Report - ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

Report Overview

Submitted URL
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
IP
202.191.56.152
ASN
#38727 Ha Noi University of Technology
Submitted
2022-09-24 10:46:18
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	964 B	172.64.155.188
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	108.156.28.39
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	3.3 kB	104.17.25.14
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.160.51.228
cfspart.impots.gouv.fr	643420	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	3.3 kB	145.242.11.27
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.80
ts.hust.edu.vn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	124 kB	202.191.56.152

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-23	medium	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html	DGI (French Tax Authority)

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-24	medium	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html	Phishing
2022-09-24	medium	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js	Phishing
2022-09-24	medium	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg	Phishing
2022-09-24	medium	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js	10 kB	2023-03-07	2024-04-17
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-17 19:40:02 Times Seen985 Hash 1cdeafe84120b621dcd953592a94c998 cedacae8a3b765d2d905a5c51769027733ef6823 7ef14a1e070a6a2ec9ff44ccf5e923cb2a460c5861a3db8a9ae1e21557d27020 Loading...

	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js	86 kB	2023-03-07	2024-04-19
Pretty URL ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js IP 202.191.56.152 ASN #38727 Ha Noi University of Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 22:54:58 Times Seen7386 Hash 05e51b1db558320f1939f9789ccf5c8f c72c1735b4d903d90dd51225ebefb8c74ebbc51f 702b9e051e82b32038ffdb33a4f7eb5f7b38f4cf6f514e4182d8898f4eb0b7fb Loading...

	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html	6.6 kB	2023-03-07	2024-04-07
Pretty URL ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html IP 202.191.56.152 ASN #38727 Ha Noi University of Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-04-07 19:20:32 Times Seen44 Hash e319fc21368a5a1a0beda97e4fb3e792 ee4cb86577480a6e1b494e1f47c36d6b0f7efb03 74b485a87bf92b8522333e385904dfd0070b9ae261505d485ceb93bc4bf8afbb Loading...

	ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html	325 B	2023-03-07	2024-04-07
Pretty URL ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html IP 202.191.56.152 ASN #38727 Ha Noi University of Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-04-07 19:20:32 Times Seen36 Hash 2cd9952181170c982f780f150ed56dd5 7c38344ce04b45e28df347def1501994051bbb51 fbbeb821e9e15e5923a220718c59f222880a35356564cfa9a634431f00182e89 Loading...

HTTP Transactions (45)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

18.165.201.80

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.80:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 10:05:37 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 675c3f96928d591debc37b54f2b16dc2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: nfyt6yjKlUfVOEY16A3UzJdX_zBSL9SsEfnTqfAOkHh10s81NwKHdg==
Age: 2430

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20905
Expires: Sat, 24 Sep 2022 16:34:32 GMT
Date: Sat, 24 Sep 2022 10:46:07 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

108.156.28.39

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
108.156.28.39:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 ed393405ff603a61a1e63909cf1c1a44.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: VNDRKzaEoFXjIQGlj9vqSydicTIAszwW98oqxMiMTT3Ese1-sJy2Fw==
age: 23584
X-Firefox-Spdy: h2

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

202.191.56.152

200 OK

3.8 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (339), with CRLF line terminators
Size
3.8 kB (3764 bytes)
Hash
3c9d5d97846a9bc36f82fa064c998102
2ad666d355141c374774637921408670507df585
68570c66fec1bff3d3af00c2a5060ee785687bb3577caac59ea37d8b8f39f6a5

Detections

Analyzer	Verdict	Alert
openphish	DGI (French Tax Authority)
fortinet	Phishing

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:33 GMT
Content-Type: text/html
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-5036"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 10:46:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js

104.17.25.14

200 OK

2.3 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
2.3 kB (2306 bytes)
Hash
25ba6cf71f56fb6f70738a4a73257a10
95b2f9d962ad149cb94f336a69c2627e94f1eb43
907bed0c556e0dd60a67eca19c4d684445a4e3d45af5e78a1320fa35777894da

HTTP Headers

GET /ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ts.hust.edu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 10:46:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 2306
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-284d"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 129254
expires: Thu, 14 Sep 2023 10:46:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=abxTL8w0zoIiWORid2jZ0Buj78g8%2FDBi1p9ojR3a49FowgIHPnlcu%2FGrXUcrUCkB4wUXek3z52QbOizepCLjmVX6mYgMoYxvFm3bftut0kGzv1Pld0X7Vk06iQnV2YAsJ4Tqug%2BE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74faef3c5d221c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css

