Report - www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==

Report Overview

Submitted URL
www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
IP
115.146.123.204
ASN
#38732 CMC Telecom Infrastructure Company
Submitted
2022-12-03 11:12:07
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
tht.com.vn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.9 kB	257 kB	115.146.127.47
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	810 B	91 kB	31.13.72.12
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.3 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.songhongts.vn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	18 kB	801 kB	115.146.123.204
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	45 kB	34.120.237.76
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	44.240.57.100
netdna.bootstrapcdn.com	3413	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	414 B	6.1 kB	188.114.98.234

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	www.songhongts.vn/wp-content/themes/jTuanHoai/css/bootstrap-theme.min.css?ver=3.3.6	Phishing
2022-12-03	medium	www.songhongts.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.8.1	Phishing
2022-12-03	medium	www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14	Phishing
2022-12-03	medium	www.songhongts.vn/wp-content/plugins/traffic-stats-widget/tsw-styles.css?ver=5.8.1	Phishing
2022-12-03	medium	www.songhongts.vn/wp-content/plugins/traffic-stats-widget/wp-tsw-ajax.js?ver=5.8.1	Phishing
2022-12-03	medium	www.songhongts.vn/wp-content/themes/jTuanHoai/css/bootstrap.min.css?ver=3.3.6	Phishing
2022-12-03	medium	www.songhongts.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-12-03	medium	www.songhongts.vn/wp-content/themes/jTuanHoai/js/9xshop.vn.js?ver=1.0.0	Phishing
2022-12-03	medium	www.songhongts.vn/wp-content/plugins/scroll-back-to-top/assets/js/scroll-back-to-top.js	Phishing
2022-12-03	medium	www.songhongts.vn/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	Phishing
2022-12-03	medium	www.songhongts.vn/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1	Phishing
2022-12-03	medium	www.songhongts.vn/wp-includes/js/wp-embed.min.js?ver=5.8.1	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.songhongts.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.8.1	18 kB	2023-03-07	2024-04-19
Pretty URL www.songhongts.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.8.1 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 01:16:23 Times Seen12555 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==	1.1 kB	2023-03-08	2024-02-11
Pretty URL www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw== IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash a0e17af10355ec841a7d5331b2eea3c7 2093ade23694eebec50c58d85971576cf79eaa74 8699539245599591e0e01e40b9aa5c7c716dbd0f12ab07c2cd4b18344a52898e Loading...

	connect.facebook.net/vi_VN/sdk.js?hash=2aa47ff68f69588ebb9361943438f60c	308 kB	2023-03-08	2024-02-11
Pretty URL connect.facebook.net/vi_VN/sdk.js?hash=2aa47ff68f69588ebb9361943438f60c IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash 767e76bed6ef4ce0691848a1328431e6 c48c551b99751c4349c8b95f1a25d662e3aadb14 768fea784484eef77c4d96bd1f2917355de3184338b03566f6a8e06353bb79be Loading...

	www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.bxslider.min.js?ver=4.0.0	19 kB	2023-03-07	2024-04-09
Pretty URL www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.bxslider.min.js?ver=4.0.0 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:49 Last Seen2024-04-09 15:51:17 Times Seen333 Hash b860635957ed570deb2cf994bd9a4913 f436db7bcccd473aac7a1e48f8b17157516c8cbd cd70bb1d6baa27c8bef116f4ebc43cec49be7a06af1e59635870a651376918ed Loading...

	www.songhongts.vn/wp-content/plugins/traffic-stats-widget/wp-tsw-ajax.js?ver=5.8.1	908 B	2023-03-08	2024-02-11
Pretty URL www.songhongts.vn/wp-content/plugins/traffic-stats-widget/wp-tsw-ajax.js?ver=5.8.1 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash 66b48d1ac5755f65aa6a8b8ccb0588a4 56399e4c6b29773e4a0b6ee2bc63b4614815f0d9 6f4f75dff3607d295b802de941dfa44a4c9b7a6dc59769e3edc61d428441fc49 Loading...

	www.songhongts.vn/wp-content/themes/jTuanHoai/js/bootstrap.min.js?ver=3.3.6	37 kB	2023-03-07	2024-04-18
Pretty URL www.songhongts.vn/wp-content/themes/jTuanHoai/js/bootstrap.min.js?ver=3.3.6 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:25 Last Seen2024-04-18 23:02:05 Times Seen34423 Hash c5b5b2fa19bd66ff23211d9f844e0131 791aa054a026bddc0de92bad6cf7a1c6e73713d5 2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a Loading...

	www.songhongts.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-19
Pretty URL www.songhongts.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 01:16:23 Times Seen31740 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.jtooltip.min.js?ver=4.0.0	956 B	2023-03-08	2024-02-11
Pretty URL www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.jtooltip.min.js?ver=4.0.0 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash 3f2ef69cd0ed02717747b604277dbab7 f73127d3bd0f92b377dcd272193a4c226b913c6d 0d901c51b6df89d2e69210dd2e01bc36773fcfc7a627fa50e70ec4af4a291871 Loading...

	www.songhongts.vn/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	21 kB	2023-03-07	2024-04-17
Pretty URL www.songhongts.vn/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-17 05:54:46 Times Seen5700 Hash 49fa677b9cd7ddf221dc06537b35e10f 7485f3f99c3c1a57197f2b099f3f8d68b8609d06 0cd851e5b33af0fbb354df65506da39807b998e07723f3d08aba5179fa2ed97e Loading...

	www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==	2.1 kB	2023-03-08	2024-02-11
Pretty URL www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw== IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash 7e9f2caa56c2635432417b8b6a529397 e579c419a59049676308c720b4482a5e811a7a8a 585694207c76363b66ca9906dfc12078f003eb1fd7deefa55651b676c56e02a4 Loading...

	www.songhongts.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL www.songhongts.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 01:16:23 Times Seen68487 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.songhongts.vn/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1	12 kB	2023-03-07	2024-04-16
Pretty URL www.songhongts.vn/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-16 13:45:31 Times Seen867 Hash c10761607ca4fa5e283d6016c6db6876 35f1057ae807f3b1c42d88bfcbe501a94e4cad37 d75561e1329acbfb10dd90ae27ac97aac6d6081e89700a8eaba0ae5ab0156c5f Loading...

	connect.facebook.net/vi_VN/sdk.js#xfbml=1&version=v2.7&appId=1195593170463802	3.1 kB	2023-03-08	2024-02-11
Pretty URL connect.facebook.net/vi_VN/sdk.js#xfbml=1&version=v2.7&appId=1195593170463802 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash 783883ca059596294758a4a0e8480536 3691287beeafea1968a9b7326ddeaa751fc01e0d 681c401ab61904e0fb8d0dab6ec2dc25cc649426b3a323923d2c92c54f3bd1db Loading...

	www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==	424 B	2023-03-08	2024-02-11
Pretty URL www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw== IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:51 Times Seen1 Hash 7b8da1c8d9226832e4fc86d58c79f8ca a1c80156dd650292763c4779e8fba190fb98566e c455977375205f211e957dc9e7c48852d718a78e6a5092826a641b7695dae0e4 Loading...

	www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==	96 B	2023-03-07	2024-01-29
Pretty URL www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw== IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:17 Last Seen2024-01-29 15:41:51 Times Seen32 Hash 5556cfe9988147bc7a70ee7181484482 810c845e4efba1ffd58aa9a8c9c3452b12d8d857 7576573872b9d8a5451f89ff7e0c862598503e28c34d97c9ca820e9d1f1ec3d2 Loading...

	www.songhongts.vn/wp-includes/js/wp-embed.min.js?ver=5.8.1	1.4 kB	2023-03-07	2024-04-19
Pretty URL www.songhongts.vn/wp-includes/js/wp-embed.min.js?ver=5.8.1 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-19 01:16:23 Times Seen6857 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	www.songhongts.vn/wp-content/themes/jTuanHoai/js/9xshop.vn.js?ver=1.0.0	2.7 kB	2023-03-08	2024-02-11
Pretty URL www.songhongts.vn/wp-content/themes/jTuanHoai/js/9xshop.vn.js?ver=1.0.0 IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:52 Times Seen1 Hash 86592cda92afde0f02a83eae54abc16e d5064cbbcb1876dfd04a1a3aaca2fb5415b1c10e e5beef8f23252d323f9ab764b3f85eba02f34e1204a80e5c4c8144faa786a695 Loading...

	www.songhongts.vn/wp-content/plugins/scroll-back-to-top/assets/js/scroll-back-to-top.js	2.5 kB	2023-03-07	2024-01-29
Pretty URL www.songhongts.vn/wp-content/plugins/scroll-back-to-top/assets/js/scroll-back-to-top.js IP 115.146.123.204 ASN #38732 CMC Telecom Infrastructure Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:17 Last Seen2024-01-29 15:41:51 Times Seen62 Hash 495eb20731fae1a8af5e38101f470eaf 85c576b7e83db46b1ae9d6d27b9f56fe0d58940a fe79305175ad9699e4f76c2af9b9e8a5469aa80765af8baeca051c5971d5485a Loading...

		Size	First Seen	Last Seen
	#1 Eval - 46b99ec4c04e6f009eb5571297efcf12	2.9 kB	2023-03-08	2024-02-11
Pretty Observations First Seen2023-03-08 15:16:08 Last Seen2024-02-11 08:27:52 Times Seen1 Hash 46b99ec4c04e6f009eb5571297efcf12 9d0a5221be9de95bd695ee5ebd9a1df438e16295 45f00b8f5345c85d0397f9878f6e5c267684d019a867dc090e471a96a3b5727a Loading...

HTTP Transactions (73)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7567
Expires: Sat, 03 Dec 2022 13:18:03 GMT
Date: Sat, 03 Dec 2022 11:11:56 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6593
Cache-Control: max-age=90552
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 11:11:56 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 12:21:08 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 10:19:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3117
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6240
Expires: Sat, 03 Dec 2022 12:55:56 GMT
Date: Sat, 03 Dec 2022 11:11:56 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: fWNnALuSb2l2pwYtD4E+IPqAzcPchmE84oOFNg5wLauAIAfJUO5xaO4zJPERT08+9cJRuT7wNOU=
x-amz-request-id: NPBD7AEXDVA0BJAV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 10:47:05 GMT
age: 1491
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 11:11:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 11:08:58 GMT
cache-control: public,max-age=3600
age: 178
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==

115.146.123.204

301 Moved Permanently

359 B

URL HTTP/1.1
www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
359 B (359 bytes)
Hash
07d69749943c9e1382e5c465bb4256d7
9d1bd64395b3c213c572b661b366372caa8e5e1f
3e0cd1f03a1a98682fa68277f4308f77678ef65c92e3ff28669b29a185cd4ca1

HTTP Headers

GET /wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw== HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:11:56 GMT
Server: Apache
Location: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Content-Length: 359
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6586
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 11:11:56 GMT
Last-Modified: Sat, 03 Dec 2022 09:22:10 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.240.57.100

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.240.57.100:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NumGBztg6EV+04Op2sz0gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WZt2dB/Z7KTVaiPThuWFq2ScP1c=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12657
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 11:11:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12657
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 11:11:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12657
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 11:11:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12657
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 11:11:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12657
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 11:11:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 45174
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5354 bytes)
Hash
1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GBhAilKMKo9RvIzqzF9V4jTZbvpa2rPZeoy6Jy8fMc1-JO078OAYzQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 11:13:09 GMT
age: 86329
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (6966 bytes)
Hash
9b77186d0d93f7ccfe729edd9d184af3
458aa485b9abef3b72427d308a172d1c24eceabd
8bed5a8e56e8c43fcbdc807245c2b651d014a06368574e57a25b718399a4a701

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6966
x-amzn-requestid: 2b40c185-e050-4bfd-9b08-bb70e6f89824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfAb7Ev3oAMFnrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389144c-65301ace20da6f580ed77e82;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 20:53:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qweaKZsigecnsWw0Cqz_dizuuFZmXkK1gGP0EN3pZx-yYK6eF7YjUg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:22:26 GMT
age: 20972
etag: "458aa485b9abef3b72427d308a172d1c24eceabd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7657 bytes)
Hash
3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ElvfdUly4Rb3YOQyMO2C_VelFUe6xcFbMh6x5fNrRzGjKCITdGSwLQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 48851
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 18668
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9715 bytes)
Hash
45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:54 GMT
age: 48844
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
a96c48a3affad46a0b7f5b8178b926d3
cab43cf055876aa6e3a3e0563e9bc550a00f70da
f1bf5a7faea6b7ee9b5c8395188e4a5ba1840e1626e500803522c5950c472a68

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6492
Cache-Control: max-age=164260
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 11:11:59 GMT
Etag: "638af447-116"
Expires: Mon, 05 Dec 2022 08:49:39 GMT
Last-Modified: Sat, 03 Dec 2022 07:01:27 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
a96c48a3affad46a0b7f5b8178b926d3
cab43cf055876aa6e3a3e0563e9bc550a00f70da
f1bf5a7faea6b7ee9b5c8395188e4a5ba1840e1626e500803522c5950c472a68

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6492
Cache-Control: max-age=164260
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 11:11:59 GMT
Etag: "638af447-116"
Expires: Mon, 05 Dec 2022 08:49:39 GMT
Last-Modified: Sat, 03 Dec 2022 07:01:27 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278

www.songhongts.vn/wp-content/themes/jTuanHoai/css/bootstrap-theme.min.css?ver=3.3.6

115.146.123.204

200 OK

2.8 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/css/bootstrap-theme.min.css?ver=3.3.6
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (23192)
Size
2.8 kB (2776 bytes)
Hash
4cfd698630c3f5e35c20e1ae21926849
730dca13290dee445dfee0616b6e5d9285ee662f
af4a914a8c092c119fc870d0935a06e8bb15b228c275d68796117a3aff6bd43c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/jTuanHoai/css/bootstrap-theme.min.css?ver=3.3.6 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 2776
content-type: text/css
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.8.1

115.146.123.204

200 OK

10 kB

URL HTTP/2
www.songhongts.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.8.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
Unicode text, UTF-8 text, with very long lines (33376)
Size
10 kB (10523 bytes)
Hash
2a3cc81919349cb551f504b077791457
1d9393824b33b80513dbb9b2c8db48b6719d5d46
13a8d762ef70a9a18c89c226c4671f986401ccb7dae1c20be18c3db1eabbb62c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 31 Jul 2021 09:28:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 10523
content-type: text/css
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14

115.146.123.204

200 OK

5.4 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (562)
Size
5.4 kB (5378 bytes)
Hash
4bfc4997b26f7be2ec65db96d1b58b38
568f24896cd047ae1a6039507fb3c7bffba59075
cc871421dd4bbb54b4e2a2417743a67a435d25b217b93f2ff57732d9b938f423

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/jTuanHoai/style.css?ver=19.03.14 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:19:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 5378
content-type: text/css
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/plugins/traffic-stats-widget/tsw-styles.css?ver=5.8.1

115.146.123.204

200 OK

165 B

URL HTTP/2
www.songhongts.vn/wp-content/plugins/traffic-stats-widget/tsw-styles.css?ver=5.8.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text
Size
165 B (165 bytes)
Hash
ee22dc0d7847ac2af144730c6164f5eb
60052d8ba38bf3ffc156655a4bea59c61a854f91
7d165f03b5c5862094114aa9b3ae6679774b6661495e818e526af6d7958250bb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/traffic-stats-widget/tsw-styles.css?ver=5.8.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:19:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 165
content-type: text/css
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/plugins/traffic-stats-widget/wp-tsw-ajax.js?ver=5.8.1

115.146.123.204

200 OK

432 B

URL HTTP/2
www.songhongts.vn/wp-content/plugins/traffic-stats-widget/wp-tsw-ajax.js?ver=5.8.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text
Size
432 B (432 bytes)
Hash
4f7deb562dc323ee09f741a57d5365e7
09a85cd1defd2e72caa4493f702a4eb976be1436
856d7ab1d175b2a8a295080b883c00c4bcc11d2e06038aad29b7cf5d62502f44

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/traffic-stats-widget/wp-tsw-ajax.js?ver=5.8.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:19:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 432
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/css/bootstrap.min.css?ver=3.3.6

115.146.123.204

200 OK

20 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/css/bootstrap.min.css?ver=3.3.6
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (65371)
Size
20 kB (19751 bytes)
Hash
1724a8ce64058edb6f290183172d4910
179134108c887957808302b4fcf41a3a79f7d737
5dc1dfd9ae92bebdb125c8aca88ffb9e312bcfe447345248015aabc3a2318cff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/jTuanHoai/css/bootstrap.min.css?ver=3.3.6 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 19751
content-type: text/css
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.bxslider.min.js?ver=4.0.0

115.146.123.204

200 OK

5.1 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.bxslider.min.js?ver=4.0.0
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (18804)
Size
5.1 kB (5124 bytes)
Hash
3292e72e829f0cb8d6a6d8be382d431e
7bdc4284281de25a97c52c45b2ce38086b99a57f
3a04460c66f64993be767109ad20d99b0e29af7fc53a6ce470ab197b74496cbe

HTTP Headers

GET /wp-content/themes/jTuanHoai/js/jquery.bxslider.min.js?ver=4.0.0 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 5124
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

115.146.123.204

200 OK

4.2 kB

URL HTTP/2
www.songhongts.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Jul 2021 07:48:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 4169
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/js/bootstrap.min.js?ver=3.3.6

115.146.123.204

200 OK

9.8 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/js/bootstrap.min.js?ver=3.3.6
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (32003)
Size
9.8 kB (9765 bytes)
Hash
da6fb4b64d1f22f682dcaa0433b4dec7
56493cb828703ebeb1e9fbefc163793613b65e7f
7d59f0296a0b229f7d0ffc0b4f02930d6a7b56070167c7429004d6b1649c9d64

HTTP Headers

GET /wp-content/themes/jTuanHoai/js/bootstrap.min.js?ver=3.3.6 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 9765
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

115.146.123.204

200 OK

31 kB

URL HTTP/2
www.songhongts.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (65447)
Size
31 kB (30908 bytes)
Hash
9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 31 Jul 2021 09:28:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 30908
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/js/9xshop.vn.js?ver=1.0.0

115.146.123.204

200 OK

1.2 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/js/9xshop.vn.js?ver=1.0.0
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (2680)
Size
1.2 kB (1198 bytes)
Hash
87e3a811317015cc584e20bfd617f5d9
55225cd5bd7cdc9d1df6c3f6db970fa3afee9f2f
103bc794b26698832f78c508fc7db1cf956c30ae5ff98525f4e36d260374b4ff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/jTuanHoai/js/9xshop.vn.js?ver=1.0.0 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 1198
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/images/Logo.png

115.146.123.204

200 OK

13 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/images/Logo.png
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
PNG image data, 111 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (13189 bytes)
Hash
0bd7bd10af55840736426c545cbcbf51
be0a173d11374f5b419435d4c0cb6ac9d9e05f73
a7f2e3cff056a296a309028ee50077c6c561dd403bb635cd10884069809d93a0

HTTP Headers

GET /wp-content/themes/jTuanHoai/images/Logo.png HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:11 GMT
accept-ranges: bytes
content-length: 13189
expires: max-age=A10368000, public
content-type: image/png
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.jtooltip.min.js?ver=4.0.0

115.146.123.204

200 OK

472 B

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/js/jquery.jtooltip.min.js?ver=4.0.0
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (370)
Size
472 B (472 bytes)
Hash
727ebb6a9358a0ee26b10a86d3c076ba
357d26193db25395c35623c688b10cfbf28b4c31
248da35146d530f51ee7e479f3ace9c9fa9f4af4867f563835ee417481d3f440

HTTP Headers

GET /wp-content/themes/jTuanHoai/js/jquery.jtooltip.min.js?ver=4.0.0 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 472
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/images/dathongbao.png

115.146.123.204

200 OK

40 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/images/dathongbao.png
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
PNG image data, 436 x 139, 8-bit/color RGBA, non-interlaced\012- data
Size
40 kB (40262 bytes)
Hash
6de08740cc0547234c67e01270a16646
0211cbc4d4838545afb19bad153a0a7957b8b144
11a4b537b155d5c9093af43ef56eb51e1d3eaa439fa145ac8c326f20855d5609

HTTP Headers

GET /wp-content/themes/jTuanHoai/images/dathongbao.png HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:11 GMT
accept-ranges: bytes
content-length: 40262
expires: max-age=A10368000, public
content-type: image/png
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.8.1

115.146.123.204

200 OK

4.9 kB

URL HTTP/2
www.songhongts.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.8.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (15224)
Size
4.9 kB (4930 bytes)
Hash
3179794486ec4ca8f59329ccd67ae3e1
4b9c6e22ee7966479ef9844259f39f19d584f4a4
6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 31 Jul 2021 09:28:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 4930
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/plugins/scroll-back-to-top/assets/js/scroll-back-to-top.js

115.146.123.204

200 OK

761 B

URL HTTP/2
www.songhongts.vn/wp-content/plugins/scroll-back-to-top/assets/js/scroll-back-to-top.js
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text
Size
761 B (761 bytes)
Hash
4b42b3bcd8863c7cb8b36f01c9a1d777
852bafb9f634d1780ae02c00d988dd0c774f58d0
c3e70d040929e27b29b84be5bea0ecf79337249302725fa50466119733c8295f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/scroll-back-to-top/assets/js/scroll-back-to-top.js HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 761
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1

115.146.123.204

200 OK

6.9 kB

URL HTTP/2
www.songhongts.vn/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (7973)
Size
6.9 kB (6865 bytes)
Hash
bf046c412ea0ddd6f255411f942f0397
5dca594e157deca4e9dc8f8654a898e00eec11f6
d1480dd16f60e007a3b43512042b80feeb92eee79dc2e955d296e9e9aec4b849

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Jul 2021 07:48:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 6865
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1

115.146.123.204

200 OK

3.9 kB

URL HTTP/2
www.songhongts.vn/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (11738)
Size
3.9 kB (3909 bytes)
Hash
20c17084b198646827e8b2a4e29523c7
d4767c7cff01ed2008b503f38a33aaef0fbbed8b
4a6427301c2021814b243d15d05372dc5b7b107c3a7d0d92a64e7437f8a2c10c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Jul 2021 07:48:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 3909
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-includes/js/wp-embed.min.js?ver=5.8.1

115.146.123.204

200 OK

765 B

URL HTTP/2
www.songhongts.vn/wp-includes/js/wp-embed.min.js?ver=5.8.1
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
ASCII text, with very long lines (1391)
Size
765 B (765 bytes)
Hash
fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.8.1 HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 05 Jul 2021 07:48:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
expires: max-age=A10368000, public
content-length: 765
content-type: application/javascript
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/images/bg2.jpg

115.146.123.204

200 OK

1.4 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/images/bg2.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 42x45, components 3\012- data
Size
1.4 kB (1435 bytes)
Hash
b267ec46aca08b5b0644319c7e555b1d
e07f01ee6bf6c817174356111c0ae2baac48ade7
fcf86a1139995dc8681935556f2ed687be2af460281fa7ceb9d1f3b23ca0f2b5

HTTP Headers

GET /wp-content/themes/jTuanHoai/images/bg2.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:11 GMT
accept-ranges: bytes
content-length: 1435
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/images/btn_search.gif

115.146.123.204

200 OK

608 B

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/images/btn_search.gif
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
GIF image data, version 89a, 23 x 20\012- data
Size
608 B (608 bytes)
Hash
69bd593a28d91b632fe72c0180371fc6
7f1f8935a9b4e0028802d0a83e1f131c6a9463a6
34be348dbe58fe3161691c3bd6e44090deb4dc163faea6abb58e5b1ba3085ddd

HTTP Headers

GET /wp-content/themes/jTuanHoai/images/btn_search.gif HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:11 GMT
accept-ranges: bytes
content-length: 608
expires: max-age=A10368000, public
content-type: image/gif
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/images/box_cart.gif

115.146.123.204

200 OK

539 B

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/images/box_cart.gif
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
GIF image data, version 89a, 25 x 22\012- data
Size
539 B (539 bytes)
Hash
7417e537cf9712565a16e3d6ba508e88
56e3d6f607e4a5a15fd19136b772c77a26513bd9
cb8046576785920455bb38f5445c951018fecec317b35c2d2b2d89639bbf8403

HTTP Headers

GET /wp-content/themes/jTuanHoai/images/box_cart.gif HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:11 GMT
accept-ranges: bytes
content-length: 539
expires: max-age=A10368000, public
content-type: image/gif
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/themes/jTuanHoai/images/hotline-icon.png

115.146.123.204

200 OK

18 kB

URL HTTP/2
www.songhongts.vn/wp-content/themes/jTuanHoai/images/hotline-icon.png
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (18106 bytes)
Hash
c6ba0d2aeed0e11d9f04a7b8aa77e755
9d965f757e159761f0e4a7874e724d03057ec13b
be29f277cf99a6aa87165e259765d1ffa240d649351ec0b73a1b6ff09816f111

HTTP Headers

GET /wp-content/themes/jTuanHoai/images/hotline-icon.png HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/themes/jTuanHoai/style.css?ver=19.03.14
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:20:11 GMT
accept-ranges: bytes
content-length: 18106
expires: max-age=A10368000, public
content-type: image/png
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/uploads/HP-RAM-4405476-0511.jpg

115.146.123.204

200 OK

72 kB

URL HTTP/2
www.songhongts.vn/wp-content/uploads/HP-RAM-4405476-0511.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=540, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=960], progressive, precision 8, 960x300, components 3\012- data
Size
72 kB (72079 bytes)
Hash
090441e89c84e03b4476b7f631436d1f
9c7a1f6844013f267a9f6cf92f13843f86780d27
f14ef26a76639b800cbee97564a14ee20c442a7a10611b5081945875ea155d0c

HTTP Headers

GET /wp-content/uploads/HP-RAM-4405476-0511.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:17:55 GMT
accept-ranges: bytes
content-length: 72079
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/uploads/Ultrium-RW.jpg

115.146.123.204

200 OK

139 kB

URL HTTP/2
www.songhongts.vn/wp-content/uploads/Ultrium-RW.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:09:15 22:20:12], baseline, precision 8, 960x300, components 3\012- data
Size
139 kB (138942 bytes)
Hash
ef4f47ec5e1cb38b46f2eafd42ed9e58
63aa535f65c176fa8a2ae6ee2d349a7bdc6c7f1d
7cc8e3a2bbcdb9285afc2fe6c28dfedea267ebf1953e9edc819c859577d9b984

HTTP Headers

GET /wp-content/uploads/Ultrium-RW.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:18:43 GMT
accept-ranges: bytes
content-length: 138942
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/uploads/LTFS-ExchangeData-ShareDataAcrossPlatforms.jpg

115.146.123.204

200 OK

158 kB

URL HTTP/2
www.songhongts.vn/wp-content/uploads/LTFS-ExchangeData-ShareDataAcrossPlatforms.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:09:15 22:14:00], baseline, precision 8, 960x300, components 3\012- data
Size
158 kB (157637 bytes)
Hash
fdce8daa1f1db925e92dd2d5a2dfc2d7
51435528b2f84a8efc8a0ab00a41c330d777fd81
9f8eb0060ddc18fbe13dda5d1a6d61b6c20a44f53129440997fd087fd2375961

HTTP Headers

GET /wp-content/uploads/LTFS-ExchangeData-ShareDataAcrossPlatforms.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:18:32 GMT
accept-ranges: bytes
content-length: 157637
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/uploads/LTO-Roadmap.jpg

115.146.123.204

200 OK

220 kB

URL HTTP/2
www.songhongts.vn/wp-content/uploads/LTO-Roadmap.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=836, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1788], baseline, precision 8, 960x300, components 3\012- data
Size
220 kB (220227 bytes)
Hash
17c02e6405e6e635bfe180539d959588
4143927428a9c83865eadb4beecb8640952a7a42
92d98879c0622e8aa70e033dfe41d663c70a6fe2b1883b718f3866544d3e7c4b

HTTP Headers

GET /wp-content/uploads/LTO-Roadmap.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:18:32 GMT
accept-ranges: bytes
content-length: 220227
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:11:59 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/IBM-1.png

115.146.127.47

301 Moved Permanently

255 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/IBM-1.png
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
255 B (255 bytes)
Hash
97cedc4d5c40f97a806e1a63b90b78be
39bc1eca1781094a19be04696cd61521d4925c23
fa3761191956843c7db3d445afa824c275412e91b425e53d93d19df8a27c328c

HTTP Headers

GET /wp-content/uploads/IBM-1.png HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/IBM-1.png
Content-Length: 255
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/DELL.jpeg

115.146.127.47

301 Moved Permanently

255 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/DELL.jpeg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
255 B (255 bytes)
Hash
cf41034d2f3328d2442c735405e80c17
afead147c19473d6e5e9af1d1926c1c9abaec7d5
57b6846cbae39f81b361dc70301c7d744b8d69cc9534492f5f955bad198ca007

HTTP Headers

GET /wp-content/uploads/DELL.jpeg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/DELL.jpeg
Content-Length: 255
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/HP1.png

115.146.127.47

301 Moved Permanently

253 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/HP1.png
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
253 B (253 bytes)
Hash
28c7db092a84eb3e52a0228e82e61c00
29c2db7482ce835a0e24631d2b7361316cf2c5d8
e4ba25c7ebd169747c6bde56fd528c4bc801d287a09feb22e3922f567fb5b247

HTTP Headers

GET /wp-content/uploads/HP1.png HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/HP1.png
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/VPS-1.jpg

115.146.127.47

301 Moved Permanently

255 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/VPS-1.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
255 B (255 bytes)
Hash
2706e6f5c9ef6109a9cd7d64ae9503eb
802badc050be5f883f109f1865f6e9dcf74b2c59
6895c4c22f5336b004e80da3ce4d0eef0e290922b0dc424749522d20f3522d71

HTTP Headers

GET /wp-content/uploads/VPS-1.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/VPS-1.jpg
Content-Length: 255
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/IBM-FAN-1.png

115.146.127.47

301 Moved Permanently

259 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/IBM-FAN-1.png
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
259 B (259 bytes)
Hash
a558efd8276cb541774f49a5f917f961
d8a4f6cabfeeec1a539718e5e1a6f3cbba466575
aa223c830a3bd4ae49ea0ba924670df7a4bcc90d728d38afae089875816b38a2

HTTP Headers

GET /wp-content/uploads/IBM-FAN-1.png HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/IBM-FAN-1.png
Content-Length: 259
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/hdd_for_server_dell.jpg

115.146.127.47

301 Moved Permanently

269 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/hdd_for_server_dell.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
269 B (269 bytes)
Hash
f06c7f62450d724cf1029c9522653a28
ff923ec8ec5083dd8090943f79f266e08be9a34e
14625f6c21f66f34926ee9f0cb738192fece20d6c2f754e5a729c78e670b03ed

HTTP Headers

GET /wp-content/uploads/hdd_for_server_dell.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/hdd_for_server_dell.jpg
Content-Length: 269
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/kingston_8gb.jpg

115.146.127.47

301 Moved Permanently

262 B

URL HTTP/1.1
tht.com.vn/wp-content/uploads/kingston_8gb.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
262 B (262 bytes)
Hash
cf14af460a4ee46feec2e94111adfd2a
7a9b83b08240d12707f3ad5f4e76b5a347462d17
8ab0f7ac4baf1246cd6535442ed46f5f2bf4c960e5842efbf71cb3239734b11a

HTTP Headers

GET /wp-content/uploads/kingston_8gb.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:00 GMT
Server: Apache
Location: https://tht.com.vn/wp-content/uploads/kingston_8gb.jpg
Content-Length: 262
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.css

188.114.98.234

200 OK

5.2 kB

URL HTTP/2
netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.css
IP
188.114.98.234:0
ASN
#0

File type
troff or preprocessor input, ASCII text, with very long lines (305)
Size
5.2 kB (5209 bytes)
Hash
ba3801316cef93a92a0a2f1fd124c3b3
a7078475a905ef6a05ab9e2ba83713d47dd9d6dd
0d1b248e5421c047b7e0867c60458806a699b0699a010923f13c7c0cca9b0523

HTTP Headers

GET /font-awesome/4.1.0/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 11:11:59 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-03-10 20:26:52
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 7c2e8c7dceadb8c812b0bfb2cf5a1135
cdn-cache: HIT
cf-cache-status: HIT
age: 19376647
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 773bdd5ac9b80b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
933bd2bc7dd004d74961dfc0878c1d22
8a4f50edb54fea8ffa604f5ca593345341ce15a1
252363badd64d5ec8ad9eb56af41e44bb094d8c80646dd228e90dba5e56c87b8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6244
Cache-Control: max-age=152826
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 11:12:01 GMT
Etag: "638ac897-1d7"
Expires: Mon, 05 Dec 2022 05:39:07 GMT
Last-Modified: Sat, 03 Dec 2022 03:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/vi_VN/sdk.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/vi_VN/sdk.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1687 bytes)
Hash
1849f84a2366aede4af5239844a04020
0ca6a2769dcfb04d0bec9d710870c24021229724
89a46b0f9e2c1308b2d8faab34fa9b804bb6a210bbc62d32a7f83f9dc5c5c62a

HTTP Headers

GET /vi_VN/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.songhongts.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 783883ca059596294758a4a0e8480536
etag: "d84ebf4cf768ddb57bf71278bb797f2a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 03 Dec 2022 11:30:15 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: GEn4SiNmrt5K9SOYRKBAIA==
x-fb-debug: giHMUSFj1Q5gIa6JDO5Zuu0/kMAfKfThf7hebm/4EKQnzErqI3ggNRCURZ0KXZVrL5Wpbrm6Agl/2bDRinfKrA==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Sat, 03 Dec 2022 11:12:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
933bd2bc7dd004d74961dfc0878c1d22
8a4f50edb54fea8ffa604f5ca593345341ce15a1
252363badd64d5ec8ad9eb56af41e44bb094d8c80646dd228e90dba5e56c87b8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6244
Cache-Control: max-age=152826
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 11:12:01 GMT
Etag: "638ac897-1d7"
Expires: Mon, 05 Dec 2022 05:39:07 GMT
Last-Modified: Sat, 03 Dec 2022 03:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

tht.com.vn/wp-content/uploads/VPS-1.jpg

115.146.127.47

200 OK

27 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/VPS-1.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=214, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=235], baseline, precision 8, 280x170, components 3\012- data
Size
27 kB (27009 bytes)
Hash
c1f5db4415e1a990ff38e7db8fa6512d
e0bbd55181c9de9c79ebd9ae3e7ac97047f309dd
fcdb490e91cf5320e33f959a8c05116d4c67c2002499e56e612c16f9436d8034

HTTP Headers

GET /wp-content/uploads/VPS-1.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:38 GMT
accept-ranges: bytes
content-length: 27009
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/kingston_8gb.jpg

115.146.127.47

200 OK

37 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/kingston_8gb.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1500, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1500], baseline, precision 8, 280x170, components 3\012- data
Size
37 kB (37343 bytes)
Hash
52bbf54d9d75843adba53f107d2afc04
3fc9363da1b9f4a195214a789372a866703cb37f
a6e3a3ffcb142cbf8edb2532899050f505c35f58f5cf1ddf99bd2e9dfc559554

HTTP Headers

GET /wp-content/uploads/kingston_8gb.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:32 GMT
accept-ranges: bytes
content-length: 37343
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/PowerEdge_R730-1.jpg

115.146.127.47

200 OK

36 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/PowerEdge_R730-1.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=130, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=225], baseline, precision 8, 280x170, components 3\012- data
Size
36 kB (36111 bytes)
Hash
6116e1d642a4f4b89f483db0c105dbc2
02c35d2dc7bb76dadd77b1a0c734b78dbdb0777d
9d84af86d500826b0da38db346eef933994d2a33959da5abf854df7d96edb05b

HTTP Headers

GET /wp-content/uploads/PowerEdge_R730-1.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:36 GMT
accept-ranges: bytes
content-length: 36111
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/IBM-1.png

115.146.127.47

200 OK

32 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/IBM-1.png
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
PNG image data, 280 x 170, 8-bit/color RGB, non-interlaced\012- data
Size
32 kB (32062 bytes)
Hash
c8d93eb877ce8c5159bbcbd9631479c1
5c11334c4e56a86ae6470a9d7f48c6f05492909d
008ffb6bc609bb695b4cae90e717c0ba4407210eda5a8e2bf13e21595e5bb3ff

HTTP Headers

GET /wp-content/uploads/IBM-1.png HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:14 GMT
accept-ranges: bytes
content-length: 32062
expires: max-age=A10368000, public
content-type: image/png
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/uploads/logo.jpg

115.146.123.204

301 Moved Permanently

261 B

URL HTTP/1.1
www.songhongts.vn/wp-content/uploads/logo.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
261 B (261 bytes)
Hash
6e11091272d71947ee2d3694df4bdec7
a87496503813dcab927182185ea255f60f93e192
f1183903d86a523b669f3b85563b77fb3ae138ad1cdc7dc8b27e90f74d3ba094

HTTP Headers

GET /wp-content/uploads/logo.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 11:12:01 GMT
Server: Apache
Location: https://www.songhongts.vn/wp-content/uploads/logo.jpg
Content-Length: 261
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tht.com.vn/wp-content/uploads/HP1.png

115.146.127.47

200 OK

24 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/HP1.png
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
PNG image data, 280 x 170, 8-bit/color RGB, non-interlaced\012- data
Size
24 kB (23787 bytes)
Hash
ade81901ff1e14834f3754e4ad44ce57
dc3e9c99af130403cf8ae83db3872225380f6756
9305913c692b5119ef8e9a2151fd4b5552a7cac0ea6902d40e4e8cbba9b9a34f

HTTP Headers

GET /wp-content/uploads/HP1.png HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:14 GMT
accept-ranges: bytes
content-length: 23787
expires: max-age=A10368000, public
content-type: image/png
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/hdd_for_server_dell.jpg

115.146.127.47

200 OK

32 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/hdd_for_server_dell.jpg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=602, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=604], baseline, precision 8, 280x170, components 3\012- data
Size
32 kB (32220 bytes)
Hash
6f1d08de21a5adc772757033c24a5d64
23ba9b5704f90d43824c0671686f1612798e9b85
ba5e9df819c2e711f33fb8f53334b53a2957fa19f739c15a87f461c6a203afdc

HTTP Headers

GET /wp-content/uploads/hdd_for_server_dell.jpg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:12 GMT
accept-ranges: bytes
content-length: 32220
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/IBM-FAN-1.png

115.146.127.47

200 OK

36 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/IBM-FAN-1.png
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
PNG image data, 280 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
36 kB (36244 bytes)
Hash
e2b48395ae7afc2a4aee2be52100beed
8543ebf55c1e2f9f7a2fb16ecafa7844e7f44887
b4142b475644e072c95f6e31ef86d7653ab43a112bf32ec8cdd6fe5297f0331a

HTTP Headers

GET /wp-content/uploads/IBM-FAN-1.png HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:16 GMT
accept-ranges: bytes
content-length: 36244
expires: max-age=A10368000, public
content-type: image/png
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

tht.com.vn/wp-content/uploads/DELL.jpeg

115.146.127.47

200 OK

27 kB

URL HTTP/2
tht.com.vn/wp-content/uploads/DELL.jpeg
IP
115.146.127.47:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=187, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=250], baseline, precision 8, 280x170, components 3\012- data
Size
27 kB (26753 bytes)
Hash
c4af86cfeb6ded8caea3c6f70c1c9234
f10d0413fb5f3ed2d00beb050a35781e1e605a28
bfa737e270561bd46158f63f870a300577204c766f79f40555d1888d618f4ba7

HTTP Headers

GET /wp-content/uploads/DELL.jpeg HTTP/1.1
Host: tht.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 10:36:12 GMT
accept-ranges: bytes
content-length: 26753
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:12:01 GMT
server: Apache
X-Firefox-Spdy: h2

connect.facebook.net/vi_VN/sdk.js?hash=2aa47ff68f69588ebb9361943438f60c

31.13.72.12

200 OK

87 kB

URL HTTP/2
connect.facebook.net/vi_VN/sdk.js?hash=2aa47ff68f69588ebb9361943438f60c
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (13192)
Size
87 kB (87035 bytes)
Hash
ff4864b09b9aa9e024344b49d181db2a
4acaabb796139646a950547ed3ece0f74501288e
bd94f042cccf0848cb3871b3bd09bf539408c6e93956be6fb86bf21d43016646

HTTP Headers

GET /vi_VN/sdk.js?hash=2aa47ff68f69588ebb9361943438f60c HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.songhongts.vn
Connection: keep-alive
Referer: https://www.songhongts.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 767e76bed6ef4ce0691848a1328431e6
etag: "7d805425816c1070cf5170ddcd1fa32c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 03 Dec 2023 09:56:26 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: /0hksJuaqeAkNEtJ0YHbKg==
x-fb-debug: Ha/5q7N+Tnu65zCgqi5IOFbUPeGB/xcu68RP7Bgv+yUueOaJhqQr1cu6WZD0Z2PcXM9poys8YFKeknEZjPKGjA==
content-length: 87035
x-fb-trip-id: 1904183273
date: Sat, 03 Dec 2022 11:12:02 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/uploads/logo.jpg

115.146.123.204

200 OK

21 kB

URL HTTP/2
www.songhongts.vn/wp-content/uploads/logo.jpg
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=147, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=204], baseline, precision 8, 111x80, components 3\012- data
Size
21 kB (20809 bytes)
Hash
2c70bcfc838c02335f6e6f30613d8c71
ccd58f3eefed924217ff5f6f1070d10aa87d919c
2a1e66f85d2d78f7effb8513ee0978e41e507024735eca26386f3d9fad06e4e7

HTTP Headers

GET /wp-content/uploads/logo.jpg HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: pll_language=en; PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 10 Oct 2017 13:18:30 GMT
accept-ranges: bytes
content-length: 20809
expires: max-age=A10368000, public
content-type: image/jpeg
date: Sat, 03 Dec 2022 11:12:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==

115.146.123.204

404 Not Found

0 B

URL HTTP/2
www.songhongts.vn/wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==
IP
115.146.123.204:0
ASN
#38732 CMC Telecom Infrastructure Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/hsor/login.php?cmd=submit_log&id=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw==&session=MjAyMjc5NjY4Nw==MjAyMjc5NjY4Nw== HTTP/1.1
Host: www.songhongts.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
link: <https://www.songhongts.vn/wp-json/>; rel="https://api.w.org/"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: pll_language=en; expires=Sun, 03-Dec-2023 11:11:57 GMT; Max-Age=31536000; path=/
PHPSESSID=k1futf4rcdr3vlgm0sguc6c10t; path=/
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 11:11:57 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations