Report - gre.com.vn/

Report Overview

Submitted URL
gre.com.vn/
IP
112.78.1.150
ASN
#45538 ODS Joint Stock Company
Submitted
2022-11-27 02:11:39
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
84

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
gre.com.vn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	41 kB	486 kB	112.78.1.150
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.35
maps.googleapis.com	33876	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	54 kB	142.250.74.10
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	923 B	1.5 kB	142.250.74.10
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.162.142.194
static.addtoany.com	4091	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	586 B	172.67.39.148

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	gre.com.vn/	Phishing
2022-11-27	medium	gre.com.vn/	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/style.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash-child/style.css?ver=6.0.3	Phishing
2022-11-27	medium	gre.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/styles.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0	Phishing
2022-11-27	medium	gre.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3	Phishing
2022-11-27	medium	gre.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-11-27	medium	gre.com.vn/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/header.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/animate.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4	Phishing
2022-11-27	medium	gre.com.vn/wp-content/themes/splash/assets/js/splash.js?ver=1669515090	Phishing
2022-11-27	medium	gre.com.vn/wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0	Phishing
2022-11-27	medium	gre.com.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	gre.com.vn/	754 B	2023-03-11	2023-03-11
Pretty URL gre.com.vn/ IP 112.78.1.150 ASN #45538 ODS Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:05:08 Last Seen2023-03-11 21:05:08 Times Seen1 Hash 6e96a440cb14efe81e0fea09d56aa352 3555905a419cb2d7dab3a978fff0d2759e87d5a8 c57d1c15defce700649e95f7d98fb11b697dc21bcd463ea6687f8451c1ba54f3 Loading...

	gre.com.vn/	2.2 kB	2023-03-11	2023-03-14
Pretty URL gre.com.vn/ IP 112.78.1.150 ASN #45538 ODS Joint Stock Company Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:00:17 Last Seen2023-03-14 00:31:06 Times Seen1 Hash 65a269e7ee73d39045e8421e6b9a30b5 469ea62220b6d58db16c24952c2d679924eea9ee 7f740f794362cdd37b8d7513870520e216ed2b1cf87ce6a608de292c4d890ec5 Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090	164 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090 IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:05:08 Last Seen2023-03-11 21:05:08 Times Seen1 Hash 2790fc77050ff3108fe01d8d269c7014 68c176aabe5d0631738b93178442849941b29195 fbb548b32b11947b321cc3a15c1dc0bccbff129abd7f7ad505d15c4542e20936 Loading...

HTTP Transactions (112)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4837
Expires: Sun, 27 Nov 2022 03:32:05 GMT
Date: Sun, 27 Nov 2022 02:11:28 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1695
Cache-Control: max-age=118075
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:28 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:59:23 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11813
Expires: Sun, 27 Nov 2022 05:28:21 GMT
Date: Sun, 27 Nov 2022 02:11:28 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 01:19:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3129
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: /H37MQ0GOP8qskHt8MAZJeehc/LVNbxLj+pYFoH2DusWQaPgTOf8UQVuAH6VSy+iuaDFwwsNI2k=
x-amz-request-id: QDYD3ZHYE7N1TSF9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 01:41:26 GMT
age: 1802
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 02:11:12 GMT
cache-control: public,max-age=3600
age: 16
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

gre.com.vn/

112.78.1.150

301 Moved Permanently

0 B

URL HTTP/1.1
gre.com.vn/
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 27 Nov 2022 02:11:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.5
X-Redirect-By: WordPress
Set-Cookie: anspress_session=7a049edbddfc18d24df08e0acab9c2ec; expires=Mon, 28-Nov-2022 02:11:28 GMT; Max-Age=86400; path=/
Location: https://gre.com.vn/

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4640
Cache-Control: max-age=115962
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:29 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:24:11 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.162.142.194

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.142.194:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 224LWQdbyCyVpUABhvRXGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V1o6/QBRAr+QUqhjs0d+xDaLlZQ=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3f95505b9f51aa0fd2762bdeed09f411
388818947b4484460ba6b913ece45698f9604d19
a65821f29d6f6c226364c4108cdb0ba771d7cbfe3d8fcff255d14eb286fafb30

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A65821F29D6F6C226364C4108CDB0BA771D7CBFE3D8FCFF255D14EB286FAFB30"
Last-Modified: Sun, 27 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 27 Nov 2022 08:11:29 GMT
Date: Sun, 27 Nov 2022 02:11:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4374 bytes)
Hash
514b4077fad50ba782e4bbb2c95c6852
4770f56d4d9489df43f33952e4bfa84d8e46414e
a97ce7c911625345342731b96cf423ee36182e101e3039694a666d6508a702ef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4374
x-amzn-requestid: 16fa9401-4b57-4300-9377-3a7d96de3a38
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGB7uFWJIAMFfTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f16b1-3386c7b54d828c3b1393b9ce;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:01:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6XMNeYqDwM9yHZf1rkBRhZ6k_iZE92MWKavu0vlQnT2jZ--tswQwWw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:08:31 GMT
age: 64979
etag: "4770f56d4d9489df43f33952e4bfa84d8e46414e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13049 bytes)
Hash
1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 1482
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 15593
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9073 bytes)
Hash
ccb536b51f31391c89fb2abe3be6c749
c9a5ab962bfdd174aecd4809d770f0fe305ab8e4
b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9073
x-amzn-requestid: 6cf20b75-6b27-4a34-97a8-017d7169f31b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JuVHY7IAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2328-1ca76b3537613fb26358b8f2;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: lg8rdnHT_ndB-9CMrHcVN8a2xZCubuTEpUQ2m6i77l-NfdNfhfITEQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:41:41 GMT
age: 34189
etag: "c9a5ab962bfdd174aecd4809d770f0fe305ab8e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8254 bytes)
Hash
6ee5071a31d351c552aa651e40b16189
6fca9136030ea6f67be44e428ea39c34ff3e28e7
8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:52:26 GMT
age: 15544
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8817 bytes)
Hash
741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 35770
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

gre.com.vn/

112.78.1.150

200 OK

19 kB

URL HTTP/2
gre.com.vn/
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size
19 kB (19154 bytes)
Hash
ab49d6348932dc18ab6262681e7dfa79
7f65d15a96b6f8dadc7a13d5a2f9e6ff3cf534b4
1c4bc053a2dd762553934b78f009552317a40220a5de0eac52519a6d0cf5a22e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/html; charset=UTF-8
content-length: 19154
x-powered-by: PHP/7.3.5
link: <https://gre.com.vn/wp-json/>; rel="https://api.w.org/", <https://gre.com.vn/wp-json/wp/v2/pages/2309>; rel="alternate"; type="application/json", <https://gre.com.vn/>; rel=shortlink
set-cookie: anspress_session=8642525236078682681cb74c4d10049e; expires=Mon, 28-Nov-2022 02:11:29 GMT; Max-Age=86400; path=/
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090

142.250.74.10

200 OK

53 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2453)
Size
53 kB (53359 bytes)
Hash
4c904f12dcc99854d59027c327a7f54b
02a87980212c56f140111e8c47d11e8c54ea977f
26ca41189b0fea11b55cfb100d4eb87e75d8ab0a362d9579356fd46aff22e62a

HTTP Headers

GET /maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 27 Nov 2022 02:11:31 GMT
expires: Sun, 27 Nov 2022 02:41:31 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53359
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=20
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0

112.78.1.150

200 OK

3.5 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (3369)
Size
3.5 kB (3527 bytes)
Hash
1062b904291e193116acf9efc62bacce
e410e07946140671f14184602fe2818761c99da1
dc4eb4fa9e7e85bf4762fcff65a3d657048d7907500867387cdad21515728328

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 3527
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "62db5aad-dc7"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0

112.78.1.150

200 OK

76 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (65536), with no line terminators
Size
76 kB (75894 bytes)
Hash
8527763c6e3d3b75f539da2d16f6ecf1
f375c9a211f7c8d33a60291685e8e339d194f6f5
9ecb7e6e6cbdc850a3ef8e0cfcef31e5a5e9d6d54399190f3634d25c0fb19a0e

HTTP Headers

GET /wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 75894
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "62db5aad-12876"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 0
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "0-5e46f945a4540"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6

112.78.1.150

200 OK

24 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (24504)
Size
24 kB (24505 bytes)
Hash
7c073b910d79ad465dcfd1894caef986
526c28d076c1aaae387cdbbf04cb2e64b13b29ab
2428388ee7fb9c89fdfd1191a1fb4a45794d7fd64777ecfd9bc4c06052a17522

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 24505
last-modified: Thu, 21 Jul 2022 08:21:48 GMT
etag: "62d90c9c-5fb9"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090

112.78.1.150

200 OK

4.8 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with CRLF line terminators
Size
4.8 kB (4830 bytes)
Hash
d48cad87ce04970f9a2ed80f2ed2285d
d2ec5b795a3f70ed6cd421554bf0ab3ab1b11cf0
a8fafb3979cb206518537bbd02e5cdaa78a1808b6e58ab8e7cf7941d0b7b344e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 4830
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-12de"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090

112.78.1.150

200 OK

15 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (15090), with CRLF line terminators
Size
15 kB (15092 bytes)
Hash
af19a4367b2194bffa202ad6b91f85fb
11412c40a2d2093b310b6083b96af33bd20ce493
87a3fe035dc2a0c445eb9e792edb0de70ddb9417d4d82ff253015fa847ecb52c

HTTP Headers

GET /wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 15092
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-3af4"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090

112.78.1.150

200 OK

31 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (30909), with CRLF line terminators
Size
31 kB (31076 bytes)
Hash
8d42434f0165da42899648f91f192722
1f15f52c09e82d126c03bfb0c013e973f4958021
7308428f1f0064573f2644aec33aea3312c2701204eeab10564624242ef2787f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 31076
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-7964"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0

112.78.1.150

200 OK

34 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (34217)
Size
34 kB (34399 bytes)
Hash
ffb96099720dde6483d7cab290c543ee
1a6ece8eee36923d795cdf78674b47e7f1b8e94f
cdfdf586f38cfb19c6264343cc6a64adce7ff0961834e96a2f912f01dc29e3f0

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 34399
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-865f"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0

112.78.1.150

200 OK

56 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (56243)
Size
56 kB (56425 bytes)
Hash
f7409f91a34ea35236d98702f4e69f4c
3a3c16cbb1114f8e210b87cf3102a99968bf6a26
04950e48cd4097fb4a540c3abcf445cd92d59bdf9ba40f49cfb180cc94387a2f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 56425
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-dc69"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090

112.78.1.150

200 OK

5.3 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with CRLF line terminators
Size
5.3 kB (5282 bytes)
Hash
678590b3df3abbce815a0bf3b23cfd8c
dcf267a0ae755b6982765030676218c674c8fe7a
f07511e6a8444cb26fa3d57f1abba880d6d2795df092eb70b3f851570bd5bad9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 5282
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-14a2"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090

112.78.1.150

200 OK

4.1 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with CRLF line terminators
Size
4.1 kB (4120 bytes)
Hash
53846f325f2e446382ae390f3f3a55ff
c41a7a4e65e2901392f5a1e62a4d2e2af86d2b29
5d0a8106e2ef49f987b646f846578ae66cd485283ed7531820ac19806e527301

HTTP Headers

GET /wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 4120
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-1018"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090

112.78.1.150

200 OK

4.7 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with CRLF line terminators
Size
4.7 kB (4683 bytes)
Hash
e79fa18089774d120d7943ea80bb5bc8
d3ce566f2d8052756af9b58b97b2304dd569cc7b
c21fa9662ee1c73411982d978db65e7e4bcf4c3e071fe151c96f7e42f0acdf29

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 4683
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-124b"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/style.css?ver=1669515090

112.78.1.150

200 OK

11 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/style.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with CRLF line terminators
Size
11 kB (10831 bytes)
Hash
5afa069bb77876b5dc101ca453772d7a
59e37095914ac311fbd91e887a5a2ec89115dbd3
cac7288149059abe7ab488970924a8ad18543879d8e2520a2a7cf968e42f31d4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/style.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 10831
last-modified: Tue, 09 Jun 2020 11:38:35 GMT
etag: "5edf74bb-2a4f"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3

112.78.1.150

200 OK

4.9 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (4933), with no line terminators
Size
4.9 kB (4933 bytes)
Hash
e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 4933
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-1345"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1

112.78.1.150

200 OK

2.7 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 2731
last-modified: Thu, 21 Jul 2022 08:21:39 GMT
etag: "62d90c93-aab"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11

112.78.1.150

200 OK

61 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
61 kB (61344 bytes)
Hash
614e7805d92c4702107d8a472080102d
02e9c1c0b6158c80c431c9ee6eef9ab36387ec4e
5be8f036c2f8c92a8faa7de65008859beaebf3a396ca42a8a5b7fe4fb8adbd06

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 61344
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-efa0"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/css/dashicons.min.css?ver=6.0.3

112.78.1.150

200 OK

59 kB

URL HTTP/2
gre.com.vn/wp-includes/css/dashicons.min.css?ver=6.0.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (58981)
Size
59 kB (59016 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 59016
last-modified: Wed, 03 Mar 2021 14:16:22 GMT
etag: "603f9a36-e688"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15

112.78.1.150

200 OK

12 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text
Size
12 kB (11818 bytes)
Hash
a4c83c82dbc4ccea81014dfd86396f2e
40d319bc1373acd153528cdc7c636f63c8ff487d
cef377d61163cb55f12a51dd0c8f670ce5bd3dc10c8637bb0bf52b7a7bc80731

HTTP Headers

GET /wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 11818
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-2e2a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7

112.78.1.150

200 OK

2.5 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text
Size
2.5 kB (2532 bytes)
Hash
de38c3656cac28df84c808564e07c7f2
37a3b9d1cd375c3b8e1f9c503abf7dd5c662e01c
1499434474341ae6bea12a035804abdcfe3ba63fce3eeda8b4a61a88a82e0d80

HTTP Headers

GET /wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 2532
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-9e4"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3

112.78.1.150

200 OK

31 kB

URL HTTP/2
gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (715), with CRLF line terminators
Size
31 kB (30987 bytes)
Hash
92dd78ae252e785b6f84aa93582fa5d5
a5bb877e07d04d940feba4f6393ddecc4d3a7a44
0a3139edf4889053a152b7eba3a2482c4d60104fcf32458c986f62f3cd6a5059

HTTP Headers

GET /wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 30987
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-790b"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16

112.78.1.150

200 OK

1.5 kB

URL HTTP/2
gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with very long lines (1519), with no line terminators
Size
1.5 kB (1519 bytes)
Hash
73e46bbd8244a60086283f5fe275d682
b477443fbe8763c8f111877029b7aee9039ef64d
f93483f0aaf24aea4b5534bb8647d22cd9dfcb4d08d2fd1008787bdfb8a6cc47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 1519
last-modified: Fri, 29 Jul 2022 03:18:07 GMT
etag: "62e3516f-5ef"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash-child/style.css?ver=6.0.3

112.78.1.150

200 OK

500 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash-child/style.css?ver=6.0.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type
ASCII text, with CRLF, LF line terminators
Size
500 B (500 bytes)
Hash
3115b10ae790c3352b1125faaf8fbed4
b12ae920448877b8777aaeaf83efc3c7cade5d7e
a9be8a4b5cb75e42e4559be65153fe2d9494e6c8b5ed0a55b39cfec8c519780d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash-child/style.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 500
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 03:40:12 GMT
etag: "34f-5e470b5419f00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/rugby.css?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/rugby.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/splash/assets/css/rugby.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 69728
last-modified: Fri, 22 Jul 2022 10:17:37 GMT
etag: "62da7941-11060"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 89521
last-modified: Wed, 10 Mar 2021 08:07:24 GMT
etag: "60487e3c-15db1"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 115842
last-modified: Thu, 21 Jul 2022 08:13:57 GMT
etag: "62d90ac5-1c482"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/kythuat1-741x450.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/kythuat1-741x450.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/kythuat1-741x450.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 58352
last-modified: Fri, 22 Jul 2022 09:39:38 GMT
etag: "62da705a-e3f0"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 35722
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-8b8a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 121257
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-1d9a9"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 363983
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-58dcf"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/dondep-canh-quan.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/dondep-canh-quan.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/dondep-canh-quan.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 141949
last-modified: Fri, 22 Jul 2022 09:27:28 GMT
etag: "62da6d80-22a7d"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/TPBank.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/TPBank.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/TPBank.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 38018
last-modified: Fri, 22 Jul 2022 06:41:04 GMT
etag: "62da4680-9482"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 9533
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-253d"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/kythuat.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/kythuat.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/kythuat.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 88458
last-modified: Fri, 22 Jul 2022 09:36:50 GMT
etag: "62da6fb2-1598a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/styles.css?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/styles.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/styles.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 662164
last-modified: Fri, 29 Jul 2022 03:50:25 GMT
etag: "62e35901-a1a94"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/slice-22.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/slice-22.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/slice-22.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 1170209
last-modified: Tue, 26 Jul 2022 01:42:27 GMT
etag: "62df4683-11db21"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 67160
last-modified: Fri, 18 Nov 2022 03:00:52 GMT
etag: "6376f564-10658"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 375735
last-modified: Tue, 23 Aug 2022 02:28:18 GMT
etag: "63043b42-5bbb7"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 8051
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-1f73"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 2938
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-b7a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 11224
last-modified: Wed, 18 Nov 2020 02:06:06 GMT
etag: "5fb4818e-2bd8"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 18761
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-4949"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 4334
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-10ee"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1074
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-432"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 20637
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-509d"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 209885
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-333dd"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/logo.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/logo.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/logo.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 13557
last-modified: Fri, 22 Jul 2022 10:19:51 GMT
etag: "62da79c7-34f5"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 29685
last-modified: Fri, 22 Jul 2022 09:25:01 GMT
etag: "62da6ced-73f5"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 23180
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-5a8c"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 19142
last-modified: Mon, 11 Apr 2022 05:04:30 GMT
etag: "6253b6de-4ac6"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 374
x-accel-version: 0.01
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "3e0-5e44c67857440-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/VPBank.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/VPBank.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/VPBank.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 29415
last-modified: Fri, 22 Jul 2022 06:41:10 GMT
etag: "62da4686-72e7"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 73327
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-11e6f"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 21904
last-modified: Thu, 21 Jul 2022 08:21:39 GMT
etag: "62d90c93-5590"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 14917
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-3a45"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 123959
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-1e437"
accept-ranges: bytes
X-Firefox-Spdy: h2

static.addtoany.com/menu/page.js

172.67.39.148

200 OK

0 B

URL HTTP/2
static.addtoany.com/menu/page.js
IP
172.67.39.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 64926
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770755662dd10b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 88932
last-modified: Mon, 04 Jul 2022 05:10:38 GMT
etag: "62c2764e-15b64"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 485416
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-76828"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 3037
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-bdd"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1759
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-6df"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 6475
last-modified: Mon, 11 Apr 2022 05:04:30 GMT
etag: "6253b6de-194b"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 12834
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-3222"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/js/imagesloaded.min.js?ver=4.1.4

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 5629
last-modified: Sat, 13 Jun 2020 11:53:28 GMT
etag: "5ee4be38-15fd"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 2139
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-85b"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 126
x-accel-version: 0.01
last-modified: Fri, 29 Jul 2022 03:18:07 GMT
etag: "81-5e4e9195852c5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/Licogi13.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/Licogi13.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/Licogi13.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 28314
last-modified: Fri, 22 Jul 2022 06:41:01 GMT
etag: "62da467d-6e9a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1834
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-72a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 910684
last-modified: Tue, 26 Jul 2022 14:50:14 GMT
etag: "62dfff26-de55c"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/slice-2.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/slice-2.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/slice-2.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 2245067
last-modified: Thu, 21 Jul 2022 09:18:46 GMT
etag: "62d919f6-2241cb"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/header.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/header.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/header.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 2298
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-8fa"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1687
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-697"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/animate.css?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/animate.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/animate.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 77222
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-12da6"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/BIDV.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/BIDV.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/BIDV.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 26510
last-modified: Fri, 22 Jul 2022 06:40:59 GMT
etag: "62da467b-678e"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 5950
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-173e"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 02:11:30 GMT
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 36874
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-900a"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/VIP-Bank.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/VIP-Bank.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/VIP-Bank.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 54028
last-modified: Fri, 22 Jul 2022 06:41:08 GMT
etag: "62da4684-d30c"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 316
x-accel-version: 0.01
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "2d1-5a7a366472640-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 80863
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-13bdf"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/VCB.png

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/VCB.png
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/VCB.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 36583
last-modified: Fri, 22 Jul 2022 06:41:06 GMT
etag: "62da4682-8ee7"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/splash.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/splash.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/splash/assets/js/splash.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 17586
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-44b2"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 243
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "1b4-5e46f945a4540-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 02:11:30 GMT
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

gre.com.vn/wp-content/uploads/2022/07/tuvan.jpg

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/uploads/2022/07/tuvan.jpg
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/07/tuvan.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 79699
last-modified: Fri, 22 Jul 2022 09:30:19 GMT
etag: "62da6e2b-13753"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 40412
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-9ddc"
accept-ranges: bytes
X-Firefox-Spdy: h2

gre.com.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3

112.78.1.150

200 OK

0 B

URL HTTP/2
gre.com.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
112.78.1.150:0
ASN
#45538 ODS Joint Stock Company

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 18617
last-modified: Mon, 11 Apr 2022 22:56:24 GMT
etag: "6254b218-48b9"
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (112)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size