202.191.56.152

200 OK

3.9 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
ASCII text, with CRLF line terminators
Size
3.9 kB (3877 bytes)
Hash
1b1409e902b0ba224c59f4c590f8e253
10f003e6a5c8de111781212a2eec65217f73def9
738aed6cd4108fd2d26045552a0110d9a25446b8c55e8b2a900cc137c4a755f9

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-44fe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.80

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.80:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 10:20:46 GMT
Expires: Sat, 24 Sep 2022 10:48:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 25bae94046433e736c44a6c37f27c7c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: q5LDh6Sjel6cRF593vQ2V6hDieMmqgXU5a2AVR6Xvf7Oj6SUyhwNfQ==
Age: 1522

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/imp.css

202.191.56.152

200 OK

5.2 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/imp.css
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
ASCII text, with CRLF line terminators
Size
5.2 kB (5159 bytes)
Hash
9322a061b1051faa0080c36095ee2472
28d10482e43a63c2b7b6b0851c300d764c93730a
b0c7406fffd368efea139cae5d743f7959b660d0feb772c667eb6f91940cbaf9

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/imp.css HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-919a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/bootstrap-3.3.6.min.css

202.191.56.152

200 OK

21 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/bootstrap-3.3.6.min.css
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
ASCII text, with very long lines (391)
Size
21 kB (21399 bytes)
Hash
b16c347c97c573785f413e7a556ba5c4
669ef88dc6b2c3ab02d9acae233118ef8c940a86
e3a7d66e8012d7d427e1f479c5dccea4fd7abc833c690eddabb562bb13708724

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/bootstrap-3.3.6.min.css HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-2454c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5876
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 10:46:08 GMT
Last-Modified: Sat, 24 Sep 2022 09:08:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js

202.191.56.152

200 OK

30 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
ASCII text, with very long lines (32014)
Size
30 kB (30070 bytes)
Hash
ae9d8d4c0dec623c2576c2fb03a51cea
d48b4b306fd21b80467d5b0913ff06bc5b949bb5
261d0b1ea5b85979c59923aa544fe4bea3743882b2e02a83020befc328c2d696

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: application/javascript
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-1514f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

push.services.mozilla.com/

35.160.51.228

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.51.228:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JKvTKVI5bypu7qE4TfGL/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ETpcBAugElJ1wMPPlVAELXJylpY=

ts.hust.edu.vn/templates/js/auth.js

202.191.56.152

302 Found

2.6 kB

URL HTTP/1.1
ts.hust.edu.vn/templates/js/auth.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
data
Size
2.6 kB (2580 bytes)
Hash
f5a20640f9e3d13928832906c210ef6b
249f8f2f143328773d58c5f61b7cefdc5197b5bb
2f79120fcce22ce65e31a194fba6d91f98eb24fab335e1a4ea2efd1652165f17

HTTP Headers

GET /templates/js/auth.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/3.jpg

202.191.56.152

200 OK

7.0 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/3.jpg
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x45, components 3\012- data
Size
7.0 kB (7015 bytes)
Hash
ba40b5bc6558ae28bab303713d66aba3
16a2568e929284211d499d61284165784fe642b4
18663e074265ad94586ebd4160167e55887e265f9e37ce69bb8ea19abab0042d

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/3.jpg HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/jpeg
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-1bc6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/2.gif

202.191.56.152

200 OK

2.9 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/2.gif
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
GIF image data, version 89a, 138 x 25\012- data
Size
2.9 kB (2894 bytes)
Hash
b9363117057844b4d4df68840ac836c5
edacc659123f8f10cc8e1142b32c8eb479a89aca
90c6cafd16686949db04068e896ed28ad5a7d04219184cdeca2c1f0c9954ddf3

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/2.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-b32"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/4.gif

202.191.56.152

200 OK

3.2 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/4.gif
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
GIF image data, version 89a, 143 x 45\012- data
Size
3.2 kB (3220 bytes)
Hash
b4274999a7ae51e76dc96bd4de359c99
dc4448578af98d4a6d819a24483d77af27b96b30
8b57b82f3b6631bb7f3b5f7c3d595910352ed657ff6deaab020438b6ba5d0f9f

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/4.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-d23"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/5.gif

202.191.56.152

200 OK

1.9 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/5.gif
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
GIF image data, version 89a, 118 x 40\012- data
Size
1.9 kB (1866 bytes)
Hash
a80f762f2768fa3f5a8e2b432f77d97b
5e39341f051a2c3fc238bf1eba51fe0c76e28ea5
8c6157aeb6b7a3ac5abae2ba8c584a2c4de04f602f79b3c5980a38b958ac5ec8

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/5.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-733"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
d3b4aa01e8f584ae3bd4d94df403375d
190e6c5ee1fbae168a7f1a71b6542d339d634762
0ac37aee4ce0926f33b8429eb70e667bb76d978ac87f0aad5dbd39b8384b6e81

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 10:46:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 06:59:02 GMT
Expires: Fri, 30 Sep 2022 06:59:01 GMT
Etag: "190e6c5ee1fbae168a7f1a71b6542d339d634762"
Cache-Control: max-age=504171,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74faef431fd80b51-OSL

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg

202.191.56.152

200 OK

23 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1263)
Size
23 kB (22657 bytes)
Hash
0369d85cd8ed14ce5be2744ee2eb52d2
d78644594cb8c29bf7ab61209fcea528b6d1aff7
c608999ad33b3f1e7df1b0e00638b1f821f3002e4ea2d27a6bd9aec400b6756a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-13d96"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

cfspart.impots.gouv.fr/templates/images/Cadenas.svg

145.242.11.27

404 Not Found

2.9 kB

URL HTTP/1.1
cfspart.impots.gouv.fr/templates/images/Cadenas.svg
IP
145.242.11.27:0
ASN
#3215 Orange

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Size
2.9 kB (2930 bytes)
Hash
31c8c7c86c2a6814948044e8714acddb
49cf9783f5f57a2a843a141c27bed79f54a5c2aa
8254c9ce56497ac4e9e296b9b8d35cccde8872e5961de17b7b7bb65d8c2cf1db

HTTP Headers

GET /templates/images/Cadenas.svg HTTP/1.1
Host: cfspart.impots.gouv.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ts.hust.edu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 10:46:09 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Last-Modified: Tue, 19 Mar 2019 06:51:47 GMT
ETag: "23cba-b72-5846cf064161c"
Accept-Ranges: bytes
Content-Length: 2930
Via: dpapusx039
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/1.gif

202.191.56.152

200 OK

2.8 kB

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/1.gif
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
GIF image data, version 89a, 124 x 28\012- data
Size
2.8 kB (2840 bytes)
Hash
d23a7a551c4f41da8f63558ff800badb
107d8d01b8f1ebeda638eda3f6f9521babe5b136
8a47b98fb782f38188433d8e3ba526d7dcf2c91e30c322219530700ae5b26472

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/1.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-afc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg

202.191.56.152

200 OK

778 B

URL HTTP/1.1
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (340)
Size
778 B (778 bytes)
Hash
414f563159726d51b4e055bae11a9807
4e1d495ecfc67a5b31d06315211ed72c0cd06ff7
71e61a7480e7cc0cf83c782310bfca6845c0fb5884e5791bd9bbf9a0439657bf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-6dd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7963 bytes)
Hash
5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:25 GMT
age: 46125
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8029 bytes)
Hash
02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 46664
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10032 bytes)
Hash
aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 46494
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6386 bytes)
Hash
d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 46663
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11059 bytes)
Hash
9e125802119a2737820b343c4e9ecfb6
30ccc2dd2597b5b720d66c960ee8bd63c7115630
90cce372b2b8c89569fffc55de468bfc7cd4b7454ae7c55c48b7a846506b576e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11059
x-amzn-requestid: 65fe1c05-a158-4ac2-8368-f26da119ef68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcDTgGV4oAMF0iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217f49-74fc5c511bee36fd11d6d2eb;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:14:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Hf6b2w52aGxhlEdZTkKW8dXdKXP8uHL5MC85kk2VGI5E_SY3Z6HwQA==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:14:59 GMT
age: 45071
etag: "30ccc2dd2597b5b720d66c960ee8bd63c7115630"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6350 bytes)
Hash
3f8ec9ca7c408ca57caff620b84f4966
11f9de5bb99c54c12b0911b02792ac2e53d41f91
1c6461a0f9ee587483424f3ae262a8ee0293f1a9a137ebe6f946936bc69cf100

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6350
x-amzn-requestid: c9024bbf-4ef3-469e-bd6c-d096c1031296
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tCDGq9IAMFswQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2873-6d66c8f11f6142bd30308b06;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _yXYn6UMNBtXtXnbVjONx46T75rZ-Y3W4KiXPLjlgbQH9Tu8uOrAkg==
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:25 GMT
age: 46665
etag: "11f9de5bb99c54c12b0911b02792ac2e53d41f91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ts.hust.edu.vn/templates/js/bootstrap.min.js

202.191.56.152

302 Found

3.1 kB

URL HTTP/1.1
ts.hust.edu.vn/templates/js/bootstrap.min.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type
data
Size
3.1 kB (3091 bytes)
Hash
23ad93471fd90c42f00c95f10fd92ec2
4100d6220110093de9cec032a3e8500642b4a03f
db474d1bcd618c7c7a2defcde286eed61cbc117cb345bbd7982ce938b3c2ca0c

HTTP Headers

GET /templates/js/bootstrap.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Cookie: XSRF-TOKEN=eyJpdiI6IlBQa2l6ME4rQThUMWVIdUFKSFNRMnc9PSIsInZhbHVlIjoiYW9yem5zNWl6T3FwU0FTY21KK1dzSk1heXFqSEN1RVVtTmQzSThlUVMwb21QVFgwNGVKRTY4UzA3ZWVBbGxQODlmS3RrRVNMbGZJbHBibVV0QUVuWHc9PSIsIm1hYyI6IjAwNmE1OWFlOTFjMmY3YTQyMTA1NjBmMTA2ZDUzZDhhNWIyMDIwYzE1MzVmMTE4MGU4NzU2MzEyZGQzYjJmMTQifQ%3D%3D; laravel_session=eyJpdiI6Ijk0SjNWWVZ2eVZDZmhZQ1wvS25iR2d3PT0iLCJ2YWx1ZSI6ImpaYUtlakdnYlhcL3FIM2JuZElRbGRGUzVRcGJsZU9sZStyUWt3YXUxdlpGaWc3d3FTbGtSd29ER1E5WXBNXC9zWG5wS3I1WXQ4QXEwVVpjQktXSHJuc2c9PSIsIm1hYyI6ImNjODNkYWMwMjc4NjhkMzhhMDYzZmM0Y2QwM2Y1NjQ3Mzc0YTA0NTZhODE2YWY1MGJkYjZiOWY0Yjc5NmI3NDIifQ%3D%3D

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/templates/js/jquery-1.11.3.min.js

202.191.56.152

302 Found

0 B

URL HTTP/1.1
ts.hust.edu.vn/templates/js/jquery-1.11.3.min.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/js/jquery-1.11.3.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/404

202.191.56.152

200 OK

0 B

URL HTTP/1.1
ts.hust.edu.vn/404
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkpJNXNmcFNpMStKbnp0R1ptcElNOGc9PSIsInZhbHVlIjoicmNPMm9pcDhUb3MrZTZQT0Z0OG9QUkpyUE9yRTZsZzJHbGlxV2FZdEZxdDl4d2tFT1luZE43WVdTOTJSeHAzZ1RiVytHRmFvYURTRlNxSGYweVFvOWc9PSIsIm1hYyI6ImYxYWFkZDQ5NGZjY2YwY2Y0NTg5OTRjNjBjN2U0MjkxYTliZDc4MzRlZTViNWZmYTE4N2ZhZWQ1ZDdkMmFiNzQifQ%3D%3D; expires=Mon, 24-Oct-2022 10:46:35 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6Ik1heWFOMXVXbFZYWXRqcWpNcytQSUE9PSIsInZhbHVlIjoiVkUwODJEcUJzRGFVQWRiQVdxdlB3M3lob2duS01OTzBUd3orUHBCS2tMaW9KajBGYXRvUzFNalkwMmZJbHV0RVFvMlQzRmhCYTVKYnFPQzRVc3BpSEE9PSIsIm1hYyI6IjBmNGFmMzhiYzkyNzJkOTU4ODE1YWM3OTI3MGVmMDc1ZGMzYTQ5Njc1MGQ4NWFiZmRlMDZjY2JmMDliZTRlNTAifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/404

202.191.56.152

200 OK

0 B

URL HTTP/1.1
ts.hust.edu.vn/404
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlBQa2l6ME4rQThUMWVIdUFKSFNRMnc9PSIsInZhbHVlIjoiYW9yem5zNWl6T3FwU0FTY21KK1dzSk1heXFqSEN1RVVtTmQzSThlUVMwb21QVFgwNGVKRTY4UzA3ZWVBbGxQODlmS3RrRVNMbGZJbHBibVV0QUVuWHc9PSIsIm1hYyI6IjAwNmE1OWFlOTFjMmY3YTQyMTA1NjBmMTA2ZDUzZDhhNWIyMDIwYzE1MzVmMTE4MGU4NzU2MzEyZGQzYjJmMTQifQ%3D%3D; expires=Mon, 24-Oct-2022 10:46:35 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6Ijk0SjNWWVZ2eVZDZmhZQ1wvS25iR2d3PT0iLCJ2YWx1ZSI6ImpaYUtlakdnYlhcL3FIM2JuZElRbGRGUzVRcGJsZU9sZStyUWt3YXUxdlpGaWc3d3FTbGtSd29ER1E5WXBNXC9zWG5wS3I1WXQ4QXEwVVpjQktXSHJuc2c9PSIsIm1hYyI6ImNjODNkYWMwMjc4NjhkMzhhMDYzZmM0Y2QwM2Y1NjQ3Mzc0YTA0NTZhODE2YWY1MGJkYjZiOWY0Yjc5NmI3NDIifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/404

202.191.56.152

200 OK

0 B

URL HTTP/1.1
ts.hust.edu.vn/404
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImRTQjJWMXhBekU4WkZHQnUwQ2ltR2c9PSIsInZhbHVlIjoib3hhWXU3SHA1TE1CRkI5ajhwTTd4QllnRVVcL3VyZTlYVERQMFFJNVphaW1GTDFWSmJYMkJ4QklsMnpuUWZTdTB0VFI2czJsdUlnaGJTdzVmYm9FY1wvdz09IiwibWFjIjoiMGU2M2U5M2EzMTdmNjQwNjE0MTJkNmExYTdkMGI1ZDA3MzZmOTcyMzgyZWFhY2UwZjIwMjE5NGI1Nzg2ZTY2MyJ9; laravel_session=eyJpdiI6IlwvUEU5dXVrQWxJbVo2NWhRcWdNNzZRPT0iLCJ2YWx1ZSI6IjVST1JJYldGOFVvTFZXSlF6VVl1S29zNXFCTnV0ZDU0ekcxRHAwZTNnUmlhU3RNXC9tYWR0OWhEYmtrUFwva1ZoVFY1bnhMZnJXdUorM0tVaHB3V1FxdEE9PSIsIm1hYyI6IjUyODNlZTJiODFhMjBmMzIxNzRjZjA2M2IxMjU2YWZmOWRiNGE1MDlhMjIzMjUxMGU2YWY2ODlkZjVkN2EzZWEifQ%3D%3D

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlpKWnpPXC9MU1wvQldQaGkrQktUWHRvZz09IiwidmFsdWUiOiIyTGx6RnlSOStUZnNIcXFZVUgxMXc5Rlh6aTVvXC81XC9sZ1J0SkVCMFIyQTdwU0RqUmtFMm9UOVg2XC9qNSt3Y1BNSWs5aVJRKzNnRjF2bGp4QzM1UVc2UT09IiwibWFjIjoiYzMwOGZlMDNmZjVhMjE3NzlkMWRlZTYxMGQ3NWI1ODc0OTFlODczY2ViNGM0NTU5Y2YwYmZjODhhNDc0MTZhZiJ9; expires=Mon, 24-Oct-2022 10:46:37 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6IlcrRVpBXC93NDlBOXpQbUx4d3lNRkdBPT0iLCJ2YWx1ZSI6IlN1UUd0SjFrVk1jV25YZ0lxY3M1S095MGgzWmV6alZSME9hQ01aSWcyWXFYVWF1bFlKSFRlQ0hiV1NFSnhhdkhZeU9HQWdzdGU5Q25vRmY1b1wvNGRwZz09IiwibWFjIjoiMmJlMTZkZTAyM2NiY2VjZjVjMTg2ZjBkN2FhNGY5NzAyNTA2YzVmYzQ3NzU2MTUzNzNhMTY2ODQ0NzQ3ZGQ4ZiJ9; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/templates/js/urls.js

202.191.56.152

302 Found

0 B

URL HTTP/1.1
ts.hust.edu.vn/templates/js/urls.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/js/urls.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/templates/js/bootstrap.min.js

202.191.56.152

302 Found

0 B

URL HTTP/1.1
ts.hust.edu.vn/templates/js/bootstrap.min.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/js/bootstrap.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/templates/images/Miniballs.gif

202.191.56.152

302 Found

0 B

URL HTTP/1.1
ts.hust.edu.vn/templates/images/Miniballs.gif
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/images/Miniballs.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/404

202.191.56.152

200 OK

0 B

URL HTTP/1.1
ts.hust.edu.vn/404
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkVTV1pNdlAwbVh5dTM0a2J4YVhFQ3c9PSIsInZhbHVlIjoieEx0R1lLY1FVWXZtQlkrTm5NWTEyWW42M3RyRmhYQU5JSFQxMVY5OWJXUU1SKzd5QXNGazFLVWo3T1gzNSt0TXBRZDVwc0ZxeWVxS3I4ZFM0Vys5Smc9PSIsIm1hYyI6ImRjMTVlNzAxMjYxNjE1YjU4NzBkNzI4MDM3N2Q3ZDk4OTlhNWMzZDcyZGQzNjMzOGI3YzFiN2RjNDk1NTMxNDAifQ%3D%3D; laravel_session=eyJpdiI6ImpIT0lTM2pkdHJKZXZrd2pMRHZFbHc9PSIsInZhbHVlIjoibTRHNnVITm5xTVdGZXVvZGVCVjNYQXlWd2xlY0ZNK2VpUGx6azdBMzNXY2x3XC84eXdFR0hCUnc2SnUyWndhRHh6cExWd2hVYU54TWlcL0J2ZFwvZGhad2c9PSIsIm1hYyI6ImU1YzE4ZGY5NjI0M2Y1N2UyMjY2ZmVkYjU4MjgwMGJmMzhiODdiMGM0Njc1ZTc0ZDQ3OGQ3ZmE3MGY3NjY1ZTcifQ%3D%3D

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImRTQjJWMXhBekU4WkZHQnUwQ2ltR2c9PSIsInZhbHVlIjoib3hhWXU3SHA1TE1CRkI5ajhwTTd4QllnRVVcL3VyZTlYVERQMFFJNVphaW1GTDFWSmJYMkJ4QklsMnpuUWZTdTB0VFI2czJsdUlnaGJTdzVmYm9FY1wvdz09IiwibWFjIjoiMGU2M2U5M2EzMTdmNjQwNjE0MTJkNmExYTdkMGI1ZDA3MzZmOTcyMzgyZWFhY2UwZjIwMjE5NGI1Nzg2ZTY2MyJ9; expires=Mon, 24-Oct-2022 10:46:36 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6IlwvUEU5dXVrQWxJbVo2NWhRcWdNNzZRPT0iLCJ2YWx1ZSI6IjVST1JJYldGOFVvTFZXSlF6VVl1S29zNXFCTnV0ZDU0ekcxRHAwZTNnUmlhU3RNXC9tYWR0OWhEYmtrUFwva1ZoVFY1bnhMZnJXdUorM0tVaHB3V1FxdEE9PSIsIm1hYyI6IjUyODNlZTJiODFhMjBmMzIxNzRjZjA2M2IxMjU2YWZmOWRiNGE1MDlhMjIzMjUxMGU2YWY2ODlkZjVkN2EzZWEifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ts.hust.edu.vn/templates/js/auth.js

202.191.56.152

302 Found

0 B

URL HTTP/1.1
ts.hust.edu.vn/templates/js/auth.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/js/auth.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Cookie: XSRF-TOKEN=eyJpdiI6IlpKWnpPXC9MU1wvQldQaGkrQktUWHRvZz09IiwidmFsdWUiOiIyTGx6RnlSOStUZnNIcXFZVUgxMXc5Rlh6aTVvXC81XC9sZ1J0SkVCMFIyQTdwU0RqUmtFMm9UOVg2XC9qNSt3Y1BNSWs5aVJRKzNnRjF2bGp4QzM1UVc2UT09IiwibWFjIjoiYzMwOGZlMDNmZjVhMjE3NzlkMWRlZTYxMGQ3NWI1ODc0OTFlODczY2ViNGM0NTU5Y2YwYmZjODhhNDc0MTZhZiJ9; laravel_session=eyJpdiI6IlcrRVpBXC93NDlBOXpQbUx4d3lNRkdBPT0iLCJ2YWx1ZSI6IlN1UUd0SjFrVk1jV25YZ0lxY3M1S095MGgzWmV6alZSME9hQ01aSWcyWXFYVWF1bFlKSFRlQ0hiV1NFSnhhdkhZeU9HQWdzdGU5Q25vRmY1b1wvNGRwZz09IiwibWFjIjoiMmJlMTZkZTAyM2NiY2VjZjVjMTg2ZjBkN2FhNGY5NzAyNTA2YzVmYzQ3NzU2MTUzNzNhMTY2ODQ0NzQ3ZGQ4ZiJ9

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/templates/js/urls.js

202.191.56.152

302 Found

0 B

URL HTTP/1.1
ts.hust.edu.vn/templates/js/urls.js
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/js/urls.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Cookie: XSRF-TOKEN=eyJpdiI6IlppUms1eGRzYXd0ZHZranVHeDdYSnc9PSIsInZhbHVlIjoiV2RSekFEeWVsQ2NDZVwvRUxxME83QlpqbEhnWGlnNUpPUTE3Z1dpcTM1T0JVY0lIaXZcLzE0VjAzWUhmVkZUWGdpSkhSS1hrRmZYWnlKaUxuYzRBcnBsUT09IiwibWFjIjoiZjkwOWM0NDI1ZTA2NDk3M2IzMmE3OTMzZWQxY2U2NThiNDFiMmEyMmY1YmJjOWQ3ZDJiMTUzYjY1NTE4MTViMSJ9; laravel_session=eyJpdiI6IlhoRVpOSUVRbE04UkU0K0F5ZCtld1E9PSIsInZhbHVlIjoiSmNKcHBzRStFQmVieXhNRVBmblpxNXBrWlwvM2tXTXpyTzlsa2xNdTNLUjJvT2tqQ3gwUDdSNStZblFBeitGVU80OTZMMjlQUllLYlZldHpkXC9DNmpEZz09IiwibWFjIjoiNjg1ZGMzZjYzZmNmMGRiNTc4ZGMxNTYzYzczNDVkNWU3OTZlOTdlZjVkYTg5MTZkM2RiNTBlOTRkNTYwYmM0MCJ9

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404

ts.hust.edu.vn/404

202.191.56.152

200 OK

0 B

URL HTTP/1.1
ts.hust.edu.vn/404
IP
202.191.56.152:0
ASN
#38727 Ha Noi University of Technology

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkVTV1pNdlAwbVh5dTM0a2J4YVhFQ3c9PSIsInZhbHVlIjoieEx0R1lLY1FVWXZtQlkrTm5NWTEyWW42M3RyRmhYQU5JSFQxMVY5OWJXUU1SKzd5QXNGazFLVWo3T1gzNSt0TXBRZDVwc0ZxeWVxS3I4ZFM0Vys5Smc9PSIsIm1hYyI6ImRjMTVlNzAxMjYxNjE1YjU4NzBkNzI4MDM3N2Q3ZDk4OTlhNWMzZDcyZGQzNjMzOGI3YzFiN2RjNDk1NTMxNDAifQ%3D%3D; expires=Mon, 24-Oct-2022 10:46:35 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6ImpIT0lTM2pkdHJKZXZrd2pMRHZFbHc9PSIsInZhbHVlIjoibTRHNnVITm5xTVdGZXVvZGVCVjNYQXlWd2xlY0ZNK2VpUGx6azdBMzNXY2x3XC84eXdFR0hCUnc2SnUyWndhRHh6cExWd2hVYU54TWlcL0J2ZFwvZGhad2c9PSIsIm1hYyI6ImU1YzE4ZGY5NjI0M2Y1N2UyMjY2ZmVkYjU4MjgwMGJmMzhiODdiMGM0Njc1ZTc0ZDQ3OGQ3ZmE3MGY3NjY1ZTcifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (45)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size