: h2=":443"; ma=60

thienlong-phucsinh.com/css-js/TL.jpg

104.21.13.174

200 OK

44 kB

URL HTTP/1.1
thienlong-phucsinh.com/css-js/TL.jpg
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
44 kB (43897 bytes)
Hash
6eb6e00059b71a9269d009cb60be65b7
ae3feece23a36962c1effb279e99cc956f399505
17443cbad2d173a89dfe2fc429e711d6054d1329140fbce56154dde223e83e10

HTTP Headers

GET /css-js/TL.jpg HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 12:14:42 GMT
Content-Type: image/jpeg
Content-Length: 43897
Connection: keep-alive
Last-Modified: Sun, 15 May 2016 15:34:03 GMT
ETag: "80a77f35bfaed11:0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I0H8inmcAb%2FYle9yig%2BjxOwpObmp0uab%2FtLU%2ByVo6lqzuCO85BMqqSdhiKa%2BzebhxluUtea2%2B9PKkG8gZhaQ3vRpVNQxEpZbr%2FZ6bY%2Bj4vlzSDV04JS55nia1osa5vG43a7z70gavY2J"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148982a941c16-OSL
alt-svc: h2=":443"; ma=60

www.google-analytics.com/ga.js

142.250.74.174

200 OK

17 kB

URL HTTP/1.1
www.google-analytics.com/ga.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Thu, 15 Sep 2022 11:04:55 GMT
Expires: Thu, 15 Sep 2022 13:04:55 GMT
Cache-Control: public, max-age=7200
Age: 4188
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e5992df0d2af68a6f5b670e0d055ed39
082c468ad94144c3b7288997e7bd0152d80b651a
6d8a686d839f62515241ea206a2a33409febe10906fd8ec0daee42126f6b7311

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2196
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:14:43 GMT
Last-Modified: Thu, 15 Sep 2022 11:38:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js

31.13.72.12

200 OK

93 kB

URL HTTP/2
connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (20869)
Size
93 kB (92598 bytes)
Hash
c884ef238862d387ed861cd9c126e8ec
b2b739872c6819ce90fcb8c29f979efa818115ad
cf3c84c24aaf70da4ce7b2285c9d806e3e9b15669eaa35e4fe1e3175b8ea1f24

HTTP Headers

GET /vi_VN/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 867d3bb6808aab00115c5872c7e7a675
etag: "298b8db919e88e9ac30970cf820c500b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 15 Sep 2022 12:18:26 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: yITvI4hi04fthhzZwSbo7A==
x-fb-debug: PY0yL9gCmFDlPPQPn9vrbTui76LK2la/PSCj5AjRmdYkHZ358PZ2ZRY4RfY6B0ZucGK5lhAM5bvp7D9u8puo9Q==
content-length: 92598
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 12:14:43 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e5992df0d2af68a6f5b670e0d055ed39
082c468ad94144c3b7288997e7bd0152d80b651a
6d8a686d839f62515241ea206a2a33409febe10906fd8ec0daee42126f6b7311

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2196
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:14:43 GMT
Last-Modified: Thu, 15 Sep 2022 11:38:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

thienlong-phucsinh.com/favicon.ico

104.21.13.174

404 Not Found

681 B

URL HTTP/1.1
thienlong-phucsinh.com/favicon.ico
IP
104.21.13.174:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
681 B (681 bytes)
Hash
31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: thienlong-phucsinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thienlong-phucsinh.com/

HTTP/1.1 404 Not Found
Date: Thu, 15 Sep 2022 12:14:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GwiJPhLUbzkBIPige8EMZTWrb7f8g634l76YVAfzNwoBCvVV8TAr5Y5Vo3f%2BLp27QW7huw5rLZ8E%2F%2Bp%2Bt2UZ7MzzbZlZX1p8xUZTUCmFsZKNLDIDhzHm8oG0OB2UDEA1hwTNJWKvjsLJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b148a23c10b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations