Report - thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc

Report Overview

Submitted URL
thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc
IP
103.176.179.170
ASN
#38731 CHT Compamy Ltd
Submitted
2022-09-17 09:31:13
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	21 kB	31.13.72.36
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	47 kB	34.120.237.76
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.160.51.228
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	43 kB	142.250.74.72
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.7 kB	93.184.220.29
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	1.2 kB	142.250.74.164
za.zdn.vn	28240	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	8.2 kB	120.138.69.5
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	21 kB	142.250.74.174
za.zalo.me	24529	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	456 B	893 B	49.213.114.149
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
thietbidienelectric.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	46 kB	2.4 MB	103.176.179.170
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.9 kB	142.250.74.3
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	16 kB	142.250.74.10
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	804 B	91 kB	31.13.72.12
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	445 B	159 kB	142.250.74.163
static.xx.fbcdn.net	661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	181 kB	31.13.72.12
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
sp.zalo.me	25155	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	284 B	49.213.114.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-17	medium	thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc	Phishing
2022-09-17	medium	thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc	Phishing
2022-09-17	medium	thietbidienelectric.com/	Phishing
2022-09-17	medium	thietbidienelectric.com/assets/frontend/js/includes/component/home/general.js	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/contactor-4p-thietbidienelectriccom-abb-af116-40-00-11-220713-133812.jpg?v=1663407062	Phishing
2022-09-17	medium	thietbidienelectric.com/assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/submenu-arrow.svg	Phishing
2022-09-17	medium	thietbidienelectric.com/assets/frontend/3rd/fontawesome-pro-5.11.2-web/webfonts/fa-solid-900.woff2	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-abb-af116-220609-095302.jpg?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/n-bao-abb-thietbidiencom-4-220414-181016.jpg?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/9paa00000014546-720x540-220322-190251.jpg?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/9paa00000014545-720x540-220322-184243.jpg?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/abb-3p-thietbidienelectriccom-220322-153158.png?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/abb-4p-thietbidienelectriccom3-220322-155544.png?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/menu-back.svg	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/abb-4p-thietbidienelectriccom3-220615-161905.png?v=1663407063	Phishing
2022-09-17	medium	thietbidienelectric.com/uploads/picture/tram-bien-ap-110kv-200820-202155.jpg?v=1663407063	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (39)

	URL	Size	First Seen	Last Seen
	thietbidienelectric.com/	88 kB	2023-03-07	2024-04-25
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-25 02:03:00 Times Seen95470 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	thietbidienelectric.com/	1.7 kB	2023-03-07	2023-03-07
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash f315c24a04f3c8c65870e18cca5285fe 9edafa5f26d7bc135f14f0759f55d44a2ed43b92 5bd5c4a52b4a41bd8b909cc59908d61ac39ca5084717c9e56ffc2bd32310f877 Loading...

	za.zdn.vn/v3/za.js?19252	20 kB	2023-03-07	2023-12-05
Pretty URL za.zdn.vn/v3/za.js?19252 IP 120.138.69.5 ASN #38244 VNG Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:29 Last Seen2023-12-05 12:27:38 Times Seen211 Hash 51313feaee884260be28725bc3bdcd23 41ff89cbc17664425d2ffcebf82f995ffb82e80a 283c6e49992d2a00cc6e9eb88668b65be994b1c6e907dc561854869c21fa8251 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz	33 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:31:09 Last Seen2023-03-17 12:53:52 Times Seen1 Hash a5e0f8addc76bc915ddc1b6a7aff9ce5 ed0c3c19a14136e8899d6e2d37600c2ce4ff0026 2a90e9bfc4f58b69e724c53e3dc771843601cdeab160c65a8d4f99b7311c4208 Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	252 B	2023-03-07	2024-03-07
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-03-07 18:38:30 Times Seen2234 Hash dfc334cd5201ae3c020f43848b1646c4 b951863e53fd874757a2d5a21c8739a4d3640947 6e28b909a82bf42f6a2b51d7bbdc3ecafc47cd43cd52d1a3b584250c2ae579fe Loading...

	thietbidienelectric.com/	19 kB	2023-03-07	2024-04-25
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-25 01:55:03 Times Seen111462 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	thietbidienelectric.com/	58 kB	2023-03-07	2024-04-24
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-24 17:55:26 Times Seen19584 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	thietbidienelectric.com/	24 kB	2023-03-07	2024-03-12
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:08 Last Seen2024-03-12 15:28:02 Times Seen406 Hash f37878df1d94bbea0dfb7e85612888ec 19df702835ff55ce5a9b76b9974f8597cc528c6a 2fe668f50e1b19f758d3a06ac0c60b0e869c6b31fa1ab43190b6af3dd4f46b8e Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	connect.facebook.net/en_US/sdk.js#xfbml=1&version=v3.0	3.1 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/en_US/sdk.js#xfbml=1&version=v3.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:30 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 303af7bdecc861e26c2552b8cf177b0c e108a8a6d361ecee4536d39cfc772983fd23ddb6 c2b1b0665c0a82cc1cc1d0946b6d8908cac6673e072faaf0ffdb3ce995d2354f Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	417 B	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 8402f224dc4e7fb7529f3c2ac227ad65 9773ae0c331d5d6d166a548510ba9429dfdced1c d7565222175163de3e467a4bc11e2db298c2c8c3e0c19fc0ba5436ca7d9c44c1 Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	30 B	2023-03-07	2024-04-10
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-10 19:25:29 Times Seen81 Hash d1e154e25314b9fbe73dfbbf8d25da8a 2e9fc107aa7c5003d4e46c79aa5f94d079fd3a23 cc56f5136a80b2aa68095bf7da1ae3c753210eae44581620ca4c5a4e9293e016 Loading...

	www.googletagmanager.com/gtag/js?id=UA-167540680-3	109 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-167540680-3 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash b06e615a746892b930ade4f3e8158cf9 4ba1447f9f3429af39cbe73a1eebbf0afb0fe894 676a3f211ecfebc705438fda34aafb89622a6880c75b908cb44b33a3a1385b10 Loading...

	thietbidienelectric.com/	44 kB	2023-03-07	2024-04-25
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-25 01:43:42 Times Seen19908 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	thietbidienelectric.com/assets/frontend/js/includes/component/home/general.js	1.3 kB	2023-03-07	2023-03-07
Pretty URL thietbidienelectric.com/assets/frontend/js/includes/component/home/general.js IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash a3da752a30e96f5c45d4a14d1d626fcc 95302f32ab64633428928d4a1f0b923b9e4f6aa9 eae0d9a54ed3397b40977a7e4931ca6abdc80cbbfac50fdffb86d5ca13d37b17 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yw/r/MeE8sDF5lep.js?_nc_x=Ij3Wp8lg5Kz	157 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yw/r/MeE8sDF5lep.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 3fdec19de6d5be681dccd6639aed66ac e84a75fae6f1c8e959454d355935a3597171cc44 7a7d0db1fd082ec7bd8f8ab9b357f0a47e9d204f986675c48e3ea9fa2f639c63 Loading...

	thietbidienelectric.com/	156 B	2023-03-07	2023-03-26
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-26 13:07:05 Times Seen2 Hash 686668563384efc9d59ee8621725f04c 993a0dbadea04f0b2f6f27ad57b93ff675d9a00d 8f304a3584419b46f4c52447656dfb204122418dc9e75f2bd96aca24498792de Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-07	2023-03-17
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:00:40 Last Seen2023-03-17 12:55:13 Times Seen1 Hash 5a091973c265321ac3dc678f4d18b2dd e294c0072b296f04ee8e802a4ba8cf2494674125 f2a5ef3629b695ea6f46814cab28aaac4ba7dc6c694847e5b0090e22e0d55eb9 Loading...

	thietbidienelectric.com/	7.9 kB	2023-03-07	2023-03-07
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 5b512979ebfd6324e1aad7b9d2848dd5 3b237f675bf9ca1f8fb67c6ef328b2eb29c4c2cc 201815334e2d907d67d426d5fc0cabf0dadf7b796e16d49ef9e742f7f822abff Loading...

	thietbidienelectric.com/	297 B	2023-03-07	2023-03-07
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash d37133cf892c5384938e1c32c068570b e5e96e4c51e3efc9cfcf5ad7382265641306dd19 2bac08b9733edd757fabd2841ad2d9c8f2ce9b526115acd04aa83b92767a98e6 Loading...

	sp.zalo.me/plugins/sdk.js	107 kB	2023-03-07	2024-02-16
Pretty URL sp.zalo.me/plugins/sdk.js IP 49.213.114.132 ASN #38244 VNG Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:29 Last Seen2024-02-16 08:47:49 Times Seen33 Hash 187c71600bb712dd8b117041d66bf9f0 c5795df80abfed0b6068c0e5438717ac189367f6 c027ebd1c4192b5327c3194990a711b4081ea32a118e16f0d16a82f731ab3368 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz	5.7 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:28:42 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 8db225334f7247b9f9b544b4eb26070c f5f0d8fae8494aa24cb49ef5483307ff65b75dfe d2c4132fbfe4c7160b8067d3f8552a23568fe68acc43e9480762e2f20c65d3ef Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	7.9 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash ce5b3020430327489760f078a2d8b7e6 124a43a47d85998eb229adf184aef2d711fe2a9d 228a8a1a62e12fc999f9fa7a653d4c0a261760de89be1e839852f596fd22e66d Loading...

	thietbidienelectric.com/	7.0 kB	2023-03-07	2023-03-07
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 1e9fcf01e5f8422c4d6bfa39ee33de37 cea611558ceb521bfbf4a274c05b809d1b93e29a cbbe9b20678c84129d1afde0c0b0e555aea9ae8a0823e983e6da5d41cf6a1772 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz	24 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 0f3d8bea4c4ea54ac830f2dd9ca8e15a 031fab0fd56e6608b54a4ef2bb6630ffb06e018d 950536fd742d39043d41f3061c8a59c1da4aab92b818bf807b87bca41d9972f8 Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	15 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 1cb68c98ca69a6f32c62167502ec82d4 75b64af9f96d501ed203ac808aa61fbab06fb70b f1eccd0efac99c9130ec46b3fb60273b2be3dbbca6ebabe832ef6d71e8ad0ece Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	114 B	2023-03-07	2023-03-17
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2023-03-17 12:53:51 Times Seen1 Hash 85e73102adef29349dfbf55672c58fc8 8c83b888363713916be2fbef7d87f2638f20c757 fbec37b08e40cab4382c3636ee1ce6a6e68b791f054556da2ed1f17fa0e1a9e5 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 02:10:11 Times Seen37052703 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz	88 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:31:09 Last Seen2023-03-17 12:53:51 Times Seen1 Hash 45695c9f3f5be18edfa62936a0f54a7a 1db39eb0d373a2a9a749b293598ded02a5af079e 34c03e27ce430f6310763db1809ded599f255040112b4d79aff46357a12e4da6 Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	23 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 0088a8810dc9b36d7c3d8bc2b61c7c47 8aefba7139e13ac81d1cff2e81b0c25053ac28c3 93e285fb869b90fcdfb4a641cabe9cd787f497c5a25469828c71065cf6cc5ed8 Loading...

	thietbidienelectric.com/	3.2 kB	2023-03-07	2023-03-07
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 9aa103511e0f57482e141bf6381fabbe 5082896494ac9707bb6d61d7fe110848c6d97d17 7e48c956a69a25bb8f2eb0eb97ae993b3f48d2c70a2e8c28c89d8d70f0cc4a92 Loading...

	connect.facebook.net/en_US/sdk.js?hash=95895465fff355d0f6dc9abc69388e90	320 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/en_US/sdk.js?hash=95895465fff355d0f6dc9abc69388e90 IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:36:50 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 29751774267d54a45f0d67889da26f12 f80b63972c36af9f5d491d1d0ff573f23b1df7ca b3fe7b4fd3077ff4b24d15322415e67b6d151fe48d96d7d2dab0c95c1c3f443e Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	1.6 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:42:51 Last Seen2023-03-07 17:42:51 Times Seen1 Hash 3230fb095d2385b4a47b18165a75042c c61595636e801fd4097d8407aa0c55a684cfdbb5 6e5b59aba79854b99a860cc3fb33a21539e5fb0b1b057d2627380aa8b15a4bad Loading...

	thietbidienelectric.com/	12 kB	2023-03-07	2024-04-21
Pretty URL thietbidienelectric.com/ IP 103.176.179.170 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:07 Last Seen2024-04-21 14:33:23 Times Seen508 Hash 24d2d5e3e331c4efa3cda1e1851b31a7 9944dfb7814b911090e96446cea4d36e2b487234 10fae43631849825b26b36f703f1298fe5bb426da907dbe77d7c3e5fa2c898f3 Loading...

	www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=	218 B	2023-03-07	2024-04-24
Pretty URL www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-24 20:57:48 Times Seen12515 Hash 23731f926ba1b7856c53bf9c572f9e96 52618c2e6dd1bce8956fd2e2872c524eb1fd59d6 dbf6a6f99233910115437a7d602f004b1287d55441d4f751d152bf216375c07a Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz	41 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash a088b4a6f5d133de2223009ac4397a6f 9b64d0bcba662cd721a7d39a391ab99c2016fb9c 2bb622d8e93e157a4c84878105d5844268d1847dde8b58da81d0e0b66dec5629 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz	54 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:31:09 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 232cf65d1c7e49865728232a48318786 a3a740a09eacf13b391210693373cae98c74dd48 64d2418b7b02d1aeb8f88c1949a138c34d0cc911e59718ea6cc79c1150b9733b Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz	30 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 6ff5c2f9d4139ce7de0d1ec665e41c14 80833076f7850db66930369b8836da98201b97c0 961534f620a642a8af5fb54e585318757c959cee5c0e60da9ff3367a90d1ec45 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz	588 B	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 797945074d50ebf2563eb393179094fa 8045daea4cd83c16d12995d47fd03a16f5a7d5df 2a3d13042506b014659c201105249b75f7101f0c3175eea254b8f33bb5ea7bd8 Loading...

HTTP Transactions (90)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 09:11:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1yCF-VTbBHD6lek4Rn5V_0JyelamapsA6_WNuKcdYpUZp9VAABxQsg==
Age: 1185

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5709
Expires: Sat, 17 Sep 2022 11:06:10 GMT
Date: Sat, 17 Sep 2022 09:31:01 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j-FNaird3CEPQRgyegNonsXvO7H5Yl506zfK1LrCmPt3TvMwatQnqw==
age: 21619
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 09:31:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc

103.176.179.170

301 Moved Permanently

169 B

URL HTTP/1.1
thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
0f952b73d3f5586637ea9a5a789d48f4
b29aff4ffa1d4decd77db5160f920e1c6417e5e9
69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:01 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 09:07:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: swBiblG5xKpv_xPin8PC9OOFyWZLyYvxUYFDC1WvhEk52BYqEec_Ww==
Age: 1660

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9bf3402af9fef57aa11ffe2943728de4
a3a443aab8226d212be9698623717dd06e46c720
54987a5417af4a99d78532e502cf4685dd3372c1e9f717a8907f3d2b7c8926eb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3184
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:02 GMT
Last-Modified: Sat, 17 Sep 2022 08:37:58 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de96ead0ca5aafcb1ca4d4eda8a05b17
eeaa09a3cf736a6c74fe74f55e82c02940c57740
a6ccb6cf04eaa7e9f3f83303a48456510cb57164be02ae7ee01aed1380a54d50

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6CCB6CF04EAA7E9F3F83303A48456510CB57164BE02AE7EE01AED1380A54D50"
Last-Modified: Sat, 17 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Sat, 17 Sep 2022 15:30:57 GMT
Date: Sat, 17 Sep 2022 09:31:02 GMT
Connection: keep-alive

push.services.mozilla.com/

35.160.51.228

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.51.228:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KNP6G5qcoPc//mD108er3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DU0xt2sk42+P0o/ByvefqhC1kKw=

103.176.179.170

302 Found

370 B

URL HTTP/1.1
thietbidienelectric.com/vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
370 B (370 bytes)
Hash
f14b3a175fdbf3531828ab4e54da585d
ccf12446bbabb9a33da021780cbf7771da400496
1412133e1b52a453b66ac34dadfafe41356d8cddf04e27b60ba2fb63c99e1601

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/facade/flare-client-php/src/afcu/emailerror.php?wMkaWfy2F94kktFuYgTDZBIh8X8dVhnBhVlWmLKQYdjkhp7GanHKKLi8JMHHC0CmrVtCn2uOgiRorFR5xcPgPAGV2HgmjekW1dfcJutA6c7ouNfFZ7wzCHJzBe7xCMz66jtKuX98m8kkFuqwbGTjzLzonAoeuz9LnqJb2INkxQXB2d9bZvukQgXCM148ByQdLNxAmsEc HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Location: https://thietbidienelectric.com

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10937
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 09:31:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10937
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 09:31:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10937
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 09:31:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10937
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 09:31:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7305 bytes)
Hash
f108cfb79dd8405677b7406910d11ba5
5ef30af418df5e44a0927361b679b8117c38c473
b4b973702c6c98eaf28345b019c8cf022e8056e07f508e17d156c9e136f11936

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7305
x-amzn-requestid: 15096102-8ffe-47df-bfc7-ff1a1fb9fd1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFJmIAMF5Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-5c5ca26a24f39af979c17495;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5lUx834-NLHpKCxmdiAdNxCXqqNKGcDJlt9wmGR-XxdlroBfwVTrNg==
via: 1.1 e943d5f0cbb0d255d29da0ddf6639ba8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:41:22 GMT
age: 42582
etag: "5ef30af418df5e44a0927361b679b8117c38c473"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5956 bytes)
Hash
3e963daffb462e89d9d67e6193944cc3
ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c
cc24af0aedb89ab059b6706b8e51708547ea2ce2b2c2743425810b44af7c68c8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5956
x-amzn-requestid: 19032fea-67c3-404f-bf3e-9b436a61a7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeNW4G30oAMFw0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63225c2b-3da099be3781af033658520f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:56:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iITasHJYVP9sMCE7074VGGXwzKVd-0VdZqWYFuKPSt3G91Tq2vWExA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 23:32:44 GMT
age: 35900
etag: "ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7788 bytes)
Hash
7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 65YRttsQYzjUMMZXrtAFPdgTPNQuRGnLFliXrcoc24iQgrdBCHolNQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:11 GMT
age: 39593
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5983 bytes)
Hash
e1b42bfa9fc6593b0444391dc260329a
b9c4cd422b818c859ac6ca928bc9e932a578ce30
89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kWRS1NfiK9etmIoDtGu3C6uf8oqrL3r-mkM6BaTFPyNb6z4lYB38pw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:53:58 GMT
age: 41826
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5234 bytes)
Hash
9c807387d303abb2bca1ef14b14c9e26
428fe80d3f35758433a6b2cf25e6bcb5f63a6a63
277a74204dc8bec8a227ca43cdb840b5dda71f74e8aec56606e862e70a5ba19c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5234
x-amzn-requestid: 55e23e9a-f85c-42f2-87b6-aff3646bf1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yknn_EFzoAMF2Ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec99-62f023426230c7b46116d4b7;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:29 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fb2wN0gTI9OKgDghf1u4DKwrADkYcS5_7LIxaLxmbo0OciwezGh_LA==
via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:41:22 GMT
etag: "428fe80d3f35758433a6b2cf25e6bcb5f63a6a63"
content-type: image/jpeg
age: 42582
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BaRpWB_XOMxTJPufnSjd4KSfecRwLe9U5W7uEoXy7pgAa4KSC0n7eg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:03:28 GMT
age: 41256
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-167540680-3

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-167540680-3
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
42 kB (42369 bytes)
Hash
48c42b818665b0d87e77927aacbb5e01
e0ee6755bc16b4a4e9b81713fe604791ee7e3804
bd95ab7674f947e37c8e3ba8eab026166fe0e7a64902f24c4bf5e00ec02e65a5

HTTP Headers

GET /gtag/js?id=UA-167540680-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 09:31:04 GMT
expires: Sat, 17 Sep 2022 09:31:04 GMT
cache-control: private, max-age=900
last-modified: Sat, 17 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b4a24f9aebdfdb06d10cd53e92a70bb8
c4532479dbd9636d8f5206faa085c520651eb5f2
1d330af2b423e351355f710f14cb771fa9918e8b6638c5076aba7bcda6c30936

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

556 B

URL HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
556 B (556 bytes)
Hash
27b68162c75bebb4dacf518c46e974d5
99abc7e3e02891bec5de3dda3cb18a6f865f82bc
93415a1ed398b656767f092c53ca274ad9ae9c8cb0672831fa3c4ab275f994d1

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Sat, 17 Sep 2022 09:31:04 GMT
date: Sat, 17 Sep 2022 09:31:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

thietbidienelectric.com/

103.176.179.170

200 OK

505 kB

URL HTTP/1.1
thietbidienelectric.com/
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59998), with CRLF, LF line terminators
Size
505 kB (504714 bytes)
Hash
3550b8881f4d5d11c1d4752850a54bf8
0b000c351460b05931202803c20ad188b200cf08
243647d7404648a69dd1ad2a971025ce0f7a59239c96e8a1871d2f81c2ef59ac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; expires=Sat, 17-Sep-2022 11:31:03 GMT; Max-Age=7200; path=/
thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D; expires=Sat, 17-Sep-2022 11:31:03 GMT; Max-Age=7200; path=/; httponly

thietbidienelectric.com/assets/frontend/js/includes/component/home/general.js

103.176.179.170

200 OK

1.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/js/includes/component/home/general.js
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1270 bytes)
Hash
a3da752a30e96f5c45d4a14d1d626fcc
95302f32ab64633428928d4a1f0b923b9e4f6aa9
eae0d9a54ed3397b40977a7e4931ca6abdc80cbbfac50fdffb86d5ca13d37b17

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/frontend/js/includes/component/home/general.js HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:04 GMT
Content-Type: application/javascript
Content-Length: 1270
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:03:20 GMT
ETag: "4f6-5cd1cecd95e00"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/css/includes/component/home/media.css

103.176.179.170

200 OK

2.5 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/css/includes/component/home/media.css
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
2.5 kB (2517 bytes)
Hash
fa620b76f5d7c6ec8ea11c840e169628
4c7b44d6b02263684779f87d03bdc9b0af4dc4b9
ef9942b5927a632bb35b5f668506fb4a619989ddd057984e8fea8b8dc3f40360

HTTP Headers

GET /assets/frontend/css/includes/component/home/media.css HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:04 GMT
Content-Type: text/css
Content-Length: 2517
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:03:18 GMT
ETag: "9d5-5cd1cecbad980"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/css/includes/component/home/style.css

103.176.179.170

200 OK

3.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/css/includes/component/home/style.css
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with CRLF line terminators
Size
3.3 kB (3300 bytes)
Hash
8f83bf1246cb7b96e915d2149c848c8b
117ffb65c0334154cfc8fa5abecbd85f07191f98
b9fb80a5585d823ece9551a079982416351e9a5fd8c62bcbc45540ba3179642d

HTTP Headers

GET /assets/frontend/css/includes/component/home/style.css HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:04 GMT
Content-Type: text/css
Content-Length: 3300
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:03:18 GMT
ETag: "ce4-5cd1cecbad980"
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b0dc0e170e15566275ebfd438bb2d3f8
a9c93e6fff6af44e0c74b4fb4a3832edd27a7e20
d168a391f2c4db5ccc5e88718586700d23efa4a6af3f3acea778c3c24d42bf51

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4542
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:05 GMT
Last-Modified: Sat, 17 Sep 2022 08:15:24 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

thietbidienelectric.com/assets/frontend/3rd/fontawesome-pro-5.11.2-web/css/all.min.css

103.176.179.170

200 OK

163 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/3rd/fontawesome-pro-5.11.2-web/css/all.min.css
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
ASCII text, with very long lines (65389), with CRLF line terminators
Size
163 kB (163165 bytes)
Hash
a846ca597e49a54d51a1344193574794
f0961129694996877658f53d07be742861145855
884008a8671082153ec4e3aadfb519fc05700a66ac7669163eefdf1a49be9f21

HTTP Headers

GET /assets/frontend/3rd/fontawesome-pro-5.11.2-web/css/all.min.css HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:04 GMT
Content-Type: text/css
Content-Length: 163165
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:40 GMT
ETag: "27d5d-5cd1cd501da00"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/contactor-4p-thietbidienelectriccom-abb-af116-40-00-11-220713-133812.jpg?v=1663407062

103.176.179.170

200 OK

50 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/contactor-4p-thietbidienelectriccom-abb-af116-40-00-11-220713-133812.jpg?v=1663407062
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 590x573, components 3\012- data
Size
50 kB (50512 bytes)
Hash
f66c7de45fd4f6cd4519c6cd99aacccc
1c15aa9141016d69186ddb50cee99a78336ce50d
50412a642fe84febe3f924fe4ba59c6aabe2e4c1440d59bb9c43595bf9b2a59d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/contactor-4p-thietbidienelectriccom-abb-af116-40-00-11-220713-133812.jpg?v=1663407062 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/jpeg
Content-Length: 50512
Connection: keep-alive
Last-Modified: Wed, 13 Jul 2022 06:38:12 GMT
ETag: "c550-5e3aa076bbd00"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/submenu-arrow.svg

103.176.179.170

200 OK

607 B

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/submenu-arrow.svg
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
607 B (607 bytes)
Hash
d5f6b4b186ed2dd35230e0153f55d9fe
2aafbb9d079d25b0373137e1f54659b2928d66da
d7379ce12321c71b818a797a443094e587aa5933721bb77f360adcc1c03a042b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/submenu-arrow.svg HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/svg+xml
Content-Length: 607
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:03:16 GMT
ETag: "25f-5cd1cec9c5500"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/abb-contactor-4p-af38-40-00-41-thietbidienelectriccom-0979001393-220702-150619.jpg?v=1663407063

103.176.179.170

200 OK

34 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-contactor-4p-af38-40-00-41-thietbidienelectriccom-0979001393-220702-150619.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 638x539, components 3\012- data
Size
34 kB (34114 bytes)
Hash
33a841645827e0312746c7248ed3eb0e
9da5ac83419edb761db15a30cd81a79d10e4eb5c
3301864c27c95530ce8d8095c7ef91e6903734038c5ffc2fe029d108b082cc80

HTTP Headers

GET /uploads/picture/abb-contactor-4p-af38-40-00-41-thietbidienelectriccom-0979001393-220702-150619.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/jpeg
Content-Length: 34114
Connection: keep-alive
Last-Modified: Sat, 02 Jul 2022 08:06:20 GMT
ETag: "8542-5e2cdfa5b1700"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/thietbidienelectriccom-contactor-4p-af40-40-00-11-220712-120844.jpg?v=1663407062

103.176.179.170

200 OK

32 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/thietbidienelectriccom-contactor-4p-af40-40-00-11-220712-120844.jpg?v=1663407062
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 519x525, components 3\012- data
Size
32 kB (32133 bytes)
Hash
ef706ce7a9ef0943cfe2a8ac523da728
4b4ad41175d04c75828ba58a2270862392b04f78
fd920d6ddfb91ef46f21f974e7ffd00b5ce3f3c0d163b396bf2cbf075eac26da

HTTP Headers

GET /uploads/picture/thietbidienelectriccom-contactor-4p-af40-40-00-11-220712-120844.jpg?v=1663407062 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/jpeg
Content-Length: 32133
Connection: keep-alive
Last-Modified: Tue, 12 Jul 2022 05:08:44 GMT
ETag: "7d85-5e394a99f2f00"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/abb-contactor-4p-af38-40-00-41-thietbidienelectriccom-0979001393-220702-150724.jpg?v=1663407063

103.176.179.170

200 OK

34 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-contactor-4p-af38-40-00-41-thietbidienelectriccom-0979001393-220702-150724.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 638x539, components 3\012- data
Size
34 kB (34114 bytes)
Hash
33a841645827e0312746c7248ed3eb0e
9da5ac83419edb761db15a30cd81a79d10e4eb5c
3301864c27c95530ce8d8095c7ef91e6903734038c5ffc2fe029d108b082cc80

HTTP Headers

GET /uploads/picture/abb-contactor-4p-af38-40-00-41-thietbidienelectriccom-0979001393-220702-150724.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/jpeg
Content-Length: 34114
Connection: keep-alive
Last-Modified: Sat, 02 Jul 2022 08:07:24 GMT
ETag: "8542-5e2cdfe2ba700"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-1-220608-134518.png?v=1663407063

103.176.179.170

200 OK

210 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-1-220608-134518.png?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 325 x 540, 8-bit/color RGBA, non-interlaced\012- data
Size
210 kB (210087 bytes)
Hash
17d3f89f5e4ff703f014aa8891084af9
adcdcb42358718f45ca8ba0609aba297c5d38f30
e233e655dd0c52002af6e947beef6402ab5673c02c4987fb153ee3bce7816ff4

HTTP Headers

GET /uploads/picture/contactor-3p-thietbidienelectric-1-220608-134518.png?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/png
Content-Length: 210087
Connection: keep-alive
Last-Modified: Wed, 08 Jun 2022 06:45:18 GMT
ETag: "334a7-5e0ea0c5ddb80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/home-icon.png

103.176.179.170

200 OK

3.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/home-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3310 bytes)
Hash
f335ac00e4bae61f7025a52cf78987e1
48952264d493bfda38c0cff029e0ae8e9efebe2b
92d0413a1196c4905a07494c1072a35673f9cf975f088e3cbece06c16f15172b

HTTP Headers

GET /assets/frontend/images/home-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/png
Content-Length: 3310
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "cee-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/product-icon.png

103.176.179.170

200 OK

3.4 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/product-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3424 bytes)
Hash
c9f91d85add0a640cdf442c813d1b83f
def97cd069be7fe81b3d9fb2275e5674c5e62f23
7bccfa3fe0957669995cb66adbe46e239fc6327e864b5fad1f2c59500beaafea

HTTP Headers

GET /assets/frontend/images/product-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/png
Content-Length: 3424
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "d60-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/contact-icon.png

103.176.179.170

200 OK

3.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/contact-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 21 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3328 bytes)
Hash
e22f7a2922254363e0684a8269eb1695
6dd33248e9afdf14b980ffb0738c65e9555d99af
87f2cd83d72b062df9dba0a94e98b970d3e302ef756ffb95c2cf9df445a7394f

HTTP Headers

GET /assets/frontend/images/contact-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/png
Content-Length: 3328
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "d00-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/3rd/fontawesome-pro-5.11.2-web/webfonts/fa-solid-900.woff2

