Report - chesuoigiang.vn/cms/display/Cart/AddToCart.aspx?ProductID=45&number=1&url=/36/128/d

Report Overview

Submitted URL
chesuoigiang.vn/cms/display/Cart/AddToCart.aspx?ProductID=45&number=1&url=/36/128/d
IP
125.212.221.113
ASN
#38731 CHT Compamy Ltd
Submitted
2022-12-11 09:15:44
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	49 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
chesuoigiang.vn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	19 kB	1.1 MB	125.212.221.113
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	298 B	18 kB	216.58.207.226
download.skype.com	50374	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	307 B	22 kB	2.18.172.141
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.216.88.5
dulichsuoigiang.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	351 B	94 kB	14.225.238.227
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-11	medium	chesuoigiang.vn/js/utilities.js	Malware
2022-12-11	medium	chesuoigiang.vn/Default.aspx?u=cart	Malware
2022-12-11	medium	chesuoigiang.vn/themes/1/js-image-slider.js	Malware
2022-12-11	medium	chesuoigiang.vn/autopopup/main.js	Malware
2022-12-11	medium	chesuoigiang.vn/js/jquery-1.3.2.min.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-08	2023-03-12
Pretty URL www.googleadservices.com/pagead/conversion.js IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:59:43 Last Seen2023-03-12 14:32:57 Times Seen1 Hash 9cdfece004275f945b074de4b8a0700c ede6c2b945f396ddadd66798b2936724f9529062 ebcd43274f956ef6d5c0f690695cc56c35a3a77180c9d1b80791febe4e27f601 Loading...

	chesuoigiang.vn/WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080	23 kB	2023-03-07	2024-04-26
Pretty URL chesuoigiang.vn/WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080 IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-26 00:57:35 Times Seen42325 Hash 90ea7274f19755002360945d54c2a0d7 647b5d8bf7d119a2c97895363a07a0c6eb8cd284 40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db Loading...

	chesuoigiang.vn/ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38	20 kB	2023-03-07	2024-01-08
Pretty URL chesuoigiang.vn/ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38 IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-01-08 02:46:02 Times Seen29 Hash 8842ba86b19d94f140b4949cf8944ce0 f0c2b698350080273c0548b146ceaa18536e7166 505d278d08a28064d467a0738c030f39296f11b259507cd75590da640f068b13 Loading...

	chesuoigiang.vn/ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38	15 kB	2023-03-07	2024-01-08
Pretty URL chesuoigiang.vn/ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38 IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-01-08 02:46:02 Times Seen15 Hash 6ef76a5765add6650e79b92caf3767cd 572f1c1df4595f6fba7639c32a9b70ad69400826 66edb8c8d813586c1383e35755e7e5f9b8e61de7a9ef6fc453a806b97ddb387b Loading...

	chesuoigiang.vn/Default.aspx?u=cart	61 B	2023-03-07	2024-01-08
Pretty URL chesuoigiang.vn/Default.aspx?u=cart IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-01-08 02:46:01 Times Seen15 Hash 52149e9c5678d23ab2c9bd16ee460f71 c4988ecae6efae9ba970b81f873f9192939a52ce 863d263e310925726022fcd5ca62950ae3d0c4ee014faeb5607593dcef20b560 Loading...

	download.skype.com/share/skypebuttons/js/skypeCheck.js	21 kB	2023-03-07	2024-03-06
Pretty URL download.skype.com/share/skypebuttons/js/skypeCheck.js IP 2.18.172.141 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-03-06 08:12:04 Times Seen114 Hash 5132cacba394327180641ceacd2ff941 1cb9c7f60a242c70a2497f3f1142b506e2274d8b 195ef2d533633828585f31fbc97983f55b8457c19a37f88594353f8221959d6f Loading...

	chesuoigiang.vn/ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8	101 kB	2023-03-07	2024-03-08
Pretty URL chesuoigiang.vn/ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8 IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-03-08 13:07:48 Times Seen60 Hash 9aa422d31764a772011289cceaa0254f 6e84aa6a4f97df25b004c2d9f5a8ff21ebe961ff 071a86f3d83ec0bcdb644b921908674c054b40bc63ac0fd4e9877bea89e08d05 Loading...

	chesuoigiang.vn/ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38	68 kB	2023-03-07	2024-01-08
Pretty URL chesuoigiang.vn/ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38 IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-01-08 02:46:02 Times Seen16 Hash 5bb7eeeaf56e7d8f98201118e3ee8610 b7f792c2112f29336fd1e8eeb43b4f915bc8e132 0f49211638e0ca1115af41dd2a843d5da709db3592eb70ec3f28d9f678a00d56 Loading...

	chesuoigiang.vn/themes/1/js-image-slider.js	16 kB	2023-03-07	2024-01-25
Pretty URL chesuoigiang.vn/themes/1/js-image-slider.js IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-01-25 10:48:22 Times Seen41 Hash f694706a38a1944e3a006b46bd4d4718 0af30fb907a47725745769e5ace9eba414927199 7fb834dbc5f6e05be07995ae8d23c31ad51dfab49e76ff6c2e92a2cfe3cefda7 Loading...

	chesuoigiang.vn/ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8	320 kB	2023-03-07	2024-03-08
Pretty URL chesuoigiang.vn/ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8 IP 125.212.221.113 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:44 Last Seen2024-03-08 13:07:52 Times Seen61 Hash 5d769eee521e2fc8d0cc51cd78312c16 4f8938ea8468dd69c5001c412fdef8ef6d79b4e6 2a45bedfe38e564d998ad7e3a8b57edec612b199bfc15d945c16c9bc55c5285e Loading...

HTTP Transactions (63)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2210
Expires: Sun, 11 Dec 2022 09:52:24 GMT
Date: Sun, 11 Dec 2022 09:15:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11465
Expires: Sun, 11 Dec 2022 12:26:39 GMT
Date: Sun, 11 Dec 2022 09:15:34 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 11 Dec 2022 08:33:32 GMT
content-type: application/json
age: 2522
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13927
Expires: Sun, 11 Dec 2022 13:07:41 GMT
Date: Sun, 11 Dec 2022 09:15:34 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Hq0jZoKfLwmvmAvM5fWwpkzQb2baNmFyNK48sfQQ1A9X3croU4bD2yQPa+dlguRjzBr/4Ymw9h4=
x-amz-request-id: V4GVPNR72QK5CB6H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 11 Dec 2022 08:49:08 GMT
age: 1586
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

chesuoigiang.vn/cms/display/Cart/AddToCart.aspx?ProductID=45&number=1&url=/36/128/d

125.212.221.113

302 Found

159 B

URL HTTP/1.1
chesuoigiang.vn/cms/display/Cart/AddToCart.aspx?ProductID=45&number=1&url=/36/128/d
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
159 B (159 bytes)
Hash
1aa1b4688ba5e8daa7b82841db9d6a52
12b41e4173d8316aa802985feda74882d7858721
48dfc1f43a22d42587adbb0d7a70eaeea847e0d8267c389c631ef3607cc803aa

HTTP Headers

GET /cms/display/Cart/AddToCart.aspx?ProductID=45&number=1&url=/36/128/d HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: http://chesuoigiang.vn/Default.aspx?u=cart
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; path=/; HttpOnly; SameSite=Lax
LastURLHistory=/36/128/d; path=/
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 159

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Dec 2022 09:15:34 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.googleadservices.com/pagead/conversion.js

216.58.207.226

200 OK

17 kB

URL HTTP/1.1
www.googleadservices.com/pagead/conversion.js
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (17396 bytes)
Hash
4c734f2dee2775f34cf20236a1e454ce
8519539acac5a7086a839fc5534f9648c5b0de46
9a7a7b257d298e7db6db54901e7bf89361f015742c19276a81fae9e82efdd823

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sun, 11 Dec 2022 09:15:34 GMT
Expires: Sun, 11 Dec 2022 09:15:34 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 6351308751113588399
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 17396
X-XSS-Protection: 0

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 11 Dec 2022 09:07:56 GMT
age: 458
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

chesuoigiang.vn/css/common.css

125.212.221.113

200 OK

1.7 kB

URL HTTP/1.1
chesuoigiang.vn/css/common.css
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.7 kB (1720 bytes)
Hash
10cf29b6898d9acda28a5248d5888f4c
1f6c5e237d23292143ec926cc76f69984b87d3da
767e80d081f777b0e345e85f2706c4e85789197ad4c4e698a081db23e39de5bc

HTTP Headers

GET /css/common.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:24 GMT
Accept-Ranges: bytes
ETag: "69a9281e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 1720

download.skype.com/share/skypebuttons/js/skypeCheck.js

2.18.172.141

200 OK

21 kB

URL HTTP/1.1
download.skype.com/share/skypebuttons/js/skypeCheck.js
IP
2.18.172.141:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (16243)
Size
21 kB (21434 bytes)
Hash
5132cacba394327180641ceacd2ff941
1cb9c7f60a242c70a2497f3f1142b506e2274d8b
195ef2d533633828585f31fbc97983f55b8457c19a37f88594353f8221959d6f

HTTP Headers

GET /share/skypebuttons/js/skypeCheck.js HTTP/1.1
Host: download.skype.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/

HTTP/1.1 200 OK
Content-Length: 21434
Content-Type: application/javascript
Content-MD5: UTLKy6OUMnGAZBzqzS/5QQ==
Last-Modified: Fri, 23 Sep 2016 13:35:37 GMT
ETag: 0x8D3E3B6809EC797
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 509772ed-c01e-010d-4f99-576935000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Unused62: 8096267
Cache-Control: max-age=86400
Date: Sun, 11 Dec 2022 09:15:34 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
44d4574b46375a2d215ae74bc5eae610
5257ed3edeb56231a9bee921671bb2e0c566000e
923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4385
Cache-Control: max-age=90261
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 09:15:34 GMT
Etag: "63944c2a-1d7"
Expires: Mon, 12 Dec 2022 10:19:55 GMT
Last-Modified: Sat, 10 Dec 2022 09:06:50 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

chesuoigiang.vn/js/utilities.js

125.212.221.113

200 OK

2.7 kB

URL HTTP/1.1
chesuoigiang.vn/js/utilities.js
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
2.7 kB (2711 bytes)
Hash
3e423bda9b510380a0b0e5b8eda4d9fd
3d743727abbb8c05a213c04b212be7cc1d9b5d78
344725ed83981d87958d4203ffdc956a0809f0cb9d6e3847881f24aef3414f26

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/utilities.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Fri, 26 Aug 2016 01:35:25 GMT
Accept-Ranges: bytes
ETag: "2347481e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 2711

chesuoigiang.vn/css/theme.css

125.212.221.113

200 OK

22 kB

URL HTTP/1.1
chesuoigiang.vn/css/theme.css
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
22 kB (21608 bytes)
Hash
2ede2bc33aa14fde0bc08f2a53996803
cc97d2316350d55b289ab5bcd8096f9991282b01
0aeb4a57e034368dd2c67b247900a6f629e1a8a6f030d7041933ffcd2f5a9a26

HTTP Headers

GET /css/theme.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:24 GMT
Accept-Ranges: bytes
ETag: "32f02c1e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 21608

push.services.mozilla.com/

34.216.88.5

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.216.88.5:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QyTZ3wmRAGjgaPhxWNOXLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SVTmOOdXmi4PxKITtRJegFp9lvg=

chesuoigiang.vn/WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080

125.212.221.113

200 OK

23 kB

URL HTTP/1.1
chesuoigiang.vn/WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
23 kB (23063 bytes)
Hash
90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db

HTTP Headers

GET /WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Expires: Mon, 11 Dec 2023 18:29:42 GMT
Last-Modified: Sat, 26 Feb 2022 09:42:54 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 23063

chesuoigiang.vn/ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8

125.212.221.113

200 OK

15 kB

URL HTTP/1.1
chesuoigiang.vn/ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
15 kB (15431 bytes)
Hash
6f57548a974752f293bf893943f57390
c61de2a3bfd552521f58734b9f6e93d5ec9ba0f0
93103bf999819b0f4f1617561d15218551d89fcb5941ffa38ab245694187cbd8

HTTP Headers

GET /ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Mon, 11 Dec 2023 23:13:16 GMT
Last-Modified: Sun, 11 Dec 2022 23:13:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 15431

chesuoigiang.vn/ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38

125.212.221.113

200 OK

12 kB

URL HTTP/1.1
chesuoigiang.vn/ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (313), with CRLF line terminators
Size
12 kB (12329 bytes)
Hash
10114761f3c8787d3f4049d73f2e4967
9868cf3681bdb1ca18576ee9db8eec01d66ccd3a
24ff88dceb35066e303bb183c403a674b08d46d91e03f0a3cd9cdaa343643646

HTTP Headers

GET /ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Mon, 11 Dec 2023 18:29:47 GMT
Last-Modified: Sun, 11 Dec 2022 18:29:47 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 12329

chesuoigiang.vn/ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38

125.212.221.113

200 OK

4.9 kB

URL HTTP/1.1
chesuoigiang.vn/ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (9936), with CRLF line terminators
Size
4.9 kB (4880 bytes)
Hash
1608a79b0c1dcd440b2c5431e471da10
14fd56a499d143e151133799ab810c7c9951e896
1a2388d7446f51910bac2ca1d1a7a9687e8773204ef9beed4d80ac2933aac968

HTTP Headers

GET /ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Mon, 11 Dec 2023 18:29:48 GMT
Last-Modified: Sun, 11 Dec 2022 18:29:48 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 4880

chesuoigiang.vn/ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38

125.212.221.113

200 OK

3.2 kB

URL HTTP/1.1
chesuoigiang.vn/ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
3.2 kB (3166 bytes)
Hash
438d8d97d1a8632dbff33af60dcb8dfc
a3c044611d8d7e070d575c53e50de05eef578f3c
1def3724a340c252195ea314600ac4f778b416f6204b7641a1d27565a79cb29e

HTTP Headers

GET /ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Mon, 11 Dec 2023 18:29:49 GMT
Last-Modified: Sun, 11 Dec 2022 18:29:49 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 3166

chesuoigiang.vn/pic/web/theme/bg.gif

125.212.221.113

200 OK

829 B

URL HTTP/1.1
chesuoigiang.vn/pic/web/theme/bg.gif
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
GIF image data, version 89a, 1 x 1100\012- data
Size
829 B (829 bytes)
Hash
1f7f200c6208492ca97d98632924f37e
fdfcdf85e19c8e99a460c9651731e3136008f94b
ff2e7399718c74fa4cfbeba03c0cfe16710889cab76378ca01446c980bcdda4e

HTTP Headers

GET /pic/web/theme/bg.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "6c6cab413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 829

chesuoigiang.vn/pic/web/theme/off.png

125.212.221.113

200 OK

6.3 kB

URL HTTP/1.1
chesuoigiang.vn/pic/web/theme/off.png
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 54 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6293 bytes)
Hash
9a18b77eb6e18b9ffa1132237c68f2ac
b75a9f13f7af29eb63322a9734040f14dc6262bf
0938a7a21c2b6ac84228d13ad7b19ad215e2f32c832b2b0b6c2940c612f38f4e

HTTP Headers

GET /pic/web/theme/off.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "399f2413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 6293

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/88276402_554944865375556_1715989565333831680_n.png

125.212.221.113

200 OK

7.1 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/88276402_554944865375556_1715989565333831680_n.png
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
7.1 kB (7060 bytes)
Hash
ca9d8deec09d7b1e1f5d2eb99c5662c1
e7f5b35b6d51d65b6e008d2d83e2c9bba3681d52
29e28b1a5149f1ff7becd9ab9d3ce4614e93162c1bb74fa4e5bc28608b64fd84

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/88276402_554944865375556_1715989565333831680_n.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 7060

chesuoigiang.vn/Default.aspx?u=cart

125.212.221.113

200 OK

52 kB

URL HTTP/1.1
chesuoigiang.vn/Default.aspx?u=cart
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8619), with CRLF line terminators
Size
52 kB (51664 bytes)
Hash
3e9c938e3bc5b2027df61633460a2d19
7ab2ed4c52c69094e90f2fd204a81713f1d3d877
b1f62983f17083c81f42da8b669fd81b85a49f0281762d11defe71d3603f7dbe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /Default.aspx?u=cart HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: lang=VIE; expires=Tue, 10-Jan-2023 23:15:20 GMT; path=/
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 51664

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-pham-diet-moi-cay-tra-suoi-giang.jpg

125.212.221.113

200 OK

7.6 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-pham-diet-moi-cay-tra-suoi-giang.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
7.6 kB (7631 bytes)
Hash
d934106d547fe8dfabe45877f634b184
84cbdd9a91efe800bc599d9f8879bb892f585b37
a23228bf99b9e19c17ab81ccfa72cd2a360f1cb77582841653b3a97c30367ca7

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-pham-diet-moi-cay-tra-suoi-giang.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 7631

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/72161862_1396732637146843_6574631500292030464_n.png

125.212.221.113

200 OK

7.5 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/72161862_1396732637146843_6574631500292030464_n.png
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
7.5 kB (7485 bytes)
Hash
05c96775dc89ce053d80cb20a254680a
eec9b8393fd3d6041553eba5eebf4c0f7cb1924a
8ad22d7d71a62cc22d54c0b566a7e25b784a7ec96a9bad46d3744597829f2f27

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/72161862_1396732637146843_6574631500292030464_n.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 7485

chesuoigiang.vn/themes/1/js-image-slider.css

125.212.221.113

200 OK

3.2 kB

URL HTTP/1.1
chesuoigiang.vn/themes/1/js-image-slider.css
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
3.2 kB (3204 bytes)
Hash
4187a6368c17aa8e39ff01240c40aa8c
fb9adb1916f167895e6a2e6c645ee35a77a580d4
98768cd1c690371972a5f3647af1d10984a74bc98fabbe5af4384dc568ae30e7

HTTP Headers

GET /themes/1/js-image-slider.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:35 GMT
Accept-Ranges: bytes
ETag: "8b65b3243affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 3204

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2384
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 09:15:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2384
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 09:15:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2384
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 09:15:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2384
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 09:15:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2384
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 09:15:36 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05402c6b-a411-4f42-ad2f-5d62ae0b06b3.jpeg

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05402c6b-a411-4f42-ad2f-5d62ae0b06b3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5865 bytes)
Hash
9913dfb5912ba8645570743465175301
8c69bb951e84f8b342f8cd5dd7d916e0feb5583d
20f1f8a3dad6ce611a1730d99e68866c7dc145762d9fe756dfa49e72c7da31e4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05402c6b-a411-4f42-ad2f-5d62ae0b06b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5865
x-amzn-requestid: 0134607b-9791-4f02-8036-111352e0d85d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctERaG7HoAMFlTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb408-7a1d59383913959e705a8e41;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TtldqQlXrB226wPUFPjS7KwXjWK3_49Pw47LbA35QLZQxovSj5hKPQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 17:12:46 GMT
age: 57770
etag: "8c69bb951e84f8b342f8cd5dd7d916e0feb5583d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9d9597d-3342-4cae-86ab-08af1be49d2c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9732 bytes)
Hash
9ecae80fc01e2d8953c298991500e07b
b71103793717d4c7fddfc6fe07b936b87fe3f5e1
bbd70dbf8c7976674cce6217b9274baf49d91a53196b6c907e9636b9462417eb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9d9597d-3342-4cae-86ab-08af1be49d2c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9732
x-amzn-requestid: 5f54b91c-702a-4a07-80eb-5df7456f3487
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUncHT4oAMFt1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67c9-38ca2ecb4934ea6439acc2af;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jTd8P0ZIGoCPFDjsU9A7k1Fk-Abqna9kNgFDxD76Q0JRwJ38cig4VQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 18:34:54 GMT
age: 52842
etag: "b71103793717d4c7fddfc6fe07b936b87fe3f5e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa890f071-ec5c-4223-9724-f63b2c9a73f3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4565 bytes)
Hash
afb336b3180aa4e95a887d41561bf2b6
f26da3ddd126b938bf330e9f1a0f4adfd991fb99
d540eea94d006728d68801a8914490e636fc96ec104fe5bdfa0833aa51e3488f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa890f071-ec5c-4223-9724-f63b2c9a73f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4565
x-amzn-requestid: cf7eba9f-35f6-456e-b4ea-1d667a006291
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgZgeHeuIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389a2cf-58c886a627064bb4346cbd3f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 07:01:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7vxYY6d8twOHtlJHdzLDnGLY8P0gMoKb71q-X6X5iJHEq65Dyg_Eag==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:38:41 GMT
age: 41815
etag: "f26da3ddd126b938bf330e9f1a0f4adfd991fb99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6311 bytes)
Hash
2020df3404a4b7c3e142af4a1330b848
2fe69b52fe03128e86550bf08474ecac82682384
37a52c158d5cfdf3589e19163cf446c02ce1466f444656080b02da82d2bcefae

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6311
x-amzn-requestid: 46ccaee0-bde8-4be6-9dc8-46e3ae356dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUYH10oAMF8Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc1b-2440251f06cb950a57489555;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SG-8rL_rUN3MpXHhkAaHmIqKf7mSHtv0kEAkBOAIPcqq755Qh-mc3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:38:41 GMT
etag: "2fe69b52fe03128e86550bf08474ecac82682384"
content-type: image/jpeg
age: 41815
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe639b598-228d-4b74-8dab-25ae9f33b0b6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5953 bytes)
Hash
c2a89767acaa7b09e7cf2d0d5e833644
0f796dfeb88f997c3b7640d79983110795b64f41
fde35b6974b53a3a5d452af68614ee559152ed76e492c9ebaa16b1a9e487aa4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe639b598-228d-4b74-8dab-25ae9f33b0b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5953
x-amzn-requestid: e878d66a-0fe4-4411-a0b4-816facb42707
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2dgiEAAoAMFquQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63927603-71491d8613419cc708f3396e;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 23:40:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _VSA7qRooH64GG6Gwx6rYZaSZpxhTNPDCQY31AVzZGmQVTGcqqklRg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:38:41 GMT
age: 41815
etag: "0f796dfeb88f997c3b7640d79983110795b64f41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10205 bytes)
Hash
45e0c1638ad919bde19731f7987ab064
1e492807c665e6e6b24ec6ce19035fdfc6f23b92
f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: eXMCIFCWGhtwytt5lPvm12fJIhGVLly2pK00WWhJoqGdE8-XN93A9w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 18:08:19 GMT
age: 54437
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

chesuoigiang.vn/themes/1/js-image-slider.js

125.212.221.113

200 OK

16 kB

URL HTTP/1.1
chesuoigiang.vn/themes/1/js-image-slider.js
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
16 kB (16291 bytes)
Hash
f694706a38a1944e3a006b46bd4d4718
0af30fb907a47725745769e5ace9eba414927199
7fb834dbc5f6e05be07995ae8d23c31ad51dfab49e76ff6c2e92a2cfe3cefda7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /themes/1/js-image-slider.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Fri, 26 Aug 2016 01:35:35 GMT
Accept-Ranges: bytes
ETag: "29e5b8243affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 16291

chesuoigiang.vn/themes/generic.css

125.212.221.113

200 OK

874 B

URL HTTP/1.1
chesuoigiang.vn/themes/generic.css
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
troff or preprocessor input, ASCII text, with CRLF line terminators
Size
874 B (874 bytes)
Hash
570b3638c0f62364b87e001b3f0dbf58
c28ded9562957191c99b74b2405a1b85d7484e3b
39b03f559ec7f197601cbdb1b8d55f7678a2a721bb5f16f809456ed2ad4b3b12

HTTP Headers

GET /themes/generic.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:25 GMT
Accept-Ranges: bytes
ETag: "39ca801e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 874

chesuoigiang.vn/autopopup/main.js

125.212.221.113

200 OK

1.0 kB

URL HTTP/1.1
chesuoigiang.vn/autopopup/main.js
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
1.0 kB (1002 bytes)
Hash
67f71ec3f0da7be4dacb28c9e9b06bbe
8f5915c5811c1b45675b936a93171d211530977c
3b59287b854bfc0da11963183f2b77a44a1d6b25d8e027d9bc62f79824e396d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /autopopup/main.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Fri, 26 Aug 2016 01:35:20 GMT
Accept-Ranges: bytes
ETag: "936b5b1b3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 1002

chesuoigiang.vn/ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8

125.212.221.113

200 OK

48 kB

URL HTTP/1.1
chesuoigiang.vn/ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
48 kB (47752 bytes)
Hash
6e77a05ce1d5e8d19aa218e5a251e73f
af19b89b4228d9d552692cd3756f9fa740ea133c
0391959ff727c700b4f08adad1ea60c1d293be1851cf918cb1dc6ba1380d8f30

HTTP Headers

GET /ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Mon, 11 Dec 2023 23:13:16 GMT
Last-Modified: Sun, 11 Dec 2022 23:13:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 47752

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-viet-nam-dc-trao-giai-tra-the-gioi.jpg

125.212.221.113

200 OK

6.0 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-viet-nam-dc-trao-giai-tra-the-gioi.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
6.0 kB (6032 bytes)
Hash
cb55198c6e6d7cabb9f9e02744bd52ba
276ee883f526d1c6a6aebc204d61f9c93b99eed5
7f8b46b5bda7645a6741e6a9497ae10369deb10eb5acb445350cc21ddddb2927

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-viet-nam-dc-trao-giai-tra-the-gioi.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 6032

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/tra-cothu-suoi-giang-duy-thinh-tea-10.png

125.212.221.113

200 OK

8.1 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/tra-cothu-suoi-giang-duy-thinh-tea-10.png
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
8.1 kB (8103 bytes)
Hash
72d009ece18a1cd5316c92fd22eb6cfd
daf57fe7bec279509a719dd4a6740460a8002bb9
0f80aeee3d65807536d3466cfcf2afbf96e9be94ce271aa722f07ee2853a0d9e

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/tra-cothu-suoi-giang-duy-thinh-tea-10.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 8103

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/thuong-can-kieu-cay-cau-canh-chu1.jpg

125.212.221.113

200 OK

6.0 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/thuong-can-kieu-cay-cau-canh-chu1.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
6.0 kB (6047 bytes)
Hash
f7271f5569b9eea76fe687bd056cb150
4db7d70fc30578d9ffad26f252285501e11ada56
0d15408b518034869706ee74f56dbff39150a15f0a839bd4cb79a30f919de789

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/thuong-can-kieu-cay-cau-canh-chu1.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 6047

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=https://che-sach.com/wp-content/uploads/2017/03/doi-tra-yen-bai4.jpg

125.212.221.113

200 OK

0 B

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=https://che-sach.com/wp-content/uploads/2017/03/doi-tra-yen-bai4.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=https://che-sach.com/wp-content/uploads/2017/03/doi-tra-yen-bai4.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 0

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=pic/news/UploadImage/hoi-thao-thuong-hieu-tra-viet636483242024037425.jpg

125.212.221.113

200 OK

7.3 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=pic/news/UploadImage/hoi-thao-thuong-hieu-tra-viet636483242024037425.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
7.3 kB (7270 bytes)
Hash
c17d8e56044f899db1b93e50bc14a76c
7d070881e6aa47a5288da98b4e84cc5dbc519647
7dca520bc3e17eb946372a3790816226f4dc5ff243f38004db0a824f3323ce17

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=pic/news/UploadImage/hoi-thao-thuong-hieu-tra-viet636483242024037425.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 7270

chesuoigiang.vn/pic/web/theme/Tea-S_03.gif

125.212.221.113

200 OK

127 kB

URL HTTP/1.1
chesuoigiang.vn/pic/web/theme/Tea-S_03.gif
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
GIF image data, version 89a, 990 x 225\012- data
Size
127 kB (126761 bytes)
Hash
15b5fd108166ca803e620ee83c855588
ef2764598f1c66ed6e186b42915cc67983148091
71170ca571f7a7d626b7133e95681825943a15bf64d90818534b545990e77d9a

HTTP Headers

GET /pic/web/theme/Tea-S_03.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "56708423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:21 GMT
Content-Length: 126761

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/33186871_1178716292265814_752749566163419136_n.jpg

125.212.221.113

200 OK

7.3 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/33186871_1178716292265814_752749566163419136_n.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
7.3 kB (7302 bytes)
Hash
68928b328a14ccfae870213c05440398
97026cccf1f60fa08c009209690d2fd44ab71bba
da082d29a4b526475fc22fb0354c6a02a5c85490ee36734602f7c00d12c6871f

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/33186871_1178716292265814_752749566163419136_n.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:22 GMT
Content-Length: 7302

chesuoigiang.vn/pic/news/tin%20tuc/co-gai-hai-che-truong-lan-phuong.jpg

125.212.221.113

200 OK

50 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/co-gai-hai-che-truong-lan-phuong.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
50 kB (49963 bytes)
Hash
f201664bcfbf71cac5b541de67ec869d
e5128f54a132f810d0357a62ae8fe638fe8e0807
cf1043bba52fff33bffc4971dba91f4f286d99c6f4661ace45ea7b2cd610b880

HTTP Headers

GET /pic/news/tin%20tuc/co-gai-hai-che-truong-lan-phuong.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "bd576d2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 49963

chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tra%20suoi%20giang/co%20gai%20hai%20tra.jpg

125.212.221.113

200 OK

6.6 kB

URL HTTP/1.1
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tra%20suoi%20giang/co%20gai%20hai%20tra.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Size
6.6 kB (6564 bytes)
Hash
d30cda72261aaa1f2f4c45686906062a
49f7f5014c766122826015a0861a65052003cd2a
f194d26ef8a27c09232cbe56b5bf2c95ec59a8949395ef457c5cfb88052163b2

HTTP Headers

GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tra%20suoi%20giang/co%20gai%20hai%20tra.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 6564

dulichsuoigiang.com/wp-content/uploads/2016/06/ban-tra-dien-da-nang-dt04.jpg

14.225.238.227

200 OK

93 kB

URL HTTP/1.1
dulichsuoigiang.com/wp-content/uploads/2016/06/ban-tra-dien-da-nang-dt04.jpg
IP
14.225.238.227:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 2x2, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, height=554, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=750], baseline, precision 8, 640x271, components 3\012- data
Size
93 kB (93271 bytes)
Hash
4cc0524c4bd51e8e45081645c8d08d37
50773518b60f32f33bc8b6c66106e9ebcf6c3198
77ee5c96fff89b2731c807262a840949ff253c08de1cb185e87aec29332161d3

HTTP Headers

GET /wp-content/uploads/2016/06/ban-tra-dien-da-nang-dt04.jpg HTTP/1.1
Host: dulichsuoigiang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 11 Dec 2022 09:15:37 GMT
Content-Type: image/jpeg
Content-Length: 93271
Last-Modified: Fri, 14 Apr 2017 10:33:38 GMT
Connection: keep-alive
ETag: "58f0a582-16c57"
Accept-Ranges: bytes

chesuoigiang.vn/pic/news/tin%20tuc/che%20co%20thu%20suoi%20giang%20loai%201.jpg

125.212.221.113

200 OK

49 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/che%20co%20thu%20suoi%20giang%20loai%201.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
49 kB (49244 bytes)
Hash
72ea5aa6f33912aa532054064a96f784
fe2e59e46f60e8402d3ee3f3110708e06b4e2f3a
f8913c474f1d1e6608c90de6b5fdc35ba91f0081c399e71ee3659774044b6313

HTTP Headers

GET /pic/news/tin%20tuc/che%20co%20thu%20suoi%20giang%20loai%201.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "4e543a2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 49244

chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20nguoi%20mong%20hai%20tra%20tuyet.jpg

125.212.221.113

200 OK

79 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20nguoi%20mong%20hai%20tra%20tuyet.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
79 kB (78638 bytes)
Hash
c8740a8f5d12667382c558b6536383a8
ec1c354487f9928e28b30140e196e073dd1e90b6
b0077fb52a8c8ccc3097b8cdf9de6ae3fa2713316b693dabf5d4d3117aa5dd64

HTTP Headers

GET /pic/news/tin%20tuc/co%20gai%20nguoi%20mong%20hai%20tra%20tuyet.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "a3226a2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 78638

chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20h'mong%20tra%20shan%20tuyet%20co%20thu.jpg

125.212.221.113

200 OK

76 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20h'mong%20tra%20shan%20tuyet%20co%20thu.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
76 kB (75878 bytes)
Hash
32bfd5095dc8e05794858e128e7e4c68
12d83ae1b97a5b6395ecd4ab7e8e4b07bd9d4e09
c874ea4012fe9a3b747c2126f4c0c28ec7dc2503ebd3539cf8726ddc34aac293

HTTP Headers

GET /pic/news/tin%20tuc/co%20gai%20h'mong%20tra%20shan%20tuyet%20co%20thu.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "f989672a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 75878

chesuoigiang.vn/pic/news/tin%20tuc/tra%20shan%20tuyet%20co%20thu%20suoi%20giang.jpg

125.212.221.113

200 OK

88 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/tra%20shan%20tuyet%20co%20thu%20suoi%20giang.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
88 kB (87581 bytes)
Hash
ff4de613fa23fa586e06ba04b89869a5
554c13da2f393c6539b74ffed6eb064ed1ba9ff0
d7e122d687da6bec4b0757e4deef73a65607262430f86e022eb9a52ca3b394da

HTTP Headers

GET /pic/news/tin%20tuc/tra%20shan%20tuyet%20co%20thu%20suoi%20giang.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:47 GMT
Accept-Ranges: bytes
ETag: "101ddf2b3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:25 GMT
Content-Length: 87581

chesuoigiang.vn/pic/news/tra%20suoi%20giang/hai-che-1.jpg

125.212.221.113

200 OK

66 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tra%20suoi%20giang/hai-che-1.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 718x310, components 3\012- data
Size
66 kB (66101 bytes)
Hash
2f093803390759421065efcafc232e53
cdbbdb2bd646107ebf20e91f882f58db00a45d6b
5a0543fe19e331e5fb9a1cee1b9238b38cb0e0f7e9b4026b546a47b3de319c6d

HTTP Headers

GET /pic/news/tra%20suoi%20giang/hai-che-1.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:51 GMT
Accept-Ranges: bytes
ETag: "e7ddbc2d3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:25 GMT
Content-Length: 66101

chesuoigiang.vn/pic/store/UploadImage/che_dang_cao_bang_1634851100731420000.jpg

125.212.221.113

200 OK

4.0 kB

URL HTTP/1.1
chesuoigiang.vn/pic/store/UploadImage/che_dang_cao_bang_1634851100731420000.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 96x128, components 3\012- data
Size
4.0 kB (4017 bytes)
Hash
595d3a976213b67e73d88a285f367fbd
000f29bc70d29db4bb7bc2ac9ad0114fbba2d172
92ac02e576f87e4a5d531455b826ee56417a81979b52247d1112797ed9804f9a

HTTP Headers

GET /pic/store/UploadImage/che_dang_cao_bang_1634851100731420000.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:36:20 GMT
Accept-Ranges: bytes
ETag: "7bfef73e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:27 GMT
Content-Length: 4017

chesuoigiang.vn/pic/news/tin%20tuc/che-mot-bup-suoi-giang-2.jpg

125.212.221.113

200 OK

74 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/che-mot-bup-suoi-giang-2.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
74 kB (73687 bytes)
Hash
19f7e94884ee5c5a6f69f5d90c32869e
c83a53109b66f97928dda4074125a87ee7848249
33eafebce542f56616d2124565b9152941fcc847207db968b070c053093caedc

HTTP Headers

GET /pic/news/tin%20tuc/che-mot-bup-suoi-giang-2.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "d52a5b2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 73687

chesuoigiang.vn/pic/news/tra%20suoi%20giang/thu-hai-che-6.jpg

125.212.221.113

200 OK

50 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tra%20suoi%20giang/thu-hai-che-6.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 718x310, components 3\012- data
Size
50 kB (50438 bytes)
Hash
2cfd959300bd11c8a70fb9a73b03dd52
1692880fa65143581c89c53ba038a6d269b8222f
cf78008e6e6b98aa68963364c247653b1134b42984d8868354c9ab268908896b

HTTP Headers

GET /pic/news/tra%20suoi%20giang/thu-hai-che-6.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:51 GMT
Accept-Ranges: bytes
ETag: "4362142e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:26 GMT
Content-Length: 50438

chesuoigiang.vn/pic/news/tin%20tuc/10888425_366964073486636_8440687492118977109_n.jpg

125.212.221.113

200 OK

95 kB

URL HTTP/1.1
chesuoigiang.vn/pic/news/tin%20tuc/10888425_366964073486636_8440687492118977109_n.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Size
95 kB (94601 bytes)
Hash
3f9ddda90afe0ef02d03bdcb8806c24c
a1c4910a6d3a7a1442941e9687663481bbb8e0e2
c800f3aeaa3c64e06e4550ab83d122167600fe629086cfe9162cf1c2e885e181

HTTP Headers

GET /pic/news/tin%20tuc/10888425_366964073486636_8440687492118977109_n.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:44 GMT
Accept-Ranges: bytes
ETag: "819cc9293affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:23 GMT
Content-Length: 94601

chesuoigiang.vn/pic/web/theme/website-da-dang-ky-voi-bo-cong-thuong.jpg

125.212.221.113

200 OK

35 kB

URL HTTP/1.1
chesuoigiang.vn/pic/web/theme/website-da-dang-ky-voi-bo-cong-thuong.jpg
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 368x205, components 3\012- data
Size
35 kB (34969 bytes)
Hash
237b78c288b729cfd8634cba07f5c6ca
67f2068c82437c0c4221029fd9899d9c68986a52
069e7a25fde8f605be50ae604d039e483345d4516e1e09b3945818f02cb84b14

HTTP Headers

GET /pic/web/theme/website-da-dang-ky-voi-bo-cong-thuong.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "97e811423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:27 GMT
Content-Length: 34969

chesuoigiang.vn/js/jquery-1.3.2.min.js

125.212.221.113

200 OK

0 B

URL HTTP/1.1
chesuoigiang.vn/js/jquery-1.3.2.min.js
IP
125.212.221.113:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/jquery-1.3.2.min.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/Default.aspx?u=cart
Cookie: ASP.NET_SessionId=ebdy0orgjw0pzfsh5ti0bm0r; LastURLHistory=/36/128/d; lang=VIE

HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Fri, 26 Aug 2016 01:35:25 GMT
Accept-Ranges: bytes
ETag: "c115431e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sun, 11 Dec 2022 23:15:20 GMT
Content-Length: 151903

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations