| nguonphimc.com/site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html | 94.242.50.163 | | 0 B |
URL nguonphimc.com/site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html IP94.242.50.163:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 20 Apr 2024 05:48:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Set-Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Pragma: no-cache
Location: http://nguonphimc.com/site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| nguonphimc.com/site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html | 94.242.50.163 | | 724 B |
URL nguonphimc.com/site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html IP94.242.50.163:0
File typeHTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators Hash42c3d46c8a24dc0e8e62dc798d3f4a67 64a333ab526ac58d564394b4c200afdde752d981 e0efb512c8b6bbddb2ec478941e4691e907d5fd35ae055a99f594f38712b7a8d
GET /site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Pragma: no-cache
Set-Cookie: us_session_id=P844; expires=Sun, 21-Apr-2024 05:48:45 GMT; Max-Age=86400; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 724
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| nguonphimc.com/assets/3bd14e95/jquery.min.js | 94.242.50.163 | 200 OK | 34 kB |
URL GET HTTP/1.1nguonphimc.com/assets/3bd14e95/jquery.min.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (32077) Hash0fca26b5a37a66d68d0f4406976be4b5 ee000eb654b3bd37185665d3901e93b34ce1aa52 8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18
GET /assets/3bd14e95/jquery.min.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/site/site/embed/?url=https://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:46 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Wed, 30 Nov 2022 09:07:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:46 GMT
Content-Length: 33693
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| m3.nguonphim.net/media/images/1/favi/favicon-1498701606.png | 94.242.50.163 | 200 OK | 18 kB |
URL GET HTTP/1.1m3.nguonphim.net/media/images/1/favi/favicon-1498701606.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 46 x 48, 8-bit/color RGBA, non-interlaced Hashe6f4a93efe2d93e885abcbb4cc09cd4a e4f94b9e95b40e30b215228316bb7f8c48d08ed2 93b7bbea433aa41f6efb860d3d9777d363f9e64fc1ad4186cd9ef525bbee9c94
GET /media/images/1/favi/favicon-1498701606.png HTTP/1.1
Host: m3.nguonphim.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:46 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Wed, 05 Jul 2017 04:14:59 GMT
ETag: "45d1-5538a3e52eb40"
Accept-Ranges: bytes
Content-Length: 17873
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:46 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
|
|
| nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html | 94.242.50.163 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html IP94.242.50.163:443
CertificateIssuerLet's Encrypt Subjectnguonphimc.com Fingerprint30:27:67:FA:FE:DB:78:5F:CD:B9:5D:D0:18:14:93:A4:BC:93:3D:C1 ValidityWed, 10 Apr 2024 08:07:50 GMT - Tue, 09 Jul 2024 08:07:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bi-an-can-phong-so-7-room-no-7-f20597.html HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Pragma: no-cache
Location: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html | 94.242.50.163 | 301 Moved Permanently | 17 kB |
URL User Request GET HTTP/1.1nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html IP94.242.50.163:443
CertificateIssuerLet's Encrypt Subjectnguonphimc.com Fingerprint30:27:67:FA:FE:DB:78:5F:CD:B9:5D:D0:18:14:93:A4:BC:93:3D:C1 ValidityWed, 10 Apr 2024 08:07:50 GMT - Tue, 09 Jul 2024 08:07:49 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (502), with CRLF, LF line terminators Hash4b5a28c24f3d743104b38e060e7d8357 4be9bf75031bfd7ff9ed735226b2e8716b0e8197 70e3e73a8237615e9220a9b40c32ef78f82c280fedd29ce230f69083fc55b853
GET /bi-an-can-phong-so-7-room-no-7-f20597.html HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://nguonphimc.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 16625
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| nguonphimc.com/assets/3bd14e95/jquery.min.js | 94.242.50.163 | 200 OK | 34 kB |
URL GET HTTP/1.1nguonphimc.com/assets/3bd14e95/jquery.min.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (32077) Hash0fca26b5a37a66d68d0f4406976be4b5 ee000eb654b3bd37185665d3901e93b34ce1aa52 8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18
GET /assets/3bd14e95/jquery.min.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Wed, 30 Nov 2022 09:07:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 33693
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| nguonphimc.com/themes/np/js/bootstrap.min.js | 94.242.50.163 | 200 OK | 9.7 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/js/bootstrap.min.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (32034), with CRLF line terminators Hashe7d9a06cf9053c51cd4ad3386da0659a e45bf1054704a1fdfc4ee2713a16bf9283dea995 9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd
GET /themes/np/js/bootstrap.min.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 9726
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| nguonphimc.com/themes/np/js/owl.carousel.min.js | 94.242.50.163 | 200 OK | 6.5 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/js/owl.carousel.min.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (635), with CRLF line terminators Hash8c52f27fcac36c7667f8fb846e1e94d5 e5862559db659ffd530c91452d668c5e7b3f0f2d 6c1e31700f68d1666de6b0992e89d413434707718bf729a472404029845bdbad
GET /themes/np/js/owl.carousel.min.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 6464
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| nguonphimc.com/themes/np/js/wow.min.js | 94.242.50.163 | 200 OK | 2.7 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/js/wow.min.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (8385), with CRLF line terminators Hashe1f1ff6897992a9165e8ce009b4039e3 e297207404fea99863aea60a1dcd3770f8ecddee 37461d9b50fd93b2e6d064c4aa48cbc16d5b1e82c27f47270b87a39225cc00ac
GET /themes/np/js/wow.min.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 2742
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| nguonphimc.com/themes/np/js/jquery.nice-select.js | 94.242.50.163 | 200 OK | 1.5 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/js/jquery.nice-select.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hash723e741faba72abfb0e56b6e0f8a73d8 ba71788614e8e11dbeeebdcac9037b57e7a69ce4 39f6514264e1603542b6aa38ba44c3be0aa7bbdef56ed139d74fe75e24e642fa
GET /themes/np/js/jquery.nice-select.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 1538
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2 | 94.242.50.163 | 200 OK | 80 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2 IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators Hash9ccfae82c1f9be3cf7c148a39228f53c 9abd7857d28f34c5007b11ee53d2818482775163 d962cf8c297e2b013c20dadac3f99d1af50957de8e1d1de8b4ea960fbd6fd7b6
GET /themes/np/css/color.css?v=np2.4.8.2 HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Wed, 30 Nov 2022 08:58:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Connection: close
Transfer-Encoding: chunked
Content-Type: text/css; charset=utf-8
|
|
| nguonphimc.com/themes/np/js/jquery.magnific-popup.min.js | 94.242.50.163 | 200 OK | 7.3 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/js/jquery.magnific-popup.min.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (20087), with CRLF line terminators Hashb37d7edf99565d3858eaa1ad80df3cff 786a4343711e9af5e5dfcc493e7d2331b48875bb b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2
GET /themes/np/js/jquery.magnific-popup.min.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 7346
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| m3.nguonphim.net/media/images/1/logo/logo16012018.png | 94.242.50.163 | 200 OK | 10 kB |
URL GET HTTP/1.1m3.nguonphim.net/media/images/1/logo/logo16012018.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 124 x 40, 8-bit/color RGBA, interlaced Hasha9da8ca65d6ba20845e49ae6b63a0a92 f1c7861f134ba1af81047a0fda27027327b736ab 39eb6969b37ac9325026f79f791a7f8a46f9baa5976e3f0aa8b8772730af4e2c
GET /media/images/1/logo/logo16012018.png HTTP/1.1
Host: m3.nguonphim.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Mon, 15 Jan 2018 20:06:20 GMT
ETag: "2751-562d625d53c2f"
Accept-Ranges: bytes
Content-Length: 10065
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
|
|
| nguonphimc.com/themes/np/js/jquery.showmore.src.js | 94.242.50.163 | 200 OK | 434 B |
URL GET HTTP/1.1nguonphimc.com/themes/np/js/jquery.showmore.src.js IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (432) Hashf67d16dc855157012280d1b8d2d0ac55 4eaa66120111bb8cb4c21884c647bf609ef3a7a5 89a7b91f92a0583bcfabc3dc0347bfb78822ebe75d229fb766ae2fdc6e7e0d28
GET /themes/np/js/jquery.showmore.src.js HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 434
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| nguonphimc.com/js/main.min.js?v=2.4.8.2 | 94.242.50.163 | 200 OK | 5.6 kB |
URL GET HTTP/1.1nguonphimc.com/js/main.min.js?v=2.4.8.2 IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (17159) Hash2f3514d630f0195787c0f99778202f3c 2ce2883a59c655b8e02d644a1449fcdfdf604486 23b47b8eb144a359fdd87940db44e0420e7e0062f3cbba762e0e22c35afb3749
GET /js/main.min.js?v=2.4.8.2 HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Sat, 02 May 2020 19:55:57 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=31536000, proxy-revalidate
Expires: Sun, 20 Apr 2025 05:48:47 GMT
Content-Length: 5620
Connection: close
Content-Type: application/javascript; charset=utf-8
|
|
| www.googletagmanager.com/gtag/js?id=G-DDD7EKFG6W | 142.250.74.40 | 200 OK | 97 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-DDD7EKFG6W IP142.250.74.40:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (3969) Hash5477c2de50f274092b6b2d13899c3f3c 54daf254e7051042bd7f44794f18c71d21f44c71 baa8d0f2320232d7e7c8a1a5b0735ea3e27c1452b1b7bac8e86f28ac30d5ad46
GET /gtag/js?id=G-DDD7EKFG6W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 20 Apr 2024 05:48:47 GMT
expires: Sat, 20 Apr 2024 05:48:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97099
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| m3.nguonhay.com/media/images/film/pol/s350_700/can-phong-so-9-1561438876.jpg | 94.242.50.163 | 200 OK | 46 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/pol/s350_700/can-phong-so-9-1561438876.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x426, components 3 Hash13fbf6df19122582b9e4d1e6c0e7ab22 ea8f8bc93a7355ed56a0accdae719dabc2d0ea5c 5ebfab54aac0b7c6d82925e0845b6b3e58f37b0a28948ac572625133db465a76
GET /media/images/film/pol/s350_700/can-phong-so-9-1561438876.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 12 Jun 2020 02:34:56 GMT
ETag: "b47d-5a7d9ec3e0d4c"
Accept-Ranges: bytes
Content-Length: 46205
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/pol/s350_700/dieu-ki-dieu-o-phong-giam-so-7-ban-tho-nhi-ky-1585185344.jpg | 94.242.50.163 | 200 OK | 74 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/pol/s350_700/dieu-ki-dieu-o-phong-giam-so-7-ban-tho-nhi-ky-1585185344.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x426, components 3 Hash6c710b1bd85c91b2457086f8e33f1657 dd123f983f344fa8b416a22a7144c4c2b3b490a3 59571e42a7e130851b32653b9b0905a92fbf396dcb8ac4436c92c7a0e6de8857
GET /media/images/film/pol/s350_700/dieu-ki-dieu-o-phong-giam-so-7-ban-tho-nhi-ky-1585185344.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:19:48 GMT
ETag: "12048-5a7cdfa01909d"
Accept-Ranges: bytes
Content-Length: 73800
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/newcover/2018/7/s350_700/tinh-yeu-voi-ke-bat-coc-sachiiro-no-one-room-1531667051.jpg | 94.242.50.163 | 200 OK | 75 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/newcover/2018/7/s350_700/tinh-yeu-voi-ke-bat-coc-sachiiro-no-one-room-1531667051.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 350x486, components 3 Hashfb4368b8d6145695832c114f3302773d 9314cc5470d7298948484a8814d501acc73f0cdd 0bd5b5aa34ae83d993541b9f378d2b1d1ff4df3e055b959baa3d8ded25396cb0
GET /media/images/film/newcover/2018/7/s350_700/tinh-yeu-voi-ke-bat-coc-sachiiro-no-one-room-1531667051.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 12 Jun 2020 06:39:59 GMT
ETag: "12527-5a7dd589ef420"
Accept-Ranges: bytes
Content-Length: 75047
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/newcover/2017/7/s350_700/can-phong-room-1499411836.jpg | 94.242.50.163 | 200 OK | 77 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/newcover/2017/7/s350_700/can-phong-room-1499411836.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 350x438, components 3 Hash43de2bea74fd77d806842844373ffe2c 3ef2fc3f22a8dfbc90f22174cceffdf853bc4489 833dceed1b6c32a28cece04b42f6459ff08da90c1ee5e3d8d98a918abe98dabd
GET /media/images/film/newcover/2017/7/s350_700/can-phong-room-1499411836.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 16:47:58 GMT
ETag: "12e16-5a7d1b914a5ad"
Accept-Ranges: bytes
Content-Length: 77334
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/phimbathu/s350_700/25115391878615205bbe2495436fd-1539187869.jpg | 94.242.50.163 | 200 OK | 74 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/phimbathu/s350_700/25115391878615205bbe2495436fd-1539187869.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 350x505, components 3 Hash5b717bc8578b456ba5f858f2de0247d5 c15b3968c2f5cfaa08b6db1db56e945a0e86330e 9d5feea0552e43dc3f3c92ca6ec07e3aa962c19f3b3387761106a9847a7d0c24
GET /media/images/film/phimbathu/s350_700/25115391878615205bbe2495436fd-1539187869.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 17 Feb 2022 06:48:23 GMT
ETag: "12001-5d83127023697"
Accept-Ranges: bytes
Content-Length: 73729
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/newcover/2021/6/s350_700/vua-hai-tac-1624252456.jpg | 94.242.50.163 | 200 OK | 102 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/newcover/2021/6/s350_700/vua-hai-tac-1624252456.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 350x525, components 3 Size102 kB (102471 bytes) Hashf3b3235be303bcdd8806ee587f879d0a c5cfc2f2b686184a9bb5d8495268fb62e685d17c f365d987c622865d1bac410f3814dabce383d1dd2d961f00aafaf256b251c42e
GET /media/images/film/newcover/2021/6/s350_700/vua-hai-tac-1624252456.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Mon, 21 Jun 2021 05:14:17 GMT
ETag: "19047-5c53fbebf16b6"
Accept-Ranges: bytes
Content-Length: 102471
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:47 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| nguonphimc.com/images/headshot-placeholder.png | 94.242.50.163 | 200 OK | 3.4 kB |
URL GET HTTP/1.1nguonphimc.com/images/headshot-placeholder.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 252 x 345, 8-bit/color RGB, non-interlaced Hash25fa9ab09a307f1332ebaf0e5b59e033 060f94c03f4f1d34cc99de9f86f335a5a2abaaed e721eaf6440c791758ba62c1dc1e5dc2be909264b658afd34b6cc3ca3de9287d
GET /images/headshot-placeholder.png HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 04 Jan 2018 07:48:49 GMT
Accept-Ranges: bytes
Content-Length: 3412
Cache-Control: max-age=2592000, public
Expires: Mon, 20 May 2024 05:48:48 GMT
Connection: close
Content-Type: image/png
|
|
| nguontv.com/media/vn02.jpg | 94.242.50.163 | 200 OK | 52 kB |
URL GET HTTP/1.1nguontv.com/media/vn02.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, progressive, precision 8, 400x300, components 3 Hashdfa57a5b5804336f78b1fc7ab5d0346d 832189153c9a5f23293da826eed7867e7e3836f4 b1c09b4d08344c3d7c5367f0c821bda7195ddd7a8c169febb04f9960142c5517
GET /media/vn02.jpg HTTP/1.1
Host: nguontv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Tue, 02 Jan 2024 07:37:13 GMT
Accept-Ranges: bytes
Content-Length: 51852
Cache-Control: max-age=2592000
Expires: Mon, 20 May 2024 05:48:48 GMT
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/pol/s350_700/dao-hai-tac-2006-1586092176.jpg | 94.242.50.163 | 200 OK | 26 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/pol/s350_700/dao-hai-tac-2006-1586092176.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 232x329, components 3 Hash9832376d03bc844f58f1120fa92cbf4e 6a41c0cbf4fa69e764b24428a3ce8ead1d693c59 ae7e626fdeb0f3213fa601ed61f5972a3b5165c230603b32ece487b4bce4dadd
GET /media/images/film/pol/s350_700/dao-hai-tac-2006-1586092176.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:45:32 GMT
ETag: "65be-5a7ce560d52ce"
Accept-Ranges: bytes
Content-Length: 26046
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/bn/s350_700/dieu-ky-dieu-noi-phong-giam-so-7-1598686682.jpg | 94.242.50.163 | 200 OK | 50 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/bn/s350_700/dieu-ky-dieu-noi-phong-giam-so-7-1598686682.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x423, components 3 Hashdddb74375710b28acc728a8ac9a4a5cb 796f60f3ff78a2521163fc707c8a0643b9d1bad4 62958aa6e01722577dacfc47c65bf5f69573fdf027f61d4230e188f1b368f998
GET /media/images/film/bn/s350_700/dieu-ky-dieu-noi-phong-giam-so-7-1598686682.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Sat, 29 Aug 2020 10:34:52 GMT
ETag: "c1fd-5ae01b836e92c"
Accept-Ranges: bytes
Content-Length: 49661
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/ff/s350_700/the-gioi-hoan-my-1619204356.jpg | 94.242.50.163 | 200 OK | 45 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/ff/s350_700/the-gioi-hoan-my-1619204356.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 238x344, components 3 Hash5e060cae43f33fc6ee9baa645c696f8e 9ac7805332b99d6e27afff6d96d47d72a0369fc8 ed17139b51f4cb501cfa17c692cc257437127fa92980851547df75f6402f13c0
GET /media/images/film/ff/s350_700/the-gioi-hoan-my-1619204356.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 23 Apr 2021 18:59:22 GMT
ETag: "af7d-5c0a864d52e4d"
Accept-Ranges: bytes
Content-Length: 44925
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/pol/s350_700/vo-than-chua-te-1583765005.jpg | 94.242.50.163 | 200 OK | 70 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/pol/s350_700/vo-than-chua-te-1583765005.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x426, components 3 Hashfabd25bf58c53cf84b93d09b16a5dab1 44d008211bf7a481cb35b3187b825f54e7c9631c 06138ff6cdd143a248a3b31bbcb4e88ee295c0d11a987a60b9f0c4043fee79e0
GET /media/images/film/pol/s350_700/vo-than-chua-te-1583765005.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 12 Jun 2020 07:03:11 GMT
ETag: "112e1-5a7ddab8b8f40"
Accept-Ranges: bytes
Content-Length: 70369
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/hup/s350_700/don-canh-sat-so-7-1581145265.jpg | 94.242.50.163 | 200 OK | 78 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/hup/s350_700/don-canh-sat-so-7-1581145265.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 350x452, components 3 Hash4d262e673bf61e1777beee5f7afc95ac 9dffc4c5ec2ae07617f9147aed07f6e9fc1076ac 4cf944f7b3c817678569b619a27ed1029e24a3849afe7e4f9f23a495a9542810
GET /media/images/film/hup/s350_700/don-canh-sat-so-7-1581145265.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:19:47 GMT
ETag: "13242-5a7cdf9ff0fff"
Accept-Ranges: bytes
Content-Length: 78402
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/phimbathu/s350_700/miracle-in-cell-07-2013-dieu-ki-dieu-trong-phong-giam-so-7-2013-201505407-1496786664.jpg | 94.242.50.163 | 200 OK | 79 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/phimbathu/s350_700/miracle-in-cell-07-2013-dieu-ki-dieu-trong-phong-giam-so-7-2013-201505407-1496786664.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, progressive, precision 8, 350x499, components 3 Hash3e09030b6a75560639c8e49b82cc89ba 45e054902240492cb98641f1ebbbe8d23ac4dd60 c89112cdc4e64787a88e2cc47cc77b2747dfe699e3f9e7a00ef8eef7c1f7f0c3
GET /media/images/film/phimbathu/s350_700/miracle-in-cell-07-2013-dieu-ki-dieu-trong-phong-giam-so-7-2013-201505407-1496786664.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 17 Feb 2022 07:54:44 GMT
ETag: "1341f-5d832144bdb32"
Accept-Ranges: bytes
Content-Length: 78879
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i|Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&subset=latin-ext,vietnamese | 142.250.74.74 | 200 OK | 4.2 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i|Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&subset=latin-ext,vietnamese IP142.250.74.74:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash5a5936af96823dbcbe13ee4d2b592cf8 03f95716035d6e2e07a8156e681140d8209f6abd f3a426c6362473e3f507e57f270f83643ba11f67ce07987a0a4c3d966c504efc
GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i|Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&subset=latin-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 05:48:48 GMT
date: Sat, 20 Apr 2024 05:48:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| m3.nguonhay.com/media/images/qrcode/20597.png | 94.242.50.163 | 200 OK | 583 B |
URL GET HTTP/1.1m3.nguonhay.com/media/images/qrcode/20597.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 390 x 390, 1-bit colormap, non-interlaced Hash3025aee4a82232434b04318003264f41 3de6fbfac358c031f6a23319fe1f7f3e1aa58ab9 3b5b845ed7185a1ed172075a16b8e31ffd72b202902c7738ae888b8ac4b12b4f
GET /media/images/qrcode/20597.png HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Mon, 29 Mar 2021 04:41:23 GMT
ETag: "247-5bea57e67ad26"
Accept-Ranges: bytes
Content-Length: 583
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
|
|
| m3.nguonhay.com/media/images/film/newcover/2018/1/s350_700/3-1516588083.jpg | 94.242.50.163 | 200 OK | 54 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/newcover/2018/1/s350_700/3-1516588083.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 350x494, components 3 Hash36e604e7fb6abb3624b9bcd619d990e9 49d89d264674f731f742dcb02fb7cd71eb5b3ce5 9067e6da9b2bbba15894c4e8f5311f3534fb9f9e487a7bfe89f1818e2531896c
GET /media/images/film/newcover/2018/1/s350_700/3-1516588083.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:19:49 GMT
ETag: "d10d-5a7cdfa1ba83d"
Accept-Ranges: bytes
Content-Length: 53517
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| fonts.googleapis.com/css?family=Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i | 142.250.74.74 | 200 OK | 78 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i IP142.250.74.74:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hashfec61307c7814b015d494dc5d986ece6 12967a0675752aa5751e50b79c597fccb80a2ceb be1e808b36a0e5ee666af92685c83c87cb1a4fadff1ed80ee503f95599412d85
GET /css?family=Montserrat:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 05:48:48 GMT
date: Sat, 20 Apr 2024 05:48:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| m3.nguonhay.com/media/images/film/ff/s350_700/van-gioi-doc-ton-1618772358.jpg | 94.242.50.163 | 200 OK | 41 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/ff/s350_700/van-gioi-doc-ton-1618772358.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 238x344, components 3 Hash8091041d69926e839902891831a9de78 e52932c8c944335a27363acefac27bf5be99780c 7348a57c603b9ab830af894eb6dcc70e545aa78850aa73fc9c8559f78358d5da
GET /media/images/film/ff/s350_700/van-gioi-doc-ton-1618772358.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Sun, 18 Apr 2021 18:59:23 GMT
ETag: "a135-5c043cfb0f712"
Accept-Ranges: bytes
Content-Length: 41269
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/oph/s350_700/rebel-moon-phan-hai-ke-khac-vet-seo-1713513914.jpg | 94.242.50.163 | 200 OK | 85 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/oph/s350_700/rebel-moon-phan-hai-ke-khac-vet-seo-1713513914.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 350x525, components 3 Hash5fd88439e806ef6b2f29e881f86aecc6 22d1c4d66ae8ef173e99a3d027c0f6c4aa3b89fd 1a5fb1b0a29a5fa8a3abe149a4e2b8d2227854cd7a06138f4b84c76ffb9c971b
GET /media/images/film/oph/s350_700/rebel-moon-phan-hai-ke-khac-vet-seo-1713513914.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Apr 2024 15:42:56 GMT
ETag: "14cd0-61674f10b6f57"
Accept-Ranges: bytes
Content-Length: 85200
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/1.1fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 16:27:38 GMT
expires: Wed, 16 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 307270
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 | 216.58.207.227 | 200 OK | 17 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16552, version 1.0 Hash283c40f79deab0300df8b3ffd86dfc7b 2ef09414a573ac59f4b37e81c8b8a881244b345f 35e5eea83f2e5f2bad1213aa4b4aef30a380720e35c1821f19bc894f8e61e406
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 03:10:17 GMT
expires: Fri, 18 Apr 2025 03:10:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 182311
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 | 216.58.207.227 | 200 OK | 12 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 11872, version 1.0 Hash87ace20058325aa069320aa4af875dff b743548770c46d905ae1ba06310bc001c587fe8e 3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 20:59:14 GMT
expires: Sat, 19 Apr 2025 20:59:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
age: 31774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 216.58.207.227 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35328, version 1.0 Hash7670dba29aa2a1560c5d711ea6f6b369 6a2a620d2972f139c804c5a8363c91eb1a7595f6 adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:26:46 GMT
expires: Wed, 16 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
age: 339722
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| m3.nguonhay.com/media/images/film/pbhorg/s350_700/dieu-ky-dieu-o-phong-giam-so-7-1577343689.jpg | 94.242.50.163 | 200 OK | 77 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/pbhorg/s350_700/dieu-ky-dieu-o-phong-giam-so-7-1577343689.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 350x467, components 3 Hash192bb9350ec356a7a581e58702d1c375 0480a9886179f6512fddf26e2499d6c9aee04619 5fa94c3adc9bd8d4af95d751f12e5e55109ffa8ac71adc9cf5709126bb0f64a5
GET /media/images/film/pbhorg/s350_700/dieu-ky-dieu-o-phong-giam-so-7-1577343689.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:17:44 GMT
ETag: "12b93-5a7cdf2a35e0f"
Accept-Ranges: bytes
Content-Length: 76691
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/bio/s350_700/chim-boi-ca-1665899828.jpg | 94.242.50.163 | 200 OK | 87 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/bio/s350_700/chim-boi-ca-1665899828.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 350x438, components 3 Hashcdb099f8426bd971ac65260f52a7c035 549e05f3215272e4a12832eaf94504d694383bec e46c8ded7ae8965e2881e946441d5a65cfb6937e9f97d1351c70658c5818ba88
GET /media/images/film/bio/s350_700/chim-boi-ca-1665899828.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Mon, 24 Oct 2022 16:27:41 GMT
ETag: "15256-5ebca453fbe31"
Accept-Ranges: bytes
Content-Length: 86614
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 | 216.58.207.227 | 200 OK | 128 kB |
URL GET HTTP/2fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 128352, version 1.0 Size128 kB (128352 bytes) Hash53436aca8627a49f4deaaa44dc9e3c05 0bc0c675480d94ec7e8609dda6227f88c5d08d2c 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 06:44:19 GMT
expires: Sun, 13 Apr 2025 06:44:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
age: 601469
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| m3.nguonhay.com/media/images/film/anime/s350_700/can-phong-so-7-1558384463.jpg | 94.242.50.163 | 200 OK | 45 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/anime/s350_700/can-phong-so-7-1558384463.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 350x500, components 3 Hash3a5319a3c50837ce7173187617660540 a5f9bc1441b42b56b454072a97bb8bcde57d6eee e1221d0859e38e2441af1e404af119d4ad62b6f272fd246bce625c56d05f2f60
GET /media/images/film/anime/s350_700/can-phong-so-7-1558384463.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:21:05 GMT
ETag: "b0f2-5a7cdfea02fad"
Accept-Ranges: bytes
Content-Length: 45298
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| m3.nguonhay.com/media/images/film/newcover/2017/9/s350_700/587934056213168536446f9730f-1506659712.jpg | 94.242.50.163 | 200 OK | 63 kB |
URL GET HTTP/1.1m3.nguonhay.com/media/images/film/newcover/2017/9/s350_700/587934056213168536446f9730f-1506659712.jpg IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 350x490, components 3 Hash22ae72a356c92150f6064a47f75ebf31 58d1ed5ac98b303070aebc05f7386f4dc424da70 e43abe6716b37a6060c107ca5de7b9fdcce71647a985c6647019ef54ac8d6b3f
GET /media/images/film/newcover/2017/9/s350_700/587934056213168536446f9730f-1506659712.jpg HTTP/1.1
Host: m3.nguonhay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Thu, 11 Jun 2020 12:19:49 GMT
ETag: "f573-5a7cdfa13b902"
Accept-Ranges: bytes
Content-Length: 62835
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/jpeg
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 | 216.58.207.227 | 200 OK | 5.6 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 5560, version 1.0 Hashca3b09b62fda648a4511700413313fd0 109cd4c5435bd6614391bb8722c47c287c96b2ec 77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:45:32 GMT
expires: Fri, 18 Apr 2025 02:45:32 GMT
cache-control: public, max-age=31536000
age: 183796
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto+Condensed:300,300i,400,400i,700,700i&subset=latin-ext,vietnamese | 142.250.74.74 | 200 OK | 6.4 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto+Condensed:300,300i,400,400i,700,700i&subset=latin-ext,vietnamese IP142.250.74.74:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash369335c115656eb9258bcea9d3422249 fe687d4e8e101dec7d36f96d483e084ab0ffaf7e 0789c1a02a9e2c0d84eb4eb58f8ec51600bdd2b3b3c4e5e41feaf4cddfdf13e1
GET /css?family=Roboto+Condensed:300,300i,400,400i,700,700i&subset=latin-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 05:48:48 GMT
date: Sat, 20 Apr 2024 05:48:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/1.1fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:54:31 GMT
expires: Wed, 16 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 359657
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 184428
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| chokedsmelt.com/5b/28/bb/5b28bb3338748187b2166508de2d96b3.js | 192.243.61.227 | 200 OK | 16 kB |
URL GET HTTP/1.1chokedsmelt.com/5b/28/bb/5b28bb3338748187b2166508de2d96b3.js IP192.243.61.227:80 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeJavaScript source, ASCII text, with very long lines (44049), with no line terminators Hash48669c8587f5d053478dfbcaa0a8a98c 496b713c5144e75f8c19045641dd75707f7a3f95 4272d72f9b60bb3926f8a53ff55050fade398ecbd22fae1649b67774d9128801
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /5b/28/bb/5b28bb3338748187b2166508de2d96b3.js HTTP/1.1
Host: chokedsmelt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4f6cb0490f9975baa0fbd4596ba2b255
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 167 B |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 20 Apr 2024 05:48:48 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 20 Apr 2024 06:48:48 GMT
Location: https://downstairsnegotiatebarren.com/sfp.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mum0f5cVK9VGjawy8icRh0PRH6DSn9q%2F3tTOeC0L1SX%2BsVGWg%2Fxd2Bp483UlCU5lOMIppytnONoZJbxTYKvIqkrhWjH72KskVGrFJBeAY1iVeeHB1geP3KmVCB7XOChiT74uLIlDW7KYaLbY99vyfA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8772d8f2d8ee56bd-OSL
alt-svc: h2=":443"; ma=60
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 184428
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 216.58.207.227 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35328, version 1.0 Hash7670dba29aa2a1560c5d711ea6f6b369 6a2a620d2972f139c804c5a8363c91eb1a7595f6 adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:26:46 GMT
expires: Wed, 16 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
age: 339722
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 | 216.58.207.227 | 200 OK | 17 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16552, version 1.0 Hash283c40f79deab0300df8b3ffd86dfc7b 2ef09414a573ac59f4b37e81c8b8a881244b345f 35e5eea83f2e5f2bad1213aa4b4aef30a380720e35c1821f19bc894f8e61e406
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 03:10:17 GMT
expires: Fri, 18 Apr 2025 03:10:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 182311
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 184428
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.185.247.192 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.247.192:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashf498a323151618e88566a277e18dc017 aa4d48c095797abf5c6872b8ba279de161f703de 5e85cc8c57d04ce6a78ab701537ecd9378282097e0096ce0cfdeff4755953845
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 05:48:48 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://nguonphimc.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=0785338d-047a-4e85-9a4b-ebaf11d796c5:1:1; expires=Tue, 18 Apr 2034 05:48:48 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| nguonphimc.com/themes/np/images/bottomNavOFF.png | 94.242.50.163 | 200 OK | 1.3 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/images/bottomNavOFF.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced Hash840cd790a57c4cee3fb5b50d448dfd3a 976ecfbdaadc569488019ad246b6dfa31bdab85b d317c5f6a5b4342d84bcc00cb0c99d2ce3c7d6f1044ac8036d722fcbf728baeb
GET /themes/np/images/bottomNavOFF.png HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:00 GMT
Accept-Ranges: bytes
Content-Length: 1250
Cache-Control: max-age=2592000, public
Expires: Mon, 20 May 2024 05:48:48 GMT
Connection: close
Content-Type: image/png
|
|
| nguonphimc.com/themes/np/images/bottomNavON.png | 94.242.50.163 | 200 OK | 1.3 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/images/bottomNavON.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced Hash0703045e13e1ab8508a2273cbe71d5d6 c2d2f79bb3758de5722cddd94eaf4701078b4d71 698cc5f19fb8e30c2a9d8471e81637cb26e8fcd67a55bfffc9ca651a0c45e90f
GET /themes/np/images/bottomNavON.png HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:00 GMT
Accept-Ranges: bytes
Content-Length: 1334
Cache-Control: max-age=2592000, public
Expires: Mon, 20 May 2024 05:48:48 GMT
Connection: close
Content-Type: image/png
|
|
| nguonphimc.com/themes/np/images/button_km.png | 94.242.50.163 | 200 OK | 2.6 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/images/button_km.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 66 x 50, 8-bit/color RGBA, non-interlaced Hash05238f78240b8bb3d2453e866550a011 766a5353d457d5282bb04192072a116073b8666d aed76e5f2deac5394da887c6b862ab04fbc3e601348006da714310d72c5dfc60
GET /themes/np/images/button_km.png HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:00 GMT
Accept-Ranges: bytes
Content-Length: 2646
Cache-Control: max-age=2592000, public
Expires: Mon, 20 May 2024 05:48:48 GMT
Connection: close
Content-Type: image/png
|
|
| nguonphimc.com/site/site/checkaccess/ | 94.242.50.163 | 200 OK | 7 B |
URL POST HTTP/1.1nguonphimc.com/site/site/checkaccess/ IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeASCII text, with no line terminators Hash4e3ca82bee9b6a4b6c6e30ca31234e50 f007b014714adb9c2c7c105e64dfa8448e9ec77a 148ecdac86b94c986a6bb2da57595b2cc4b35afa88e266ec7f30f79530803efb
POST /site/site/checkaccess/ HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 94
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Pragma: no-cache
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 7
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| nguonphimc.com/site/chatbot/refresh/ | 94.242.50.163 | 200 OK | 260 B |
URL POST HTTP/1.1nguonphimc.com/site/chatbot/refresh/ IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Hashba0683de7607ad624fb4cecda80e9bc1 674cb63ed78bcbd018343354b0ae42e9c43d2ee1 83db877ee449fa874aaaf8896bc642c25fc2f6e8c0179b6d4d59a2c0c9cdfce1
POST /site/chatbot/refresh/ HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 16
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 260
Connection: close
Content-Type: text/html; charset=UTF-8
|
|
| m3.nguonphim.net/media/images/1/favi/favicon-1498701606.png | 94.242.50.163 | 200 OK | 18 kB |
URL GET HTTP/1.1m3.nguonphim.net/media/images/1/favi/favicon-1498701606.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 46 x 48, 8-bit/color RGBA, non-interlaced Hashe6f4a93efe2d93e885abcbb4cc09cd4a e4f94b9e95b40e30b215228316bb7f8c48d08ed2 93b7bbea433aa41f6efb860d3d9777d363f9e64fc1ad4186cd9ef525bbee9c94
GET /media/images/1/favi/favicon-1498701606.png HTTP/1.1
Host: m3.nguonphim.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Wed, 05 Jul 2017 04:14:59 GMT
ETag: "45d1-5538a3e52eb40"
Accept-Ranges: bytes
Content-Length: 17873
Cache-Control: max-age=5184000, public
Expires: Wed, 19 Jun 2024 05:48:48 GMT
Access-Control-Allow-Origin: *
Connection: close
Content-Type: image/png
|
|
| unseenreport.com/pxf.gif?uuid=0785338d-047a-4e85-9a4b-ebaf11d796c5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2069&b_frame=0&pk=5b28bb3338748187b2166508de2d96b3&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5 | 192.243.61.227 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=0785338d-047a-4e85-9a4b-ebaf11d796c5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2069&b_frame=0&pk=5b28bb3338748187b2166508de2d96b3&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5 IP192.243.61.227:80 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=0785338d-047a-4e85-9a4b-ebaf11d796c5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2069&b_frame=0&pk=5b28bb3338748187b2166508de2d96b3&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=5 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3ed33a2e6173b877150d7159cd21caf3
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| abnormalgently.com/sbar.json?key=5b28bb3338748187b2166508de2d96b3&uuid=0785338d-047a-4e85-9a4b-ebaf11d796c5%3A1%3A1 | 192.243.61.227 | 200 OK | 8.3 kB |
URL GET HTTP/1.1abnormalgently.com/sbar.json?key=5b28bb3338748187b2166508de2d96b3&uuid=0785338d-047a-4e85-9a4b-ebaf11d796c5%3A1%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectabnormalgently.com Fingerprint71:A9:EF:90:4D:2C:41:7A:5B:F5:C4:D9:BA:00:19:1E:8F:87:F2:54 ValidityTue, 16 Apr 2024 13:59:37 GMT - Mon, 15 Jul 2024 13:59:36 GMT
Hash3ae1e52190978083ef135ec90bcbffdd 6d7ef2a60a5d6b5ab3e32841741a7aee38a05afb 275a3193fb9d3e2f861926d3c3b6485dbb75150d0afc703edea38c4d0cf32d5a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=5b28bb3338748187b2166508de2d96b3&uuid=0785338d-047a-4e85-9a4b-ebaf11d796c5%3A1%3A1 HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://nguonphimc.com
Access-Control-Allow-Origin: http://nguonphimc.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17093374; expires=Sun, 21 Apr 2024 05:48:49 GMT; secure; SameSite=None
uid_id2=0785338d-047a-4e85-9a4b-ebaf11d796c5:1:1; expires=Sat, 27 Apr 2024 05:48:49 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 21 Apr 2024 05:48:49 GMT; secure; SameSite=None
uncs=1; expires=Sun, 21 Apr 2024 05:48:49 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 21 Apr 2024 05:48:49 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 21 Apr 2024 05:48:49 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2361308d89fd5c29bfa98d935d1fd60e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| abnormalgently.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4scxRuu3uztBz9QcgvCoB4iuLP9Z6a7xxxC1riyuGZDEok3qeqqmZRb3dVUdU9P9rQYkBwHP0HvM7tZNEGSq2DQ2YCHBSHjaQ%2FuxW%2BgkKNIj4OjL3S%2F71vPW%2FC8z1NfHpTnxEdJz65%2FrPekUnS923Zblz%2F1vCutbZmVo9YoDj8LO1daZvheL2y777Q%2BFMmuXvddz3U912ttSiP6erTegJD5k57X7rntjt%2F2uh2MzH97Wzqw1AEfnpPXIfls9YVzETKZIkufXhd2t9D5ux%2BkpaKFNhjy40%2By3UxXGdJl2TcO%2BtnxYhravtx8Dp0dzelCD%2F8ZZHJGnJ%2Beg2XHC5Jgw8M5T6YgMjD%2BP1TDKYSaQtIpEv0Akr8kQMJxYwdZ%2BuiGNhW9%2FzdKG3RGVl%2F9AVnNyOqvF5Gl324oOWrd1qospM4sRv0acjSFHEyRlyco9lYgqxMkxReQ%2FGey%2FmobWXq4Y5WG5Gdvu1HcDYKYr7mdiK51RNxd69EOWxOM9j2PR70w6c4FknIK2Z9CiTGodVA2n3RQ9h2UuYOUn7USz%2FMilyfUjXtJEvBIsJC7Ho36HvXcMEaZNDuMUeRjJGqMxOwjN%2FvYlWOY8gfYezUsd2ALgiGvUQmCyhJUlKCSBFVBUA3rI66sb%2BtHXNmSeYvsL3JQT3QxOKBHuhiIjICaMQyvD%2FJz8lojoLM6%2BxO74qzVZX7MWBAEcdSJvThivheGXTfmwue9kAWwsoa0K%2FN19xozf9xA3uQ3r4LRE1h1gkQ6oOUboFUNeq%2FGXvY4G5Q6K4btRKfgukZerKK47xyoc3Jp7uDWzlOI5PTqb8E8kJgauanxuXxBMFAPJ7d0RQ5v6cqSZzt5IVO5Rxt3bxe0EBe%2B%2BUjcr7ThW9ft%2BOtrSQM05ZM7whbbNOMyG1jyeENyLsymNokg32%2FZu4LdLO29jdJkZb598%2F3NrTQ3wlqpsylos9PvBomckf9fujN%2FuJe%2F24E0U5iyRlqekkVA6imSfB82X%2FK3msCo5QzLHVRlPTE%2BWx4qSaDEsqeshv1Xz5b1xNDmNpX1gX2IgVkBLR4gS2sMTY2hqkHVGLa8MClyc3r1lwUNplYmTJmVQ6aM%2Bmouc%2FN7BivPWlEQuDTsdb0ooiJiHT%2Fuhx6n1O%2BEfhjSAIWd9d%2B6e%2B0vAAAA%2F%2F8BAAD%2F%2Fyo5XGySBAAA | 192.243.61.227 | 200 OK | 7 B |
URL GET HTTP/1.1abnormalgently.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4scxRuu3uztBz9QcgvCoB4iuLP9Z6a7xxxC1riyuGZDEok3qeqqmZRb3dVUdU9P9rQYkBwHP0HvM7tZNEGSq2DQ2YCHBSHjaQ%2FuxW%2BgkKNIj4OjL3S%2F71vPW%2FC8z1NfHpTnxEdJz65%2FrPekUnS923Zblz%2F1vCutbZmVo9YoDj8LO1daZvheL2y777Q%2BFMmuXvddz3U912ttSiP6erTegJD5k57X7rntjt%2F2uh2MzH97Wzqw1AEfnpPXIfls9YVzETKZIkufXhd2t9D5ux%2BkpaKFNhjy40%2By3UxXGdJl2TcO%2BtnxYhravtx8Dp0dzelCD%2F8ZZHJGnJ%2Beg2XHC5Jgw8M5T6YgMjD%2BP1TDKYSaQtIpEv0Akr8kQMJxYwdZ%2BuiGNhW9%2FzdKG3RGVl%2F9AVnNyOqvF5Gl324oOWrd1qospM4sRv0acjSFHEyRlyco9lYgqxMkxReQ%2FGey%2FmobWXq4Y5WG5Gdvu1HcDYKYr7mdiK51RNxd69EOWxOM9j2PR70w6c4FknIK2Z9CiTGodVA2n3RQ9h2UuYOUn7USz%2FMilyfUjXtJEvBIsJC7Ho36HvXcMEaZNDuMUeRjJGqMxOwjN%2FvYlWOY8gfYezUsd2ALgiGvUQmCyhJUlKCSBFVBUA3rI66sb%2BtHXNmSeYvsL3JQT3QxOKBHuhiIjICaMQyvD%2FJz8lojoLM6%2BxO74qzVZX7MWBAEcdSJvThivheGXTfmwue9kAWwsoa0K%2FN19xozf9xA3uQ3r4LRE1h1gkQ6oOUboFUNeq%2FGXvY4G5Q6K4btRKfgukZerKK47xyoc3Jp7uDWzlOI5PTqb8E8kJgauanxuXxBMFAPJ7d0RQ5v6cqSZzt5IVO5Rxt3bxe0EBe%2B%2BUjcr7ThW9ft%2BOtrSQM05ZM7whbbNOMyG1jyeENyLsymNokg32%2FZu4LdLO29jdJkZb598%2F3NrTQ3wlqpsylos9PvBomckf9fujN%2FuJe%2F24E0U5iyRlqekkVA6imSfB82X%2FK3msCo5QzLHVRlPTE%2BWx4qSaDEsqeshv1Xz5b1xNDmNpX1gX2IgVkBLR4gS2sMTY2hqkHVGLa8MClyc3r1lwUNplYmTJmVQ6aM%2Bmouc%2FN7BivPWlEQuDTsdb0ooiJiHT%2Fuhx6n1O%2BEfhjSAIWd9d%2B6e%2B0vAAAA%2F%2F8BAAD%2F%2Fyo5XGySBAAA IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectabnormalgently.com Fingerprint71:A9:EF:90:4D:2C:41:7A:5B:F5:C4:D9:BA:00:19:1E:8F:87:F2:54 ValidityTue, 16 Apr 2024 13:59:37 GMT - Mon, 15 Jul 2024 13:59:36 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4scxRuu3uztBz9QcgvCoB4iuLP9Z6a7xxxC1riyuGZDEok3qeqqmZRb3dVUdU9P9rQYkBwHP0HvM7tZNEGSq2DQ2YCHBSHjaQ%2FuxW%2BgkKNIj4OjL3S%2F71vPW%2FC8z1NfHpTnxEdJz65%2FrPekUnS923Zblz%2F1vCutbZmVo9YoDj8LO1daZvheL2y777Q%2BFMmuXvddz3U912ttSiP6erTegJD5k57X7rntjt%2F2uh2MzH97Wzqw1AEfnpPXIfls9YVzETKZIkufXhd2t9D5ux%2BkpaKFNhjy40%2By3UxXGdJl2TcO%2BtnxYhravtx8Dp0dzelCD%2F8ZZHJGnJ%2Beg2XHC5Jgw8M5T6YgMjD%2BP1TDKYSaQtIpEv0Akr8kQMJxYwdZ%2BuiGNhW9%2FzdKG3RGVl%2F9AVnNyOqvF5Gl324oOWrd1qospM4sRv0acjSFHEyRlyco9lYgqxMkxReQ%2FGey%2FmobWXq4Y5WG5Gdvu1HcDYKYr7mdiK51RNxd69EOWxOM9j2PR70w6c4FknIK2Z9CiTGodVA2n3RQ9h2UuYOUn7USz%2FMilyfUjXtJEvBIsJC7Ho36HvXcMEaZNDuMUeRjJGqMxOwjN%2FvYlWOY8gfYezUsd2ALgiGvUQmCyhJUlKCSBFVBUA3rI66sb%2BtHXNmSeYvsL3JQT3QxOKBHuhiIjICaMQyvD%2FJz8lojoLM6%2BxO74qzVZX7MWBAEcdSJvThivheGXTfmwue9kAWwsoa0K%2FN19xozf9xA3uQ3r4LRE1h1gkQ6oOUboFUNeq%2FGXvY4G5Q6K4btRKfgukZerKK47xyoc3Jp7uDWzlOI5PTqb8E8kJgauanxuXxBMFAPJ7d0RQ5v6cqSZzt5IVO5Rxt3bxe0EBe%2B%2BUjcr7ThW9ft%2BOtrSQM05ZM7whbbNOMyG1jyeENyLsymNokg32%2FZu4LdLO29jdJkZb598%2F3NrTQ3wlqpsylos9PvBomckf9fujN%2FuJe%2F24E0U5iyRlqekkVA6imSfB82X%2FK3msCo5QzLHVRlPTE%2BWx4qSaDEsqeshv1Xz5b1xNDmNpX1gX2IgVkBLR4gS2sMTY2hqkHVGLa8MClyc3r1lwUNplYmTJmVQ6aM%2Bmouc%2FN7BivPWlEQuDTsdb0ooiJiHT%2Fuhx6n1O%2BEfhjSAIWd9d%2B6e%2B0vAAAA%2F%2F8BAAD%2F%2Fyo5XGySBAAA HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Cookie: u_pl=17093374; uid_id2=0785338d-047a-4e85-9a4b-ebaf11d796c5:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9ee7c1aa4be01750361d2f52b49264d8
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png | 188.114.97.1 | 200 OK | 6.0 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png IP188.114.97.1:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5672133
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fly9Q1zeL32ed0cttk126C0hUY1Nw8A1%2FnpduMtX8IaUZp16%2FNCMftfbKjNs%2FW5eO%2FppQIbr8pFQwiBPgPAODIIwNeVFv2VHVYV4ZT7omiffZIzhs7uBD2J%2Fnt9Io%2FnZCLzQeVIi6tz9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8772d8fb2d19b4fa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.74 | 200 OK | 717 B |
URL GET HTTP/1.1fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.74:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Hash9cc7d472437c87f6f7ebeb35abec09f1 948bb2b7bf4bbc829015c125e1b6f7859b2948b0 9a39510af72db44fb14d333c52c41da0e90827afcfe78c8f12b367f0a94783b7
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 20 Apr 2024 05:48:49 GMT
Date: Sat, 20 Apr 2024 05:48:49 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
|
| abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=120 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=120 IP192.243.61.227:80 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=120 HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css | 188.114.97.1 | 200 OK | 19 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css IP188.114.97.1:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashfc638645a938f69e69360c75335ffd1a 143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4 7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90
GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 81490
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X5%2Bz3uoEIJAtJRGjaH5ORW7Iipy9ubO9OAcf0qddeNgLCBeL4WnfZdLcRgTx24WiNrLbj14TiwZatANhy7Ajo2ebDkfgOXjBHR32hMYWEOGRcrd1%2FeXrWEpcRK5rFbniYA7iZAkt5jnS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8772d8fac980b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css IP188.114.97.1:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash630f303dfe147dec2c4a226287393b69 3e9f8270b84e09595181bd55de6785a89f53ba10 967d085a33a12064d83cb38f582c3e418e021a2d523dd9597bb75dc00589fec7
GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 81490
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jaKrSDtnyUjL6SwReiUma%2F8ENss3bC3wayQ7CWvnmISgU6mjOBT4537OKmz0XHHMcxT509qW0lZ%2ForVeBdVYZXaj4gvkMXDi65BslVYUPfAK0CEsqjWsv2EUUyqAAdPJ9u%2BjesrJWBPO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8772d8fac97fb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html | 45.133.44.4 | 200 OK | 661 B |
URL GET HTTP/2cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html IP45.133.44.4:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text Hash027fddd0d322239ada2f2b8b93934fda 6f99560bca5c6d8d747c802f26058344eb179cec a5b2073d8f57ef0469b777f73d6c3f4a85cc17b4c2ed2a53aa3f1acb2273dbd5
GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 20 Apr 2024 06:48:49 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js | 188.114.97.1 | 200 OK | 32 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP188.114.97.1:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4402785
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A7J5UHrIjU3UC%2FylydyXxJ%2FPa3P%2Fks96F%2Fdzkv%2FHOMyeF29Otc%2BLTEHn6rF1wruEicl3sft19W%2FdhFldcR55RHu9naEVAfiT%2BnleNkYk72Oz4D3grf9Oe57SMdsEcniPPRRfhvoGHPxl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8772d8fb2d1cb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/1.1fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 18 Apr 2024 17:40:11 GMT
Expires: Fri, 18 Apr 2025 17:40:11 GMT
Cache-Control: public, max-age=31536000
Age: 130119
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/1.1fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 18 Apr 2024 02:43:51 GMT
Expires: Fri, 18 Apr 2025 02:43:51 GMT
Cache-Control: public, max-age=31536000
Age: 183899
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
|
|
| abnormalgently.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST2sk1Rd9lcnuBz9QZjcIjboYwXSq%2Bm%2B1swgTYyQYJ8PMyLiT9686z7yqV7xX1dXJKjggs2z8BJXTyQSdQWa2goN2BlwEhGlXWZiN30BhliLVNrZeqLr3vnMfnHvO%2B%2FIovyQN5PRi42NzoLSmq%2B26X7v%2BaRDcqG2rJB%2FWhmHns07rRs0O3ut16v47tQ8l3zOrDT%2Fw%2FcAPapvKysgMVysQKn3SC%2Bo9v95q1IN2C0P7397lHhz1IAaX5HUoMV1%2B4V2F4hMk8dMN6fYyk777QZxrmhmLgTj9JNlLTJEgXpSR9RAlp%2FNpGPdy8zlMcjKjCzP4Z5CpKfF%2Beg6WnM5Jgg2OZzyZhkzAxP9QDCaQegJFJ%2BDmAZR4SQAucGsHSfzolrEF3f8bpRU6Jcuv%2FoAqpmT516tI4m%2FXtRrW7hqdZ8okDsOohBpOoPoTpPkZsoMlqOIMPPsCSvxMVl9tI4mPd5w2UOLibb8btpvNUKz4rS5dacmwvdKjLbYiGY2CQHR7Hd6eCaTUBCqaQMsRqPOQV5%2FykEce8tRDLC5qPAiCri849cMe503Rlawj%2FIB2o4AGfidEzqsdRsjSEbgegdtDpPYQe2oEm%2F8At1vCCQ8uIxiIEoUkKBxBQQkKRVBkBMWgPBHaNVz5SGiXs2CeG%2FPcLMcm6x%2FRE5P1ZUJA7QhWlEfpJXmtEtBbnv6JPXlRa7NGyFiz2Qy7rTAIu6wRdDptPxSyIXod1oRTJZRbmq17UJn54zrSKr%2B5BkbP4PQZuPJA8zdAixJ0t8RB8jjp5ybJBnVuYghTIs2Wke17R%2FqSXJs5uLXzFJKfr%2F3WnAW4LZHaEp%2BrFwR9%2FXB8xxTk%2BI4pHHm2k2YqVge0cvduRjN55ZuP5H5hrNjacKOvb%2FIKqMon96TLtmkiVNJ35PG6EkLaTWO5JN9vufuS3c7d7npukzzdvv3%2B5lacWumcMskEtNrpdwuupuT%2F1%2B7NHu7173ag7AQ2LxHn52QeUGYCnh7CpQv%2BzhBYvZhhqYciL8e2wRaHWhFouegpK%2BH%2B1bNFPba0uk1VeeQeom%2BXQLMHSOISA1tioEtQPYLLr4yz1J6v%2FTKnwfTSmGm7dMy01V%2FNZK5%2Bz%2BDURa3piy6Tkewy2Wq3IskFa7eZzyPOmiIMOTI3jd66f%2FMvAAAA%2F%2F8BAAD%2F%2F6rtiYSSBAAA | 192.243.61.227 | 200 OK | 7 B |
URL GET HTTP/1.1abnormalgently.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST2sk1Rd9lcnuBz9QZjcIjboYwXSq%2Bm%2B1swgTYyQYJ8PMyLiT9686z7yqV7xX1dXJKjggs2z8BJXTyQSdQWa2goN2BlwEhGlXWZiN30BhliLVNrZeqLr3vnMfnHvO%2B%2FIovyQN5PRi42NzoLSmq%2B26X7v%2BaRDcqG2rJB%2FWhmHns07rRs0O3ut16v47tQ8l3zOrDT%2Fw%2FcAPapvKysgMVysQKn3SC%2Bo9v95q1IN2C0P7397lHhz1IAaX5HUoMV1%2B4V2F4hMk8dMN6fYyk777QZxrmhmLgTj9JNlLTJEgXpSR9RAlp%2FNpGPdy8zlMcjKjCzP4Z5CpKfF%2Beg6WnM5Jgg2OZzyZhkzAxP9QDCaQegJFJ%2BDmAZR4SQAucGsHSfzolrEF3f8bpRU6Jcuv%2FoAqpmT516tI4m%2FXtRrW7hqdZ8okDsOohBpOoPoTpPkZsoMlqOIMPPsCSvxMVl9tI4mPd5w2UOLibb8btpvNUKz4rS5dacmwvdKjLbYiGY2CQHR7Hd6eCaTUBCqaQMsRqPOQV5%2FykEce8tRDLC5qPAiCri849cMe503Rlawj%2FIB2o4AGfidEzqsdRsjSEbgegdtDpPYQe2oEm%2F8At1vCCQ8uIxiIEoUkKBxBQQkKRVBkBMWgPBHaNVz5SGiXs2CeG%2FPcLMcm6x%2FRE5P1ZUJA7QhWlEfpJXmtEtBbnv6JPXlRa7NGyFiz2Qy7rTAIu6wRdDptPxSyIXod1oRTJZRbmq17UJn54zrSKr%2B5BkbP4PQZuPJA8zdAixJ0t8RB8jjp5ybJBnVuYghTIs2Wke17R%2FqSXJs5uLXzFJKfr%2F3WnAW4LZHaEp%2BrFwR9%2FXB8xxTk%2BI4pHHm2k2YqVge0cvduRjN55ZuP5H5hrNjacKOvb%2FIKqMon96TLtmkiVNJ35PG6EkLaTWO5JN9vufuS3c7d7npukzzdvv3%2B5lacWumcMskEtNrpdwuupuT%2F1%2B7NHu7173ag7AQ2LxHn52QeUGYCnh7CpQv%2BzhBYvZhhqYciL8e2wRaHWhFouegpK%2BH%2B1bNFPba0uk1VeeQeom%2BXQLMHSOISA1tioEtQPYLLr4yz1J6v%2FTKnwfTSmGm7dMy01V%2FNZK5%2Bz%2BDURa3piy6Tkewy2Wq3IskFa7eZzyPOmiIMOTI3jd66f%2FMvAAAA%2F%2F8BAAD%2F%2F6rtiYSSBAAA IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectabnormalgently.com Fingerprint71:A9:EF:90:4D:2C:41:7A:5B:F5:C4:D9:BA:00:19:1E:8F:87:F2:54 ValidityTue, 16 Apr 2024 13:59:37 GMT - Mon, 15 Jul 2024 13:59:36 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST2sk1Rd9lcnuBz9QZjcIjboYwXSq%2Bm%2B1swgTYyQYJ8PMyLiT9686z7yqV7xX1dXJKjggs2z8BJXTyQSdQWa2goN2BlwEhGlXWZiN30BhliLVNrZeqLr3vnMfnHvO%2B%2FIovyQN5PRi42NzoLSmq%2B26X7v%2BaRDcqG2rJB%2FWhmHns07rRs0O3ut16v47tQ8l3zOrDT%2Fw%2FcAPapvKysgMVysQKn3SC%2Bo9v95q1IN2C0P7397lHhz1IAaX5HUoMV1%2B4V2F4hMk8dMN6fYyk777QZxrmhmLgTj9JNlLTJEgXpSR9RAlp%2FNpGPdy8zlMcjKjCzP4Z5CpKfF%2Beg6WnM5Jgg2OZzyZhkzAxP9QDCaQegJFJ%2BDmAZR4SQAucGsHSfzolrEF3f8bpRU6Jcuv%2FoAqpmT516tI4m%2FXtRrW7hqdZ8okDsOohBpOoPoTpPkZsoMlqOIMPPsCSvxMVl9tI4mPd5w2UOLibb8btpvNUKz4rS5dacmwvdKjLbYiGY2CQHR7Hd6eCaTUBCqaQMsRqPOQV5%2FykEce8tRDLC5qPAiCri849cMe503Rlawj%2FIB2o4AGfidEzqsdRsjSEbgegdtDpPYQe2oEm%2F8At1vCCQ8uIxiIEoUkKBxBQQkKRVBkBMWgPBHaNVz5SGiXs2CeG%2FPcLMcm6x%2FRE5P1ZUJA7QhWlEfpJXmtEtBbnv6JPXlRa7NGyFiz2Qy7rTAIu6wRdDptPxSyIXod1oRTJZRbmq17UJn54zrSKr%2B5BkbP4PQZuPJA8zdAixJ0t8RB8jjp5ybJBnVuYghTIs2Wke17R%2FqSXJs5uLXzFJKfr%2F3WnAW4LZHaEp%2BrFwR9%2FXB8xxTk%2BI4pHHm2k2YqVge0cvduRjN55ZuP5H5hrNjacKOvb%2FIKqMon96TLtmkiVNJ35PG6EkLaTWO5JN9vufuS3c7d7npukzzdvv3%2B5lacWumcMskEtNrpdwuupuT%2F1%2B7NHu7173ag7AQ2LxHn52QeUGYCnh7CpQv%2BzhBYvZhhqYciL8e2wRaHWhFouegpK%2BH%2B1bNFPba0uk1VeeQeom%2BXQLMHSOISA1tioEtQPYLLr4yz1J6v%2FTKnwfTSmGm7dMy01V%2FNZK5%2Bz%2BDURa3piy6Tkewy2Wq3IskFa7eZzyPOmiIMOTI3jd66f%2FMvAAAA%2F%2F8BAAD%2F%2F6rtiYSSBAAA HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Cookie: u_pl=17093374; uid_id2=0785338d-047a-4e85-9a4b-ebaf11d796c5:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 64aa05f6078e41a1fa98df255e7a33bf
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| abnormalgently.com/pixel/sbs?c=1 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1abnormalgently.com/pixel/sbs?c=1 IP172.240.127.234:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectabnormalgently.com Fingerprint71:A9:EF:90:4D:2C:41:7A:5B:F5:C4:D9:BA:00:19:1E:8F:87:F2:54 ValidityTue, 16 Apr 2024 13:59:37 GMT - Mon, 15 Jul 2024 13:59:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Cookie: u_pl=17093374; uid_id2=0785338d-047a-4e85-9a4b-ebaf11d796c5:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:50 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.googleapis.com/icon?family=Material+Icons | 142.250.74.74 | 200 OK | 8.5 kB |
URL GET HTTP/2fonts.googleapis.com/icon?family=Material+Icons IP142.250.74.74:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash5df8a1882664fca5d5fbbc38b7cc1b4c be934cc01c95dbd52b03e7e83a98eb7036584cc3 7b47bc08584820b4f3e5e6fe4507152673ea44487beb32c36aa77ac2cd0cf3c6
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 05:48:47 GMT
date: Sat, 20 Apr 2024 05:48:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png | 45.133.44.9 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash962ac416cce3fad636d4904386c8d3d4 811166fceb971353dc6a9ea3a153367f20b47592 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Mon, 22 Apr 2024 05:48:49 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| nguonphimc.com/themes/np/images/icon-search-menu.png | 94.242.50.163 | 200 OK | 1.2 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/images/icon-search-menu.png IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typePNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced Hashe573652e7d75f6471431e9fd48ca706c ef9de78ae35eb6d6f3e04744612c7bed87c3a5ee 49cd4ed8ef5f3b960bdb9a9024f1b4a83b96e39425a339fd1afc2486709c432b
GET /themes/np/images/icon-search-menu.png HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:15:00 GMT
Accept-Ranges: bytes
Content-Length: 1229
Cache-Control: max-age=2592000, public
Expires: Mon, 20 May 2024 05:48:48 GMT
Connection: close
Content-Type: image/png
|
|
| abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=73 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=73 IP172.240.127.234:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=73 HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js | 188.114.97.1 | 200 OK | 382 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js IP188.114.97.1:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (411), with no line terminators Hash9ffae600059bf4e6adb35ebb274ae385 6130e466c04551baa2a5d650e6bd5a87daba73a7 a7d15e051fb3d3c31494683306bb7752478354894825b110d26d333cbeaaeb39
GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 05:48:49 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 81490
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gOPwKyEWLR067cyGF%2B4AmpImVAdZIIU%2FOGfOsigZ2sZUT3JIaZDGO5D5%2Bqt%2BkVlgZaC%2Fibqi9XUBwAPvOJtANkunCP7mIvICgbe9jdHngWzzX6tZkWYCwgullKYqifx3rxtXnibw8uly"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8772d8fb6d46b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=70 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=70 IP172.240.127.234:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=70 HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 | 216.58.207.227 | 200 OK | 5.5 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 IP216.58.207.227:443
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 5548, version 1.0 Hashcdaab83619fcacd4027a77c99dd51e69 9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4 4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nguonphimc.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:33:52 GMT
expires: Fri, 18 Apr 2025 17:33:52 GMT
cache-control: public, max-age=31536000
age: 130496
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nguonphimc.com/themes/np/fonts/fontawesome-webfont.woff2?v=4.7.0 | 94.242.50.163 | 200 OK | 77 kB |
URL GET HTTP/1.1nguonphimc.com/themes/np/fonts/fontawesome-webfont.woff2?v=4.7.0 IP94.242.50.163:80
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /themes/np/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: nguonphimc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/themes/np/css/color.css?v=np2.4.8.2
Cookie: PHPSESSID=hsfnd8v7fkav0flf90q84056a7; us_session_id=P844; _ga_DDD7EKFG6W=GS1.1.1713592127.1.0.1713592128.0.0.0; _ga=GA1.1.1338631243.1713592128
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 05:48:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 19 Jan 2018 09:14:59 GMT
Accept-Ranges: bytes
Content-Length: 77160
Cache-Control: max-age=2592000
Expires: Mon, 20 May 2024 05:48:48 GMT
X-UA-Compatible: IE=edge,chrome=1
Connection: close
|
|
| abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=10 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1abnormalgently.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=10 IP192.243.61.227:80 ASN#39572 DataWeb Global Group B.V.
Requested byhttp://nguonphimc.com/bi-an-can-phong-so-7-room-no-7-f20597.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=10 HTTP/1.1
Host: abnormalgently.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://nguonphimc.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 20 Apr 2024 05:48:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|