103.176.179.170

200 OK

130 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/3rd/fontawesome-pro-5.11.2-web/webfonts/fa-solid-900.woff2
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
Web Open Font Format (Version 2), TrueType, length 129832, version 330.32636\012- data
Size
130 kB (129832 bytes)
Hash
dbe8505cf4eb137c63b6c375e02c225e
e1b1db2ab291da9e9b17335580665c4fb5eddde9
0c103ae844c36c58f5947f4ffac0ef3edf1d447d0650fe33437071d3e13645ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/frontend/3rd/fontawesome-pro-5.11.2-web/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://thietbidienelectric.com/assets/frontend/3rd/fontawesome-pro-5.11.2-web/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Length: 129832
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:50 GMT
ETag: "1fb28-5cd1cd59a7080"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/facebook-icon.png

103.176.179.170

200 OK

3.2 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/facebook-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3215 bytes)
Hash
3ad89bfe6930ca783b770601e1163130
41f07611b3b37d62fc4ff79804de1662d129af7c
cd224326f32b7f651325921957a9b0d4fee3a44f3c1dbfa36b0a8a6e657f1b8e

HTTP Headers

GET /assets/frontend/images/facebook-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/png
Content-Length: 3215
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "c8f-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/twitter-icon.png

103.176.179.170

200 OK

4.0 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/twitter-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (4004 bytes)
Hash
7ce667b81db7a8818c740e888e94ffc1
9ac49d39d7d708382b91188328dadc3ca2eb5891
7b9994c8fbd570f1441b7e411b11825e5c013d6c5e537e2493a28f0bd0b928e9

HTTP Headers

GET /assets/frontend/images/twitter-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 4004
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "fa4-5cd1cd3751f80"
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
798962753e0c9d3976785a7f4c8ff5fa
e05d5c0c36d1b8d6f5aaac2e16d91c1e428f02eb
4ba5663c5603564f6387c32c4bd417a4bf5ffd110ca152230612d6aeae55a2e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4727
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:07 GMT
Last-Modified: Sat, 17 Sep 2022 08:12:20 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

thietbidienelectric.com/assets/frontend/images/linkedin-icon.png

103.176.179.170

200 OK

3.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/linkedin-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3272 bytes)
Hash
40a5543d815413b93ea625f453f9d1d0
bc3ae7ff07524d262abdfc159b74bd7fd0e84230
f7a422a7169356370e3cc6ca7b6304983067e1295f21bf2109dd5e8bffc560bd

HTTP Headers

GET /assets/frontend/images/linkedin-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 3272
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "cc8-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/youtube-icon.png

103.176.179.170

200 OK

3.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/youtube-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3268 bytes)
Hash
f433df6bcc383718d9f00e4d03834f12
28c9e6ca6222dbdf9f2b43afa55aa5f1a2567980
566c092ad2691ff91ec22bbbc3613e0b4f998caeb2959567b3b7441319c32989

HTTP Headers

GET /assets/frontend/images/youtube-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 3268
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "cc4-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/blogger-icon.png

103.176.179.170

200 OK

2.1 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/blogger-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2126 bytes)
Hash
052853d4bc1305d641166311e3726c11
42bc11718cea24ed0c70a6b2eede4beb8a02fd0a
3c480d96293646a1d84720a30c8994b0a01916a0fa53f278111ff44b89f05df6

HTTP Headers

GET /assets/frontend/images/blogger-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 2126
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "84e-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/phone-icon.jpg

103.176.179.170

200 OK

14 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/phone-icon.jpg
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2020:11:05 19:12:38], progressive, precision 8, 37x37, components 3\012- data
Size
14 kB (14418 bytes)
Hash
cb8aab67329a660ccda7d85d017534f8
4e7ade2cb6e316f42755daab0ce9b9dda4c202f0
21f016d416666157ecbfc42d4b798c793382139cc815dd2634e76337ef39a426

HTTP Headers

GET /assets/frontend/images/phone-icon.jpg HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 14418
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "3852-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/zalo-icon.png

103.176.179.170

200 OK

5.5 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/zalo-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5463 bytes)
Hash
0e6624e5dde74cb27fb0152eb5d59ba3
cbf63de884c273f150584ed5c45a7b5c2b429f71
cadc3d7b10f615e4698a4771d65ae144c978946a2cfb92d5fbd72a3197974b5b

HTTP Headers

GET /assets/frontend/images/zalo-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 5463
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "1557-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/decs-250n-thietbidienelectriccom-0979001393-220729-211055.jpg?v=1663407062

103.176.179.170

200 OK

11 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/decs-250n-thietbidienelectriccom-0979001393-220729-211055.jpg?v=1663407062
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 208x242, components 3\012- data
Size
11 kB (10795 bytes)
Hash
1b90535d0e45164de7378f397643fb42
f7fe331f1ebb55f47f2124cc9d61aa5d1a3054ff
926d9ff58cf4091ee7c3a0f1704d9eb01a3833e16754cee587c4b514169408b8

HTTP Headers

GET /uploads/picture/decs-250n-thietbidienelectriccom-0979001393-220729-211055.jpg?v=1663407062 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 10795
Connection: keep-alive
Last-Modified: Fri, 29 Jul 2022 14:10:54 GMT
ETag: "2a2b-5e4f237dcf780"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/images/mail-icon.png

103.176.179.170

200 OK

4.3 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/images/mail-icon.png
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 38 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4302 bytes)
Hash
4d54c61d331869ff831e04ce47ed6bce
48b1441b0e83925cdee86c34b06c63cd498c5559
8c91700b1897471cd770f70623e0a7675148a6dcc13e6dcfaae99748b13c40af

HTTP Headers

GET /assets/frontend/images/mail-icon.png HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 4302
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:56:14 GMT
ETag: "10ce-5cd1cd3751f80"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/abb-contactor-4p-af80-40-00-41-thietbidienelectriccom-0979001393-220712-150543.jpg?v=1663407062

103.176.179.170

200 OK

30 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-contactor-4p-af80-40-00-41-thietbidienelectriccom-0979001393-220712-150543.jpg?v=1663407062
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 457x526, components 3\012- data
Size
30 kB (30216 bytes)
Hash
7b77ef54a194fb4e1b63ee19c51e3d91
265393a603840a4ddbc926e0e11bd4977683395c
f763ad667d1bca0a040bf92929bc21802cd5dcbfaaa1945a61ca226dd155a387

HTTP Headers

GET /uploads/picture/abb-contactor-4p-af80-40-00-41-thietbidienelectriccom-0979001393-220712-150543.jpg?v=1663407062 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 30216
Connection: keep-alive
Last-Modified: Tue, 12 Jul 2022 08:05:42 GMT
ETag: "7608-5e39722810180"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-abb-af116-220609-095302.jpg?v=1663407063

103.176.179.170

200 OK

37 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-abb-af116-220609-095302.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 490x587, components 3\012- data
Size
37 kB (37399 bytes)
Hash
a36c48a053722c9934aad03603e4bc6f
b4f3e328399a0c7ba73aa987d0a93aa0def623b8
eb61c3851f4549d52265a5f7174986dd8094d737358c3a246d2d91914d4741e9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/contactor-3p-thietbidienelectric-abb-af116-220609-095302.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 37399
Connection: keep-alive
Last-Modified: Thu, 09 Jun 2022 02:53:02 GMT
ETag: "9217-5e0faeb8ebf80"
Accept-Ranges: bytes

za.zdn.vn/v3/za.js?19252

120.138.69.5

200 OK

7.9 kB

URL HTTP/2
za.zdn.vn/v3/za.js?19252
IP
120.138.69.5:0
ASN
#38244 VNG Corporation

File type
ASCII text, with very long lines (20288)
Size
7.9 kB (7910 bytes)
Hash
f564f342d4aceb3656fe5ce80ff95604
f566114e9aab52a85f8b6a25084a1068902ff65a
997a41a9400322ad6e066d89a5048e04a5156223aea186cce1bf3446f2de5cb9

HTTP Headers

GET /v3/za.js?19252 HTTP/1.1
Host: za.zdn.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 09:31:07 GMT
content-type: application/javascript
content-length: 7910
last-modified: Mon, 10 Jan 2022 09:12:24 GMT
etag: W/"61dbf878-4f41"
content-encoding: gzip
age: 9403
access-control-allow-origin: *
X-Firefox-Spdy: h2

thietbidienelectric.com/uploads/picture/n-bao-abb-thietbidiencom-4-220414-181016.jpg?v=1663407063

103.176.179.170

200 OK

30 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/n-bao-abb-thietbidiencom-4-220414-181016.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 590x540, components 3\012- data
Size
30 kB (30026 bytes)
Hash
e8b188f56970ad19792c98b169d02f55
11d66b5adb01bc245f2d5607de04cdb980aae01e
79ec39ff41fa8f6db012ff27f54b0d4ce3f302715f4692714c23ed940c672513

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/n-bao-abb-thietbidiencom-4-220414-181016.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 30026
Connection: keep-alive
Last-Modified: Thu, 14 Apr 2022 11:10:16 GMT
ETag: "754a-5dc9b56b07600"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/9paa00000014546-720x540-220322-190251.jpg?v=1663407063

103.176.179.170

200 OK

28 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/9paa00000014546-720x540-220322-190251.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 590x540, components 3\012- data
Size
28 kB (27910 bytes)
Hash
a7493f9c02c9f2ef3edd8bee5758b113
3b8d52f234dc2ff6890b5e9c552d9258001e4dd0
d976682aa01fb6c1bb64e491b629fff2aa3f230ec065d2a909022e137c463014

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/9paa00000014546-720x540-220322-190251.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 27910
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 12:02:50 GMT
ETag: "6d06-5dacd64550e80"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/9paa00000014545-720x540-220322-184243.jpg?v=1663407063

103.176.179.170

200 OK

29 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/9paa00000014545-720x540-220322-184243.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 590x540, components 3\012- data
Size
29 kB (28888 bytes)
Hash
6bc0119416d9b58e233bf8e9bd7d5fdd
adeacfd1342311b596ca5f6c76ae7ce4f25c30bc
c4ca69acc7a0ab4e8d2a00782d2c818c906297613ddbea70a5c858bc9061a61c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/9paa00000014545-720x540-220322-184243.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 28888
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 11:42:42 GMT
ETag: "70d8-5dacd1c547080"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/abb-3p-thietbidienelectriccom-220322-153158.png?v=1663407063

103.176.179.170

200 OK

70 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-3p-thietbidienelectriccom-220322-153158.png?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 540 x 540, 8-bit/color RGBA, non-interlaced\012- data
Size
70 kB (69561 bytes)
Hash
dc12fb0f05720adec04f477b0fc836db
48205b670a2dae7160847d78b581add072cab00b
853997530d9979dae8357d4b06961b96cbc13c6284fa36af0e41c459d7b3500b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/abb-3p-thietbidienelectriccom-220322-153158.png?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 69561
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 08:31:58 GMT
ETag: "10fb9-5daca7236db80"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-1-220608-103134.png?v=1663407063

103.176.179.170

200 OK

210 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/contactor-3p-thietbidienelectric-1-220608-103134.png?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 325 x 540, 8-bit/color RGBA, non-interlaced\012- data
Size
210 kB (210087 bytes)
Hash
17d3f89f5e4ff703f014aa8891084af9
adcdcb42358718f45ca8ba0609aba297c5d38f30
e233e655dd0c52002af6e947beef6402ab5673c02c4987fb153ee3bce7816ff4

HTTP Headers

GET /uploads/picture/contactor-3p-thietbidienelectric-1-220608-103134.png?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:05 GMT
Content-Type: image/png
Content-Length: 210087
Connection: keep-alive
Last-Modified: Wed, 08 Jun 2022 03:31:34 GMT
ETag: "334a7-5e0e75785b180"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/abb-2p-thietbidienelectriccom-2-220322-152017.jpg?v=1663407063

103.176.179.170

200 OK

14 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-2p-thietbidienelectriccom-2-220322-152017.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 540x540, components 3\012- data
Size
14 kB (14215 bytes)
Hash
e173e29937931c9940eec4849e98c60a
88258b626a809404bfc9832295f6339e1b5e04ff
4f9bc3c358df102c31b91e3c3a844a00dbd8574f35b52f2105e6af47d8f8c3c1

HTTP Headers

GET /uploads/picture/abb-2p-thietbidienelectriccom-2-220322-152017.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 14215
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 08:20:16 GMT
ETag: "3787-5daca485f3000"
Accept-Ranges: bytes

fonts.googleapis.com/css?family=PT+Sans+Narrow:400,700

142.250.74.10

200 OK

15 kB

URL HTTP/2
fonts.googleapis.com/css?family=PT+Sans+Narrow:400,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (14717 bytes)
Hash
3a81cf13ff8c123327669c39b3a2b978
ea007ef207a77939c654efa0f29fa47cae2b07b9
dc5dc1dca23fef7224338ca02c822a7082d03f91045c088f9eeab04e7b498be5

HTTP Headers

GET /css?family=PT+Sans+Narrow:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 09:31:04 GMT
date: Sat, 17 Sep 2022 09:31:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

thietbidienelectric.com/uploads/picture/abb-4p-thietbidienelectriccom3-220322-155544.png?v=1663407063

103.176.179.170

200 OK

93 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-4p-thietbidienelectriccom3-220322-155544.png?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 540 x 540, 8-bit/color RGBA, non-interlaced\012- data
Size
93 kB (92557 bytes)
Hash
e07aa57d3f963c67e99c9620adbcac7b
71868a526f85710abb54aa8c323b4ad94b45d542
a128c887e29f40946d01607bb1c77c01a23072b76f1d63c6b472ec036cfff6dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/abb-4p-thietbidienelectriccom3-220322-155544.png?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 92557
Connection: keep-alive
Last-Modified: Tue, 22 Mar 2022 08:55:44 GMT
ETag: "1698d-5dacac735e400"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/solar-thietbidienelectric-201010-035417.jpg?v=1663407063

103.176.179.170

200 OK

32 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/solar-thietbidienelectric-201010-035417.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 689x399, components 3\012- data
Size
32 kB (32457 bytes)
Hash
9dd2f31d3e81b42f3f28c394a1484cea
160ea6dc2605a16cc2e1833abe37f5cda8d23738
f9287358664be788614921a44c8a845b1f020c86af1a0a8864e2945a7299cc18

HTTP Headers

GET /uploads/picture/solar-thietbidienelectric-201010-035417.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:07 GMT
Content-Type: image/jpeg
Content-Length: 32457
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:24:18 GMT
ETag: "7ec9-5cd1d37d4ec80"
Accept-Ranges: bytes

thietbidienelectric.com/assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/menu-back.svg

103.176.179.170

200 OK

1.2 kB

URL HTTP/1.1
thietbidienelectric.com/assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/menu-back.svg
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1225 bytes)
Hash
079485ea11d9f014e144a03cce8af11f
669e2ee4880501304bda6dc41577287b81ef3092
4690421b820450b3bdcc99bc72a43f666add948f2712939e6ea0633a79329207

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/frontend/3rd/zeynepjs-master-1.0.2/examples/images/menu-back.svg HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:07 GMT
Content-Type: image/svg+xml
Content-Length: 1225
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:03:16 GMT
ETag: "4c9-5cd1cec9c5500"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/abb-4p-thietbidienelectriccom3-220615-161905.png?v=1663407063

103.176.179.170

200 OK

93 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/abb-4p-thietbidienelectriccom3-220615-161905.png?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 540 x 540, 8-bit/color RGBA, non-interlaced\012- data
Size
93 kB (92557 bytes)
Hash
e07aa57d3f963c67e99c9620adbcac7b
71868a526f85710abb54aa8c323b4ad94b45d542
a128c887e29f40946d01607bb1c77c01a23072b76f1d63c6b472ec036cfff6dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/abb-4p-thietbidienelectriccom3-220615-161905.png?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/png
Content-Length: 92557
Connection: keep-alive
Last-Modified: Wed, 15 Jun 2022 09:19:04 GMT
ETag: "1698d-5e179032b1200"
Accept-Ranges: bytes

thietbidienelectric.com/uploads/picture/thay-aai-tae0-duy-la-m-gia-u-210629-224928.jpg?v=1663407063

103.176.179.170

200 OK

257 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/thay-aai-tae0-duy-la-m-gia-u-210629-224928.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1200x829, components 3\012- data
Size
257 kB (257071 bytes)
Hash
7792a73f8cef454720d17d0e2e73f0d0
e36d9766de8bad1f9f302141ee60da2696d4e43b
9ebeb21933575a245ff44dc1f4068ba012366912bb73d9d72af9761b6569d11d

HTTP Headers

GET /uploads/picture/thay-aai-tae0-duy-la-m-gia-u-210629-224928.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:06 GMT
Content-Type: image/jpeg
Content-Length: 257071
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:24:28 GMT
ETag: "3ec2f-5cd1d386d8300"
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6487
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:08 GMT
Last-Modified: Sat, 17 Sep 2022 07:43:02 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 17 Sep 2022 08:41:12 GMT
expires: Sat, 17 Sep 2022 10:41:12 GMT
cache-control: public, max-age=7200
age: 2996
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/sdk.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1961)
Size
1.7 kB (1687 bytes)
Hash
0d04497f0cf14c4796c559547f3abed2
e6c32bc21a70a8f095a9c998f14b01138a7707a4
62c0c81c33836b6b6003c46b3fee47b21294ca97fdb829fc848218eb7cb46948

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 303af7bdecc861e26c2552b8cf177b0c
etag: "899c735787c81e46269b7d13235a5da4"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 17 Sep 2022 09:36:03 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: DQRJfwzxTEeWxVlUfzq+0g==
x-fb-debug: AzLlO87XnUiK30B2OP07sE18ugFNG3zj8ItV600SjWmsaakQO0lHVpryNhp5Is5QW81USamCVwzGjdxATfJGYQ==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:08 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (581)
Size
158 kB (157726 bytes)
Hash
6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b

HTTP Headers

GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thietbidienelectric.com
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 273219
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6487
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:31:08 GMT
Last-Modified: Sat, 17 Sep 2022 07:43:02 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

thietbidienelectric.com/uploads/picture/tram-bien-ap-110kv-200820-202155.jpg?v=1663407063

103.176.179.170

200 OK

271 kB

URL HTTP/1.1
thietbidienelectric.com/uploads/picture/tram-bien-ap-110kv-200820-202155.jpg?v=1663407063
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 1280x960, components 3\012- data
Size
271 kB (271166 bytes)
Hash
99c5cc1120b02e2a4e3b016a40fc388f
eee1dc0947ff240905d5754a79bf3f0406c0a106
e6644e03f71d17d185396d8434a9a9d7b526720a3f62ef8c87d111462ee6e949

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/picture/tram-bien-ap-110kv-200820-202155.jpg?v=1663407063 HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:07 GMT
Content-Type: image/jpeg
Content-Length: 271166
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 07:24:30 GMT
ETag: "4233e-5cd1d388c0780"
Accept-Ranges: bytes

thietbidienelectric.com/favicon.ico

103.176.179.170

200 OK

0 B

URL HTTP/1.1
thietbidienelectric.com/favicon.ico
IP
103.176.179.170:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: thietbidienelectric.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjY2NHRST3lZbm5GeGJxc295TXB0bWc9PSIsInZhbHVlIjoiOFpFWmJEYUtVS1FDWHVVYktlZHRhQ2FHRU5JbHN0UWJJa1RZZTg2bjJxVTlDaDhtSzBSV0FvaDlZU3dlU0FHSW85XC9PQWdwWEpyNG9PemduXC9BXC9IT1IrczBcL290MDhEUHlvOVdGa2kxM2lUOGZKUkVpREVcL3QxRzhKQ2MxM3FYMyIsIm1hYyI6ImQ4MWQzYTFhYWU5ZGRiNThhYTk1M2NiNjY0NjkzZjIwNDE2ZTM3OGYyNjdmNzRlZTY2ODAzYzMxZWFhOTE1ZGUifQ%3D%3D; thiet_bi_dien_electric_session=eyJpdiI6IjgxVWVjRnd3VmtkS1NVc21ZaUw0U3c9PSIsInZhbHVlIjoiRm9NdVpPc0oycEdGWEJwSWlWOWpNeXEwMW9CQjBzdCtYVTFpYmhUbjhGZHFnbTFGQ0dWanFDV080RnVYXC9UZnlLMzNsaDhtTzN4bmpZVGsxdVhyaHBNQVJSSkRXbDBlTjJlYWhXendUelF6XC9Wb094c3lcL3dlUGROOXRZTTlVZlAiLCJtYWMiOiJjNmZlYzllYTEyMDgyOWYzZmM4MDhkMzM5MDZlYzJlNzhhZjk0NjQ3NWFhNTM3YzFjY2E3YTUzNDRiMmQ5MmNmIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 17 Sep 2022 09:31:07 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 29 Sep 2021 06:55:40 GMT
ETag: "0-5cd1cd16e5300"
Accept-Ranges: bytes

za.zalo.me/v3/w/t

49.213.114.149

200 OK

231 B

URL HTTP/2
za.zalo.me/v3/w/t
IP
49.213.114.149:0
ASN
#38244 VNG Corporation

File type
JSON data\012- , ASCII text, with no line terminators
Size
231 B (231 bytes)
Hash
9bc01a29a3c23710b1b7ac15ed59bdaa
0bf317f454e24ebb0719e3e4b2024fb3af34d852
8f4c04a0b3e3fcb309658ec7259a481c1bfbc946be8ce09ee9a801eb3b11e55a

HTTP Headers

POST /v3/w/t HTTP/1.1
Host: za.zalo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 178
Origin: https://thietbidienelectric.com
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 17 Sep 2022 09:31:08 GMT
content-type: application/json; charset=utf-8
content-length: 231
access-control-allow-origin: https://thietbidienelectric.com
access-control-allow-credentials: true
set-cookie: __zi=2000.VeBdvPu72vrZXU3acmS6Z7s9uBwA0GZUBDQry8u41TuZqBE-XW40aIRMihs42GINDG.1;Secure;SameSite=None;Path=/;Domain=zalo.me;Max-Age=62208000
__zi-legacy=2000.VeBdvPu72vrZXU3acmS6Z7s9uBwA0GZUBDQry8u41TuZqBE-XW40aIRMihs42GINDG.1;Path=/;Domain=zalo.me;Expires=Fri, 06-Sep-2024 09:31:08 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: za-ngx-srv
strict-transport-security: max-age=86400; includeSubdomains;
X-Firefox-Spdy: h2

connect.facebook.net/en_US/sdk.js?hash=95895465fff355d0f6dc9abc69388e90

31.13.72.12

200 OK

87 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js?hash=95895465fff355d0f6dc9abc69388e90
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (13264)
Size
87 kB (87226 bytes)
Hash
ea57f04c210d18484ee34c71224924d8
bf50466c38358383bce5adb902229b0f94d913d6
d74297059b648b74904fd79957e7b026008b12c0d6c44d9f137fb82509eabe49

HTTP Headers

GET /en_US/sdk.js?hash=95895465fff355d0f6dc9abc69388e90 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thietbidienelectric.com
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 29751774267d54a45f0d67889da26f12
etag: "dfbc4abb049efb5abad4430fd32d5ee9"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 17 Sep 2023 05:45:20 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 6lfwTCENGEhO40xxIkkk2A==
x-fb-debug: lZeMJ8qFV8dnpgY44JT/sJEajZs/g9LX1hzbc/t8pUX1O7d//N3ZA4vyG5i8IuYAgTY30WhRMUU2AeA4GKgpmg==
priority: u=3,i
content-length: 87226
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:08 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/y-fVScwktOf.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

5.2 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/y-fVScwktOf.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4093)
Size
5.2 kB (5175 bytes)
Hash
8ada5acafea6596b8e90bf10bc000c46
8b07405e279aaaa7e10831e606d6da4571e5c8da
6c28becc9f55376dcbc55265c5ce4342816239c60c65e9c1b41cbb2106ff7e2c

HTTP Headers

GET /rsrc.php/v3/yS/l/0,cross/y-fVScwktOf.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 17:05:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: itpayv6mWWuOkL8QvAAMRg==
x-fb-debug: wK0jxzwsDeitxd/vn4g/XN9cz3468HjX0XAEalTHaUzUNMbx8JYrwjmLDheNYkrsvjVaZ4s/Bd3PxPymraekqg==
priority: u=3,i
content-length: 5175
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=

31.13.72.36

200 OK

17 kB

URL HTTP/2
www.facebook.com/v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23110)
Size
17 kB (17381 bytes)
Hash
efbe2392d897d4810933803e32210ed9
113e8f89d915318029d26b7e786966c0a96a2b85
f6541d0ac24c48bcb5f2109896ea680dc1fb2783d169d01ac9f71d29bff73842

HTTP Headers

GET /v3.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df50ecd73458166%26domain%3Dthietbidienelectric.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fthietbidienelectric.com%252Ffc8f84a72c6592%26relation%3Dparent.parent&container_width=255&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FThietbidienelectric-102188039114147&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: duAIanvu6hHZjyX0VCxFzmH0W7p/Gv4jvCKCoLTPBNDfFclKHxZF0zgkBTIdLQbYTwN1nWIk7yxjzHJ2eA66XA==
date: Sat, 17 Sep 2022 09:31:08 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

91 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18569)
Size
91 kB (91358 bytes)
Hash
449a21bbd17f4b28e209b62a520f28c0
b63a99e69f6ed688707a0f4851c0a88fe5cb6faa
dda01b644519466b782011bfbd33c652b8b7a691145ac1dfb314ba14ff86077d

HTTP Headers

GET /rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:57:28 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: RJohu9F/SyjiCbYqUg8owA==
x-fb-debug: nPB+nXu7k65yIzcJweXkt4zQc+KSdF8225FTALgE/KWiivdVL8gptTPXZytHehB4X+TVo1tVLotCURWobLsbpg==
content-length: 91358
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (2052)
Size
1.7 kB (1689 bytes)
Hash
883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612

HTTP Headers

GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:45:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: xm1yHB7Ip6McV2mo06/eZyCn/GqWtJ2+ZtBJcvHUC7zwiywns2/IRXbVf8Y84/oLUOmtVrJD2cap4yDrqRQGDw==
content-length: 1689
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

12 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (5329)
Size
12 kB (12252 bytes)
Hash
adcd01b197549ab05ed54746a81151f8
edb56528c008d8a431e350179ff6df1aa40c2ae6
e6456b195e1064b44db169404417d1c68777133c14d6188bd9ffdfc60e70393c

HTTP Headers

GET /rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:45:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rc0BsZdUmrBe1UdGqBFR+A==
x-fb-debug: Cvq+YJ48MWZ6kYYsnTApZtAEH+NsnoJGw7xcAOOx3Omle6lgXqA4YXl9NvJ4ixfxZsUA5ZD1PeSPS9qT1Fo24g==
content-length: 12252
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

16 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
C source, ASCII text, with very long lines (7367)
Size
16 kB (15970 bytes)
Hash
2e6b8fb5c99f65f0290910a108d70b59
259614e8da07b8bb8f9f97145960c80d5a3a8301
d78f36b2062bcb9f609e318cb082657e04ad0d1c89b090d7a88b44d1b390fcd1

HTTP Headers

GET /rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:45:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LmuPtcmfZfApCRChCNcLWQ==
x-fb-debug: uYnDmQMHWR5mnCwWf2uesWp0Av1SGjBs9rfSmSHvSbXg9AmuI67QXUCNo/VW7iyJ9gdik4eJ9ClztjUkmxLdjw==
content-length: 15970
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

8.5 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (2973)
Size
8.5 kB (8455 bytes)
Hash
ffe7b79ce7ca26f6f708ddd1d38ee3e7
6380b17543d221a6934c145232fc385aa965fa1d
9c68febd9ec67b45b9142a70128f1ab52fe3ec35b1d5749d15387ea514c8743a

HTTP Headers

GET /rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 01:02:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: /+e3nOfKJvb3CN3R047j5w==
x-fb-debug: MACS4Amn2vhsZQbZKWeyfmLYSjiUM8mYVYhHTG1RC6t3YVO/FxVRzCyxNsNx36EabvfpuBfxK7bRgujZyb1/Ig==
content-length: 8455
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

9.1 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (9954)
Size
9.1 kB (9071 bytes)
Hash
be64cd173090e3a98e38a422d5930c56
5c196fb94edb4d634bad160a99f3918260d23be3
0ffe4a73f2d08fa7dae5286e54d9e1f779422452cedfb44422a90ed24d409617

HTTP Headers

GET /rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 06:16:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vmTNFzCQ46mOOKQi1ZMMVg==
x-fb-debug: 2VuBxoCyx00zQYswrCbGS8iguBnTdhAkZ4fTElykiIYmn5ZEmhIHvwUJX6Lgq/QRJhSVnIYkC4mBdyAx4fcWJg==
priority: u=3,i
content-length: 9071
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

23 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (42045)
Size
23 kB (23388 bytes)
Hash
58dbeeb1a23bb44fabf2c50e0884a170
c3c6a7b58d90c4b7b135758d99911465794dd9a2
b49ba6b6ba373668ac5d82d37a0aa689d913579384477b5a7b8be059c2c2bd96

HTTP Headers

GET /rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:46:52 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: WNvusaI7tE+r8sUOCIShcA==
x-fb-debug: jLvJQ5kQiAJbbOztlhwuWfCptGnDxGZ0+x683Fce/lG1zDVU7bx3FFe6M9HBasUZnjzVFWmpI3CSMmdJE1JptA==
content-length: 23388
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

7.3 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4129)
Size
7.3 kB (7311 bytes)
Hash
7614efba617e235ae864911e15a63a27
5eb6ee4e1d2db3866ebcbc35b76352c719c36255
3c2783c57f48e1b749c1065ddcdf2f5184582a2bc799b1ee832fdf79c62b9557

HTTP Headers

GET /rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:45:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dhTvumF+I1roZJEeFaY6Jw==
x-fb-debug: 06ZKGH6F7+635NKMacA9TLcuJR2ZF/BXHjor7mY/w+/vUm7ABAuNNGZdjjKkokEoCYLbUUCPM2VDiCBRuDIgUg==
priority: u=3,i
content-length: 7311
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:31:09 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

sp.zalo.me/plugins/sdk.js

49.213.114.132

200 OK

0 B

URL HTTP/2
sp.zalo.me/plugins/sdk.js
IP
49.213.114.132:0
ASN
#38244 VNG Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /plugins/sdk.js HTTP/1.1
Host: sp.zalo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thietbidienelectric.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 17 Sep 2022 09:31:05 GMT
content-type: text/javascript;charset=utf-8
etag: cbc6013bb2eeee269197cfbcfe0d1818--gzip
vary: Accept-Encoding, User-Agent
content-encoding: gzip
server: za-ngx-srv
strict-transport-security: max-age=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations