firefox.settings.services.mozilla.com/v1/
18.165.201.83200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 21:05:15 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 133321d9ca8be95a19f574700824c0e0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: lMHioQT5QzwSAqm2hz8CCGGfCqraFW_BEmFEyHBMBlQ3vjtASirlXg==
Age: 209
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11585
Expires: Sat, 24 Sep 2022 00:21:49 GMT
Date: Fri, 23 Sep 2022 21:08:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8146
Expires: Fri, 23 Sep 2022 23:24:30 GMT
Date: Fri, 23 Sep 2022 21:08:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gRhKEA+yK2HJo+TMmICv3xhzS0heQ1pUehCWq2cZHYHBqZYFV8psOlthUMowP0BDQUpEgp+Slj4=
x-amz-request-id: 6SFSAEGAFNA060SX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 20:44:37 GMT
age: 1447
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 21:08:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
shopquynhxinh.com/
151.106.117.118301 Moved Permanently 707 B IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 23 Sep 2022 21:08:44 GMT
server: LiteSpeed
location: https://shopquynhxinh.com/
platform: hostinger
content-security-policy: upgrade-insecure-requests
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.83200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 20:33:06 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 21:30:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 65cbd6c4094454b31bc32d6426b92cf2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: Xbe0sDrRZqbquH95vg3rsjIHyBoojgLzIOIllsmU_ITdWWNaev1VhA==
Age: 2144
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1915
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Last-Modified: Fri, 23 Sep 2022 20:36:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.146.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.146.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fQHboEadGWbsTVv2YTMdLA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: v4mcJwvR524ZsnpN7mqM4AOLMuY=
cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
104.17.24.14200 OK 4.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
IP 104.17.24.14:0
File type HTML document, ASCII text, with very long lines (11084), with no line terminators
Hash a5775b673c18ffa903cd1a6129ce5f87
ee2569b285a7dbc4ccc95b01a16f06943fade768
ab8ad2f07d5214be2ade4edcd295d5fb8f8aa60971b3ec1348063a8a19659fc9
GET /ajax/libs/modernizr/2.8.3/modernizr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 3980
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-2b4c"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 79692
expires: Wed, 13 Sep 2023 21:08:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wwSwNhGDCf1wLN5HBSx84lcb3Rqoy0B3qEA1D1GNccsRT6qyej1Wy%2Bw196B8q3GGShat05mZwU4hF0kvOvxfbJUn%2F%2F3Um40ArChPZDEgVHNEb4Ib9VJd314UgEMLWS9HZ1ISpU1U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f641e82f01b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 773702
expires: Wed, 13 Sep 2023 21:08:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dBCQiQkhD47EYIjeZGcm0cBogwdvDvjFY955u%2Bu36SMvpdEADfkTkfG1Jtvl%2FYc2N7cFB5fxpKztX%2Br6R%2F8paalSpVOKHLv4nVgFdvuSKPu25%2BdSCMEbNNfFDhx%2BKsLtjKfS41sv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f641e82f02b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e6c9be31449287ca2725eb224a39e88
c65a22026855d7f48e9e735e19c34470e4487066
b6d0504176ab904be26a92b03910531c3a99a30a542d45a1f4865a5166256096
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3364
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Last-Modified: Fri, 23 Sep 2022 20:12:41 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/assets/owl.carousel.min.css
104.17.24.14200 OK 845 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/assets/owl.carousel.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (3184)
Hash 156afaf08dd47df971d3a40926c19974
d3f886560b55ff3c39d628ef16a71ca49cb7ecfb
e4f93dd20cb7feb2c6d408b396e194928381545d24584431ab341ed094fb31fa
GET /ajax/libs/OwlCarousel2/2.3.4/assets/owl.carousel.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shopquynhxinh.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/css; charset=utf-8
content-length: 845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf0-d17"
last-modified: Mon, 04 May 2020 16:04:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9144287
expires: Wed, 13 Sep 2023 21:08:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ou%2FH7xXRbk2YGFupRCLHKYzQl3lir2u133%2B6Jf6seBFKMolcGvtfwqUGPbpK5Gjgx%2Fb%2BT0ct6M8Xv%2BMShYF%2FCEKv4VfjhyxNUxzknXvLUX2Yqk%2F7gpUJOvpS9yjr3u1IlvGF8CLG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f641e87be0b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e6c9be31449287ca2725eb224a39e88
c65a22026855d7f48e9e735e19c34470e4487066
b6d0504176ab904be26a92b03910531c3a99a30a542d45a1f4865a5166256096
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3364
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Last-Modified: Fri, 23 Sep 2022 20:12:41 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (31997)
Hash da09af9c30411ac4ea58fa932c2bcdf1
3021a222be0168efcad5db279a305485935aeff5
19e819601b91eb75c0609dd6343a344f280a94b83e06e58595bafff5b12ca7f4
GET /ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shopquynhxinh.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 10158
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf0-ad36"
last-modified: Mon, 04 May 2020 16:04:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7011440
expires: Wed, 13 Sep 2023 21:08:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vo%2BlYJbI2uB8bWbyZD31%2Fv1%2FqPvu1B1ZRNwWu9FFH%2FZjNZGsKIKy5dfr18nbJBqvAAXoxYMKWegHWmPSHCgHSYzVbKkgsDmh1js1S1N4vatI8lD5Y1ZSDYuaJvgxhwRKXL%2B4F7vP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f641e87bf3b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1556a0be193bc279b35452d87bdbf53d
c309e6cfe22a7268cdfc3453cbc976af1a094f68
39600814119fe930463fc28de515d273de02502c10661c4b65e1f3e4ed6e90c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39600814119FE930463FC28DE515D273DE02502C10661C4B65E1F3E4ED6E90C6"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15889
Expires: Sat, 24 Sep 2022 01:33:34 GMT
Date: Fri, 23 Sep 2022 21:08:45 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e6c9be31449287ca2725eb224a39e88
c65a22026855d7f48e9e735e19c34470e4487066
b6d0504176ab904be26a92b03910531c3a99a30a542d45a1f4865a5166256096
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Last-Modified: Fri, 23 Sep 2022 20:29:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1540d67042226f0f66698423b516edf7
532ad71e93840bc00eead37299d41f289cbc13ef
be9c53d3354e6de7410a7bc9e2bb2455cbe75d5a695257bdb9c035649cd7272c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Server: ECS (amb/6BC7)
Content-Length: 280
ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
142.250.74.10200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (65451)
Hash 81182f4b684635f6bdcbdd907ee66f25
a1f2f151df72ede41397c8131bd47a3ce85575b3
be40946c98d9a78a3c7c9ad097d379ab12549a195bd7a4766919a1d3fd987396
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 15:53:22 GMT
expires: Wed, 20 Sep 2023 15:53:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 278123
last-modified: Mon, 13 May 2019 14:37:17 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/loader/css.css
151.106.117.118200 OK 433 B URL HTTP/2 shopquynhxinh.com/assets/Scripts/loader/css.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
Hash b1aa94b5d3199c73c7f56a9990b54f60
6a5d2c8cc0eb3e019264d8e7fb2939e7d2d646d7
b2bbf446f45039d948c91be2b655bc4487f68a9c8d424ab1e30ae03482cca4eb
GET /assets/Scripts/loader/css.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "836-61d71dd2-1a0247f4cff96cd3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 433
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/loader/pace.js
151.106.117.118200 OK 4.0 kB URL HTTP/2 shopquynhxinh.com/assets/Scripts/loader/pace.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (12345)
Hash fe7f82e5fd65241e8f1dca61cb2b88d3
fcd323c2e99edd80cd938dbca8484dd7de1b513f
a64dc21bbdc26c03a0d9ebfdb9043d678970e0502c6c8bf95f39538be1cd4d3d
Analyzer Verdict Alert fortinet Phishing
GET /assets/Scripts/loader/pace.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "304b-61d71dd2-1f8b93b4494008f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4046
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/sweetalert/sweetalert.min.js
151.106.117.118200 OK 5.1 kB URL HTTP/2 shopquynhxinh.com/assets/Scripts/sweetalert/sweetalert.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (16977), with CRLF line terminators
Hash 410bfc67271e481800dff8ddd389aa31
7cb77fe95101f88b2be83b4b5e41d6978a4199ba
10fce3738007cf3e9c168223e01f7f7e2c20c7c4aceb018807196a777a1b77b2
Analyzer Verdict Alert fortinet Phishing
GET /assets/Scripts/sweetalert/sweetalert.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "4256-61d71dd2-9368070695a85f39;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5138
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
i.imgur.com/o5jblY1.gif
151.101.84.193200 OK 265 kB IP 151.101.84.193:0
File type GIF image data, version 89a, 1000 x 599\012- data
Size 265 kB (265321 bytes)
Hash 991df6cc03a964adf37f00be654ca8e2
e4376a9e2fc84001c99a008b1c6f17514df5728a
1832c5216dd324fa03cfc9d6a16542b791d0c30875f51f8aaf2a9e971fd906f3
GET /o5jblY1.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Sep 2020 20:02:06 GMT
etag: "991df6cc03a964adf37f00be654ca8e2"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 2501840
x-served-by: cache-iad-kjyo7100069-IAD, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663967326.591134,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 265321
X-Firefox-Spdy: h2
i.imgur.com/hYzoyUN.jpg
151.101.84.193200 OK 394 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 800x450, components 3\012- data
Size 394 kB (393542 bytes)
Hash b399939bad7c6e31f0a0fb10150dbc89
17a6c80d5ebbd8e99f321e593512c8cff209a66d
a19d729e9bfbfe11ab60ee95d420d7a77aa1a65b0ead7da6558eee2e7c510116
GET /hYzoyUN.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 01:14:35 GMT
etag: "b399939bad7c6e31f0a0fb10150dbc89"
x-amz-storage-class: STANDARD_IA
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 2078548
x-served-by: cache-iad-kjyo7100089-IAD, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663967326.591284,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 393542
X-Firefox-Spdy: h2
i.imgur.com/EHESWHk.gif
151.101.84.193302 Found 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /EHESWHk.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 0
x-served-by: cache-iad-kiad7000109-IAD, cache-bma1662-BMA
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1663967326.591381,VS0,VE111
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/oZqykzVU5l4
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/oZqykzVU5l4
IP 142.250.74.3:0
Hash a6f99282928381be7678985b7ac77486
2dbee532048c56c89f23fbc1ad373f9ba8436e3c
f8451729fc519532ca1903262737c27f342d0f92a18092246232e94d16e36673
POST /s/gts1p5/oZqykzVU5l4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imgur.com/lTjC72t.gif
199.232.196.193301 Moved Permanently 0 B IP 199.232.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lTjC72t.gif HTTP/1.1
Host: imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://i.imgur.com/lTjC72t.gif
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1663967326.661308,VS0,VE0
server: cat factory 1.0
strict-transport-security: max-age=300
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-frame-options: DENY
access-control-allow-origin: https://imgur.com
access-control-allow-credentials: false
content-length: 0
X-Firefox-Spdy: h2
imgur.com/0JNLZFX.gif
199.232.196.193301 Moved Permanently 0 B IP 199.232.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0JNLZFX.gif HTTP/1.1
Host: imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://i.imgur.com/0JNLZFX.gif
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1663967326.661196,VS0,VE0
server: cat factory 1.0
strict-transport-security: max-age=300
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-frame-options: DENY
access-control-allow-origin: https://imgur.com
access-control-allow-credentials: false
content-length: 0
X-Firefox-Spdy: h2
imgur.com/JYi0uaa.gif
199.232.196.193301 Moved Permanently 0 B IP 199.232.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /JYi0uaa.gif HTTP/1.1
Host: imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://i.imgur.com/JYi0uaa.gif
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1663967326.661641,VS0,VE0
server: cat factory 1.0
strict-transport-security: max-age=300
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-frame-options: DENY
access-control-allow-origin: https://imgur.com
access-control-allow-credentials: false
content-length: 0
X-Firefox-Spdy: h2
imgur.com/XwaqyGu.gif
199.232.196.193301 Moved Permanently 0 B IP 199.232.196.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /XwaqyGu.gif HTTP/1.1
Host: imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://i.imgur.com/XwaqyGu.gif
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1663967326.661825,VS0,VE0
server: cat factory 1.0
strict-transport-security: max-age=300
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-frame-options: DENY
access-control-allow-origin: https://imgur.com
access-control-allow-credentials: false
content-length: 0
X-Firefox-Spdy: h2
i.imgur.com/removed.png
151.101.84.193200 OK 503 B IP 151.101.84.193:0
File type PNG image data, 161 x 81, 1-bit colormap, non-interlaced\012- data
Hash d835884373f4d6c8f24742ceabe74946
20002faf28adfd94ca98cf6ced46f14334b53684
9b5936f4006146e4e1e9025b474c02863c0b5614132ad40db4b925a10e8bfbb9
GET /removed.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopquynhxinh.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 May 2014 05:44:36 GMT
etag: "d835884373f4d6c8f24742ceabe74946"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 30379610
x-served-by: cache-bwi5162-BWI, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 147999
x-timer: S1663967326.768661,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 503
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f883e6a2e679deb7c6b7ac14f728ea6
e9c90f06dd7270fe3ee2f569779f311a52eca1dc
3fc09c667154258e5b8310e233aa77d159dd21bccde5562932fcde41bd06e30a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Server: ECS (amb/6BC7)
Content-Length: 279
shopquynhxinh.com/assets/Scripts/loadingoverlay/loadingoverlay.min.js
151.106.117.118200 OK 12 kB URL HTTP/2 shopquynhxinh.com/assets/Scripts/loadingoverlay/loadingoverlay.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (17017), with CRLF line terminators
Hash f6051170bfa62d5fe7ccaa1435fdf0f0
5bf232823e5e90178604a36dd6b31ddd4ee96381
50b35235a048c344f60a6ad287a6ec11a3383ad5f20dd0b1167cdfb318ff7fed
Analyzer Verdict Alert fortinet Phishing
GET /assets/Scripts/loadingoverlay/loadingoverlay.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "4431-61d71dd2-94355476a92b8d0c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11576
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js
151.106.117.118200 OK 471 B URL HTTP/2 shopquynhxinh.com/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (741), with CRLF line terminators
Hash 5097a17c52a6efcfb0ab93c8a4ff0d89
b512929edfb59ac6bc9dcee000b9774ec052eb53
c5ad9554b3189c1939be2985fa0732c3449864e8d516011ed0fef28617c431db
Analyzer Verdict Alert fortinet Phishing
GET /assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "484-61d71dd2-a6d406fb58a8d56b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 471
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/js/jquery.min.js
151.106.117.118200 OK 29 kB URL HTTP/2 shopquynhxinh.com/assets/js/jquery.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32180), with CRLF line terminators
Hash 3cb332b570e639c6cdacc3c776c18c5e
ca06228188ef535395da250ac9fcbab861824094
be1cc2bad78d42c48e3e4a013ea0c85a1b36fdd03909dc4082e766ad0a760c40
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "1498c-61d71dd2-e85acb2e16bfd58c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 28611
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/socicon/socicon.css
151.106.117.118200 OK 242 B URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/socicon/socicon.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with CRLF line terminators
Hash 795028e5cc4569ae63fed57243cc59f0
24288ab66d5587340b3769d052628c89ee2715bb
441a7027cb967a3d75a9af590d945417b20d5c1448289c52e105cab93e23b3b4
GET /assets/frontend/theme/assets/plugins/socicon/socicon.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "277-61d71dd1-a9be72245025a524;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 242
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/sweetalert/sweetalert.css
151.106.117.118200 OK 3.4 kB URL HTTP/2 shopquynhxinh.com/assets/Scripts/sweetalert/sweetalert.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash f83b8964cc46ae5a31651bf1965d9511
d45b6d35071bcaca46b79fab13ea6bf01258a082
333f10d763f3950d366b61198cb57de26c2721774ddecc235d6d35562b73bb96
GET /assets/Scripts/sweetalert/sweetalert.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "5d05-61d71dd2-a365dca437ff926e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3429
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 180d9e09daf3ae00856f843f339c993c
bdae00ddd1faa9305affcd6b8d91e8772a4266a1
58c8688cfbcdc61e249c203efee6f7aa907f5d5260ecc68448742191afbd10a0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 23 Sep 2022 21:08:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 23 Sep 2022 12:28:59 GMT
Expires: Sat, 24 Sep 2022 12:28:59 GMT
ETag: "bdae00ddd1faa9305affcd6b8d91e8772a4266a1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
shopquynhxinh.com/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
151.106.117.118200 OK 5.7 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (26655), with CRLF line terminators
Hash f4a599c441ea6e923e621f8836a91ec8
d872597a229e8d05731f6e98f45b153fae187f15
efbc88de6f9953035ba9080ef30658145c279500ab8fd0c89d384b06cc859b5e
GET /assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "68ca-61d71dd1-70cad19d56e417f1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5712
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
images.dmca.com/Badges/DMCABadgeHelper.min.js
151.139.242.29200 OK 280 B URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js
IP 151.139.242.29:0
Hash 676eb336bf17b6d9ba8106a096fdd587
22d3b0769cd5aa177e723be2456b32509914fa7d
9e9dc74a53c9a60256b8d4db5b26d02599cea75d3d00e02f16bef59169477a69
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: application/javascript
content-length: 280
cache-control: max-age=2592000
etag: "26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
expires: Sun, 23 Oct 2022 21:08:36 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
content-encoding: gzip
vary: Accept-Encoding
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
images.dmca.com/Badges/DMCA_logo-grn-btn100w.png?ID=c01a36cf-78c4-44cb-8e45-6bae89d5e2df
151.139.242.29200 OK 3.7 kB URL HTTP/2 images.dmca.com/Badges/DMCA_logo-grn-btn100w.png?ID=c01a36cf-78c4-44cb-8e45-6bae89d5e2df
IP 151.139.242.29:0
File type PNG image data, 100 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash f3bc891a4d23e7f1d28acceda596e9df
1501cbbee5ad990a482c9cce71b06509024b7edb
c9604d43e9ef350f22eb191f170a6cb8787feb44c22feabc9bcfbc90317e200e
GET /Badges/DMCA_logo-grn-btn100w.png?ID=c01a36cf-78c4-44cb-8e45-6bae89d5e2df HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: image/png
content-length: 3713
cache-control: max-age=2592000
etag: "b4f45bb55e2ca1:0"
last-modified: Thu, 22 Apr 2010 19:55:17 GMT
x-powered-by: ASP.NET
expires: Sun, 23 Oct 2022 21:08:02 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/DMCA_logo-grn-btn100w.png>; rel="canonical"
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
151.106.117.118200 OK 2.0 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9527), with CRLF line terminators
Hash 11f8277cee8e26cf2269050558a7c5e8
73c7cbced2e5170d11b5b357a1ee58b02c4ec3d6
8b1d521b9949e4805c38574f3741f8b7b548d61088c62e8a6a9d7dd1363936e7
GET /assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "2576-61d71dd1-891bbda0b95d8098;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/animate/animate.min.css
151.106.117.118200 OK 3.5 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/animate/animate.min.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (55788), with CRLF line terminators
Hash d07304bca0fc5523d0e96d7ed4fe5a7d
3e55645db3aa84d6d818345294061b4a961238b7
c51911b2cd41abde4ab8a37cd8ca58b98542a096c6787236ec88e95ce92166ca
GET /assets/frontend/theme/assets/plugins/animate/animate.min.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "d9f2-61d71dd0-822761a15e179a9e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3535
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
i.imgur.com/JYi0uaa.gif
151.101.84.193302 Found 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /JYi0uaa.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopquynhxinh.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 0
x-served-by: cache-iad-kiad7000044-IAD, cache-bma1662-BMA
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1663967326.779797,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
i.imgur.com/lTjC72t.gif
151.101.84.193302 Found 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lTjC72t.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopquynhxinh.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 0
x-served-by: cache-iad-kiad7000104-IAD, cache-bma1662-BMA
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1663967326.768614,VS0,VE125
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
i.imgur.com/0JNLZFX.gif
151.101.84.193302 Found 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0JNLZFX.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopquynhxinh.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 0
x-served-by: cache-iad-kcgs7200117-IAD, cache-bma1662-BMA
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1663967326.779819,VS0,VE118
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
i.imgur.com/XwaqyGu.gif
151.101.84.193302 Found 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /XwaqyGu.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopquynhxinh.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Fri, 23 Sep 2022 21:08:45 GMT
age: 0
x-served-by: cache-iad-kcgs7200079-IAD, cache-bma1662-BMA
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1663967326.779899,VS0,VE122
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f883e6a2e679deb7c6b7ac14f728ea6
e9c90f06dd7270fe3ee2f569779f311a52eca1dc
3fc09c667154258e5b8310e233aa77d159dd21bccde5562932fcde41bd06e30a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Server: ECS (amb/6BC4)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b229aee713fde17b38982846b05bc97c
4deca37216ea1355741dc535aaac3fbf2fd7f6f4
6e08d3899e3e723286a6c6d8ad4bf766f44837918af9da8b92b4f32b61b94735
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Server: ECS (amb/6B77)
Content-Length: 279
shopquynhxinh.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
151.106.117.118200 OK 1.7 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash fca2686f57f652476c501041945f949b
651c2ad1b941cdf9c84140fdc5ab7c38708a7a0d
d89a85c0afb495f57974170592f032b9758509f99270612aef5b4ab24e680ca0
GET /assets/frontend/theme/assets/global/plugins/magnific/magnific.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "1c86-61d71dd0-cfe7b2ea4a012894;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1656
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
151.106.117.118200 OK 11 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65241), with CRLF line terminators
Hash 93deb87f495cc56952bd08bd190dedb1
e00133cc429db751e3be53173b50020fe7d9a2ef
8c008c7ec4bc5de98856214ce50cbc2b63bb3d6f6e8e6bf9a369daefdd4808c7
GET /assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "137b2-61d71dd1-a79b76cfd1a76b68;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10889
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
151.106.117.118200 OK 1.3 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 8508e1cecd36581b6c0e9c2aa8fd9412
85d20d99f959f5bb1811ddacc2747607192515d2
c4ef4133acce2da6b081497e2af9b78024e1f4923c80155bb976f57942b33b69
GET /assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "143e-61d71dd1-7061cc01fac9740b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1260
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/themes/default.css
151.106.117.118200 OK 1.8 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/themes/default.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (615), with CRLF line terminators
Hash bd57c1c650cff67c95133aaa0e62b374
bcfe5befb2196b8b0f6833376f6d2f49c650be9b
d782a28efe92571c58a246673088371af53fc4e41f8a9454e17ed2fa4684144f
GET /assets/frontend/theme/assets/demos/default/css/themes/default.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "399d-61d71dd0-8585a4ba9b3f95a5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1791
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/custom.css?v=12
151.106.117.118200 OK 447 B URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/custom.css?v=12
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 25afeb6bfd0b0d7948e557f937ff60cf
fa5a96e645cc64f9ee1cb44ed009c6b35fdfabe6
1b873d2c316a766b2fb441e222f06093b8ad0e76e9f210859766ec4a11c55a35
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/css/custom.css?v=12 HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "104e-61d71dd0-2363deadacad0a1a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 447
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/css/vongquaykimcuong.css
151.106.117.118200 OK 292 B URL HTTP/2 shopquynhxinh.com/assets/frontend/css/vongquaykimcuong.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 49af05c2a991f7b4403cb834845aa41d
979cf703f60487d813cd5f525b5c267263f3eeac
d036b37076b83a5bcd6cf4b121479d6ebc5623651b0c82aa21258fed87ab83dd
GET /assets/frontend/css/vongquaykimcuong.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:23 GMT
etag: "30d-61d71dcf-a8ebc8a164e58ebd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 292
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
151.106.117.118200 OK 9.4 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32033), with CRLF line terminators
Hash e0fa1f9e22d69aa1031bca31d76bdd25
4b13252a34c819bcfec7a7f0a98e901ad0d9d798
1764d5183773753a27fec0f63746ae5002ae0efa85cf4bfc20fc5652314b2ded
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "90c0-61d71dd0-90994ffb223ac44c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9411
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/plugins/owl-carousel/slider.js
151.106.117.118200 OK 467 B URL HTTP/2 shopquynhxinh.com/assets/frontend/plugins/owl-carousel/slider.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b160eae180eb37221ba75c589a2c72a0
0e3ff616c21be2dec86e94e55f1c7fe6d50df0a2
cd43a9f38d2c25a102aea02339d0f3817d72473d3afdaa933d3b8cbe7bb74c84
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/owl-carousel/slider.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "9f8-61d71dd0-718d90a506c33862;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 467
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
151.106.117.118200 OK 1.3 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d61655ad9f6cbc591d88737e8d93fd2a
b404b9c8ec60caa457ad03bbf11398223b5af5e4
f27c3db5ca3505f1213fef1e25e7ad123dec76a8b750bdeee6a1bbd18517089c
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/jquery-cookie/jquery.cookie.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "cbb-61d71dd0-5024dac464957af8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1253
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/css/style.css?junoo=153832811
151.106.117.118200 OK 4.9 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/css/style.css?junoo=153832811
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type assembler source, ASCII text
Hash 0bf959a43b05c5e9cf0dc518607fbfa9
b128e5d665718cf1a7a080c11259df38d0579bdd
f30ec253819d3136cf330ff1013d3ae6d534ffc594383fa2f7c4c4c73f4abb68
GET /assets/frontend/css/style.css?junoo=153832811 HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:23 GMT
etag: "5f57-61d71dcf-e30deec0dedf037c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4932
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/css/util.css
151.106.117.118200 OK 6.4 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/css/util.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 8748e30eb374bdcd08e7e1dbe51d0278
5a2e367146cab5f12bc7795ecc607c97fa94965d
534c45b6d4e4830e34ad8d264c0b83ae4dc49efe14d72cc53a8f795a4f1fa08d
GET /assets/frontend/css/util.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:23 GMT
etag: "1547c-61d71dcf-50778be05f36fa94;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6410
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
151.106.117.118200 OK 3.8 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9959), with CRLF line terminators
Hash d2aabffbffab14648b9e4e2c1e00fe4c
febb3dbc997a45c0e5735275d1f71f94c8bf5724
8a15fe1dd256a53970fa5bab0c30e2b0beb72f4be31211a64af73ca5624ae1dc
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/jquery-migrate.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "274e-61d71dd1-66229de9c9faaa97;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3835
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/jquery.easing.min.js
151.106.117.118200 OK 1.7 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/jquery.easing.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3323), with CRLF line terminators
Hash 2f20be5159dde480b8845596e2da553e
90a442f521c7f01e3924476f8870cc2048a526af
a01ccf3cfa1cf49b2f6de102c027c0a8e0e226c65acc8bd79889546aa3f90f84
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/jquery.easing.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "1431-61d71dd1-5a39b4579e41ff39;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1691
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
151.106.117.118200 OK 3.4 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash e247a7b3b18cd9e53e56e6a5499817fd
b67d8b4fbc1f4afb9ccb6a6345c1f638e3fe24cc
42ce06d2bf9cfd295a7670c17c9869b919f7fb005932f8cdb6f72cb9cc2e2714
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/reveal-animate/wow.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "3ec1-61d71dd1-43cc48eca3c8c6cf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3351
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
151.106.117.118200 OK 247 B URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9eab03b73040a03cdef611e9fa8eaf9a
dcde0c480a1e71f0f6a6e1ea577f2461db51a3e9
c3776ca82f563f873f2693344a1ed5331449539c0fadd46ac80d3871cef4d018
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "1e8-61d71dd0-a2a45e71e7c2391;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 247
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
151.106.117.118200 OK 7.3 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (22205), with CRLF line terminators
Hash 4964c753813aed882d4d2385e8469689
cf292d21f4cd4178f23ad6281d3424b1e7734c82
89cc597c2cfa6db60a5b8f406c44592d8832706b34d31a4e401a683677759267
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/global/plugins/magnific/magnific.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "5747-61d71dd0-ad0658133aa41090;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7294
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
151.106.117.118200 OK 509 B URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (904), with CRLF line terminators
Hash 55ecc7595cbd89a1853248c4ec64e05c
3401eae34376bcee0998fced0572c4e2d8d845c9
33ceb17bfdc2fbb7533355eadb63192be4f067cb808aace161a6baf9000838c6
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "42e-61d71dd1-cd89016baca8ed9a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 509
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
151.106.117.118200 OK 2.5 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (7808), with CRLF line terminators
Hash 8c9f68d28bfc22093392cf9fd4d40483
1d949534d395f19845cf95043801eabd3c753eb5
5d4bf73c5263587ff1e700d55769ea8ed14eb9668b69ac263fff7c5a08dd95c8
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "1f78-61d71dd1-324c9c292dc9a545;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2467
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
151.106.117.118200 OK 8.3 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (645), with CRLF line terminators
Hash d4fa62b1f11241dd077a208732df2dae
d5cdcd4d9e1465bebfb69f4f1e78da001875f9c6
cec9210d0416d700463b8cb5a8276f4c9ed5673624a6591b3369bae18286d381
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "5a91-61d71dd1-6efd22f3d770b83a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8253
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
151.106.117.118200 OK 2.6 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash e4f3f7c3075e1434e09707c078a2737e
abaf15b138af15c1ae29cccdd011d33586a54215
c915fe39a96f5f52b8ac5aebb16f18205245dfc6b67a0ff6749e558b8aa3cc6b
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "240d-61d71dd1-46dafa5ca2881fd3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2586
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/bootstrap/css/bootstrap.min.css?v=1759829493
151.106.117.118200 OK 18 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/bootstrap/css/bootstrap.min.css?v=1759829493
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65191), with CRLF line terminators
Hash 9ee206c9db156fa36a2171867186590e
aeb944bb2d474bc717d858dc7207c0c45385c8ec
7e6c50fe28706744bd7dc4616f4c0c7f35b506a8ee4deb251b5f699979e23715
GET /assets/frontend/theme/assets/plugins/bootstrap/css/bootstrap.min.css?v=1759829493 HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "1ce34-61d71dd0-ea5c03c6178ddae0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18312
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f883e6a2e679deb7c6b7ac14f728ea6
e9c90f06dd7270fe3ee2f569779f311a52eca1dc
3fc09c667154258e5b8310e233aa77d159dd21bccde5562932fcde41bd06e30a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:45 GMT
Server: ECS (amb/6B8B)
Content-Length: 279
shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/plugins.css
151.106.117.118200 OK 21 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/plugins.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (459), with CRLF line terminators
Hash db42b59f8c2c0a72140dc9ec6fbfdadf
0e214eefbcba9ee3507131279f65327d80d78594
6a8a2faa5403ae54c3d1a3acc8c799c638eb23868b3848cd4826da42cf7f81a6
GET /assets/frontend/theme/assets/demos/default/css/plugins.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "48073-61d71dd0-26175d232172593a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21007
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/components.css
151.106.117.118200 OK 48 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/demos/default/css/components.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 2d47fe47b73590ec778b6cacc9616a12
06c3d848d4957cd41e68db22c0d1517ec3d5a360
a3d649d250631ccb8a7b8d7eacb1ea5502e7c477960a0d97713f808cdfda1ae1
GET /assets/frontend/theme/assets/demos/default/css/components.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "81dce-61d71dd0-9753f582441cd0b0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 48073
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
151.106.117.118200 OK 17 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32172), with CRLF line terminators
Hash 3f949932df92624b9e2fd2e810f08e9e
e66b85bc833f541345166f6e4d5324e1726acb6e
060d6a86de32bcc3c0cfb2003e7c35e133ff70ff584fc123adc4661419be0864
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "1287d-61d71dd1-3df95b6619c3f51f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17072
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
151.106.117.118200 OK 1.4 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 8c8c5f9c951a8376da8f2b6a0c0e89e6
9aa217e0390eea3ce983e6d6f9132fd7b45f5a43
f854ac1e328d9f019bf18c8b9bff5222dcd2df3cf5c766c5a50734a8b26fddfc
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "fca-61d71dd1-4abcdc46a400e50f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1363
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/base/js/components.js
151.106.117.118200 OK 5.5 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/base/js/components.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 37809b214a60b8751cc9e976e4dd6abd
685fde1cd35b109f32c4c1b47db032e607d723bd
848b39ceed6054f27e28459117f9975786a8fe98e99f326e47dac7518f5c1ff7
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/base/js/components.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "66fb-61d71dd0-d8e9e7e44d28b70f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5528
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/base/js/app.js
151.106.117.118200 OK 3.5 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/base/js/app.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 098fb7b2d4f08e6d73b15b202f6513b4
52c46e052eb49f64166fecfba797b0d187e8ae1f
d1b546846b29276f55bc3a74ffaab6e88a858becdb971f8b2d21b2d246577a9a
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/base/js/app.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "3580-61d71dd0-f6e2b8d9dcb9ace4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3471
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/plugins/bootbox/bootbox.min.js
151.106.117.118200 OK 3.5 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/plugins/bootbox/bootbox.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9748), with CRLF line terminators
Hash 4401c10c8cf17f59924840908dddca3d
950049fd6ae2ba7856353029e36c94f5bd151033
daaa0667dbf90b12a6d0bdc9faadd95567fdb8eb8668a420f2470ed96e90073c
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/bootbox/bootbox.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "26fe-61d71dd0-e35a6e60655824ea;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3522
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/moment.min.js
151.106.117.118200 OK 12 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/moment.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32005), with CRLF line terminators
Hash 4eefc901728b30fc8bacc1f49131f109
2d7a21f97dab85da2fb1af27dfb4f17b1a4eb99d
e276e5e7fc2050f906eb065702c8d2ab18bd9051f208bf33dc37cfdec5ac71aa
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/moment.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "868f-61d71dd1-8f8454fefbdbaec0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12146
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js
151.106.117.118200 OK 28 kB URL HTTP/2 shopquynhxinh.com/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 (with BOM) text, with very long lines (647), with CRLF line terminators
Hash 8293c7b68a7cfa3e7ef81ad1e8d623ac
5e120d6445193b4637b3059a4530beea37ab8f51
8f9bb3db0bb2948544713c87753e2098c19c66dca29d46e44d6221ddc37fe858
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "291d8-61d71dd0-65e753bcb6d8034a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 27847
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/js/common.js
151.106.117.118200 OK 575 B URL HTTP/2 shopquynhxinh.com/assets/frontend/js/common.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 03235bb38d1598d5f61bffa55c5192d7
9c6e720c44951713613a249eeec0bb1b57b7a25c
b36f86216eeea26aaba668e6855bd1e7cb4dc493a69808dc2549550528892872
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/js/common.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:24 GMT
etag: "6a8-61d71dd0-48004066c5c26e67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 575
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/bootstrap-filestyle.min.js
151.106.117.118200 OK 1.7 kB URL HTTP/2 shopquynhxinh.com/assets/Scripts/bootstrap-filestyle.min.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6327), with CRLF, LF line terminators
Hash 39b3eede6acd28352f438c820bbdde1f
d6e5de1fbffd260abd8345a6b57e49b861e9fb00
6eb61ff63bf5713e341dfe35924bea06d0ed6e75f6a87961a637f8cdba106651
Analyzer Verdict Alert fortinet Phishing
GET /assets/Scripts/bootstrap-filestyle.min.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "19bd-61d71dd2-8269c765e3d95cb4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1736
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/css/custom.css?v=23
151.106.117.118200 OK 185 B URL HTTP/2 shopquynhxinh.com/assets/frontend/css/custom.css?v=23
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 5bc8ee2718049c432e3a069e08666847
0ec5fb82f14bbd6ab34ed75142f12ef208d8b155
bbade555ea2a14f13aa9b28206562e9dbe8fc5726ec860deadbbe1cab7239792
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/css/custom.css?v=23 HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:23 GMT
etag: "1e7-61d71dcf-acba20bc4e4087b1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 185
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/Scripts/rotate.js
151.106.117.118200 OK 2.9 kB URL HTTP/2 shopquynhxinh.com/assets/Scripts/rotate.js
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 4b71ff705e86e51f5bc1a77971896be4
6f0aa4fbaa4713b842c7e26547853afb703f12fa
fba73f51de97f9b26b8465e2e41fa104a78866654d5a020109d94f4577e2215d
Analyzer Verdict Alert fortinet Phishing
GET /assets/Scripts/rotate.js HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: application/x-javascript
last-modified: Thu, 06 Jan 2022 16:50:26 GMT
etag: "2b97-61d71dd2-da53b4b78e566fd7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2941
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
job.fpt.edu.vn/Content/images/logo_unit/garena-logo-20210415164802.png
104.26.11.134200 OK 74 kB URL HTTP/2 job.fpt.edu.vn/Content/images/logo_unit/garena-logo-20210415164802.png
IP 104.26.11.134:0
File type PNG image data, 4096 x 1089, 8-bit colormap, non-interlaced\012- data
Hash 459aed305786d2c8d3ebdd8c86ec4b5d
a9787b6d8fa57706c525cb95cfa662c75061784d
4445fe49fbfba5c6649eef467680e1373ffc5cbbc7f673c545d44354530c7ac0
GET /Content/images/logo_unit/garena-logo-20210415164802.png HTTP/1.1
Host: job.fpt.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: image/png
content-length: 74541
cf-bgj: imgq:85,h2pri
cf-polished: origSize=146681
etag: "e888e86cdc31d71:0"
last-modified: Thu, 15 Apr 2021 09:48:02 GMT
x-powered-by: ASP.NET
cache-control: max-age=1800
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2FERR0sxlft73b2LeEj866b0FxBB9mPCW%2Bogi0QhBNA80cKgRS%2B8W1sZal1kQroPjaNmIGKoKWhla%2BotFQXWqBJHuDjLLqmvzombDkPcQNlt7xQvK1OUmaT23o5hIO2s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ea0b28b503-OSL
X-Firefox-Spdy: h2
cloud.babyshark.me/files/images/image-19bfd3b1-d19c-4068-a410-b09d35b403c4.gif
172.67.204.74200 OK 654 kB URL HTTP/2 cloud.babyshark.me/files/images/image-19bfd3b1-d19c-4068-a410-b09d35b403c4.gif
IP 172.67.204.74:0
File type GIF image data, version 89a, 350 x 210\012- data
Size 654 kB (654438 bytes)
Hash 44ebff9908b06a0a600f3501bb6433e2
21e06cb128f320ea9769e196f1749f1c0e141d5e
b23047e574e1519cfda3057071f8dc9dc7bc9e327b680389e43c78ccd9060c25
GET /files/images/image-19bfd3b1-d19c-4068-a410-b09d35b403c4.gif HTTP/1.1
Host: cloud.babyshark.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: image/gif
content-length: 654438
cache-control: max-age=508522
last-modified: Mon, 14 Mar 2022 03:59:40 GMT
x-rgw-object-type: Normal
etag: "44ebff9908b06a0a600f3501bb6433e2"
x-amz-request-id: tx0000000000000447da44f-0063279ec3-1ccfd03d-sgp1b
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin, Accept-Encoding
x-hw: 1663637209.dop029.ma1.t,1663637209.cds014.ma1.c
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NRQ9irOF8irFBJlq2cwyr31sPPS9L1TnnNgXqUiQxMwWvpjHIkeRIsIKvpcfgbNJ7y1sDzVTO%2Fyn8d8Hh%2FZ8tjVg6foRQ0v3H5YkzCIq2Wb7SlEMbsz3jyfWQJqc81badP6KCRk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f641eb3af21c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1540d67042226f0f66698423b516edf7
532ad71e93840bc00eead37299d41f289cbc13ef
be9c53d3354e6de7410a7bc9e2bb2455cbe75d5a695257bdb9c035649cd7272c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:46 GMT
Last-Modified: Fri, 23 Sep 2022 21:08:45 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.24.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shopquynhxinh.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 79498
expires: Wed, 13 Sep 2023 21:08:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PTLvj3zTwJuX5aWC8Qh9t7gIKyBT%2FnRAOe3%2FKYL5ky93OxUxgAE4n6VsnezNdcgBk1jaXOn8KLqw6Jz8b7dMXQXRDnur14d4KOeuJgHKIL6Mqs7M%2BBJFvmZao5sdsmFlP52IkGAF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f641ee5ce2b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8100
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:08:46 GMT
Connection: keep-alive
shopbacgau.com/upload/userfiles/images/sale.png
172.67.185.104503 Service Unavailable 24 kB URL HTTP/2 shopbacgau.com/upload/userfiles/images/sale.png
IP 172.67.185.104:0
Hash 22234143fd93b7ac0eed4737c1a02cab
166d7fdbfd2ef21189452e47ca026c0c6f0033eb
830ed8636d52ea3303dfa501bc79f7eb4ca22d8035fffbbcbdb4ecf88d448556
GET /upload/userfiles/images/sale.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V7XMMA2JdZVpJGc5G%2Fg2iHZbTbsHEcZhqH2CssvLoaETrD0lYpAOT1pFi%2Fyp8Wv%2FRJXf87NsP4LRtLXBktXnotIDDEoPJliaYAXUVnFxx7O5knAdmK1m83oaQY2HPR6wjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ec6e9cb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/g%C3%AC.png
172.67.185.104503 Service Unavailable 14 kB URL HTTP/2 shopbacgau.com/upload/userfiles/images/g%C3%AC.png
IP 172.67.185.104:0
Hash 305f2a9740846e39a8a1ddb8fac4e1dc
9c7b1c5d19be6b2ed865033eb57dedbafb2f9e86
438860076f4c28ede3b06e3f91533d69c1bd023174866e9a4222b7ac7304b242
GET /upload/userfiles/images/g%C3%AC.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PpJ%2FtHKPsV1%2Bp%2BgSIupsOPD3radfQUqzHQVzpPZs8c9ODCdWPQR1FRQddmcVFe%2F%2B1SACH4gASSaKdf5o56N8KiNZETYnflWNHxojK4F1nFLHSCQRxYTAlIdhDpq%2Bl1LL7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641eaabbeb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8100
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:08:46 GMT
Connection: keep-alive
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Hash 7fa68490a833a8fa395e5f3bffafc052
1880e3743548106319713b937e7769eee6b1ce21
30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shopquynhxinh.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 23:49:27 GMT
expires: Wed, 20 Sep 2023 23:49:27 GMT
cache-control: public, max-age=31536000
age: 249559
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8100
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 21:08:46 GMT
Connection: keep-alive
shopbacgau.com/upload/userfiles/images/g%C3%AC.png
172.67.185.104503 Service Unavailable 8.4 kB URL HTTP/2 shopbacgau.com/upload/userfiles/images/g%C3%AC.png
IP 172.67.185.104:0
Hash df87334b0454f4014d94a04851e7c95a
021677e34364bc026cefc2e88076214d05e4ad1c
dd15a76a033e144104d72997367fdc98a665eaea306316077ac1f2c5700ee9b6
GET /upload/userfiles/images/g%C3%AC.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ruP06pjGhWq0Ca1X9%2BMUlXayLDUU6SrFbzmmTdfEoOGPGK%2BFjYlZExNMCRDimV1N0UxMb3WRgEco0I3EC4f5qpJh5O72aNGKMvi4deA91QoEkKh5G9WzOxTa3E0FLQRNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ee89c6b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/noho.png
172.67.185.104503 Service Unavailable 8.4 kB URL HTTP/2 shopbacgau.com/upload/userfiles/images/noho.png
IP 172.67.185.104:0
Hash 560ce72cd04356b3dc28351f0c8b00e3
be2dd749216fa3fcfc913e967123c80f5990e942
3597add9bcd02a3946e8735b9a0b29e02d9ebcd5d25bcbc6ca72a4eca7b407f0
GET /upload/userfiles/images/noho.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p1j9fDbXMX4FedkYASLkpVycQZgx5m%2B9y3cZ%2BA5UTX4PBQfbS1HvH4fbPDYviOkww7df1qhB1TQkYuP21hCMvE%2FF%2F8adov%2BXfDtJmL5i1CbgPjchyl89UQBEYavJOr6qyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ee89c5b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:26 GMT
age: 82640
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 61059307f07edc4e2ba9d07a258bca43
370d166426ad83fc04ccb6e300238d8cb6ab644a
55ec802097ab49f275686e99844ff4a3b554c8998213bb9c3f0380709297c55b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5936
x-amzn-requestid: 39e79389-c158-4427-aae0-b1d0dc1d0377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VowElZoAMF2Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfd1-2da28eb66f876af76158b090;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -DSp0__jaBzizsfagTtIpwhkPqkvjS1L6T17J0OS5W0QhZww03ywpw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:29 GMT
age: 82637
etag: "370d166426ad83fc04ccb6e300238d8cb6ab644a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 84024
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext
142.250.74.10200 OK 15 kB URL HTTP/2 fonts.googleapis.com/css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext
IP 142.250.74.10:0
Hash 06f1917eb06d95e91e60498848afbbb9
5cc132c8a3f092c3fa99d394c64b0944a795b8b5
07167e5ed7ba987b20d97a867a0a89d567ba72a52efde332fbf055752953e0eb
GET /css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 21:08:45 GMT
date: Fri, 23 Sep 2022 21:08:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b877ead4a15221fdd278ef27f281a7ec
48c10714503e8dfdd3e3c3d39b919ef2792f0d15
f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gWZNsIn_FEbYwMeR1JArmPEgyuHEGgWsfb-wB6P_NrmoHhNgvGWoPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:07:28 GMT
age: 82878
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7606ff88f05062b66970d9805f38987a
d47db5fcd83023b4a8de40a47d4510e183de387a
20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8497
x-amzn-requestid: 8543ac70-48ab-4523-856f-5d5fa1191c97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yin-pEryoAMFTfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324205d-660bba3f655f940d143bc437;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:06:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e9KUFhjuFMzjuh37rFiNKaMNVaGZwPGBkLrv0zgfSTT7dCIuWj4G9Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:27 GMT
age: 82639
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.upanh.org/2022/05/02/20220502_204135.jpg
172.67.165.252200 OK 260 kB URL HTTP/2 i.upanh.org/2022/05/02/20220502_204135.jpg
IP 172.67.165.252:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x450, components 3\012- data
Size 260 kB (260220 bytes)
Hash f7f734d180bcb7a78acdf72e1c4dea03
b6ec4dbeb81bc605dd3659a0324106177b5088f3
18548f743893aab3bd1985e3488922f673f7cdac9458fd57c1899c2659832caa
GET /2022/05/02/20220502_204135.jpg HTTP/1.1
Host: i.upanh.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: image/jpeg
content-length: 260220
last-modified: Mon, 02 May 2022 13:42:45 GMT
etag: "626fdfd5-3f87c"
expires: Sun, 23 Oct 2022 21:08:45 GMT
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2BCM8idgmHeha5IRysME11fx0f0wXtC6QtnDvYU8O3Xa%2BChK1d107f9rSHVfDieppvsgXdZI%2F0h%2BrbOgE1DEZcAc8e0Zw9W%2BM8%2FJP4PuHRcsG%2BgGUhRNMlDnLU35vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641e95b79b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.upanh.org/2022/05/02/20220502_203541.jpg
172.67.165.252200 OK 697 kB URL HTTP/2 i.upanh.org/2022/05/02/20220502_203541.jpg
IP 172.67.165.252:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 697 kB (696947 bytes)
Hash 0f1b793577cf5e7d91c9be164f49c23f
5b6c203cc9f61a459643c005e612c84a1dda4f3e
81cf9a692569b2d27b544a7b32cbdb3c62c22152f1426f7dd4231c4651824cf9
GET /2022/05/02/20220502_203541.jpg HTTP/1.1
Host: i.upanh.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: image/jpeg
content-length: 696947
last-modified: Mon, 02 May 2022 13:36:29 GMT
etag: "626fde5d-aa273"
expires: Sun, 23 Oct 2022 21:08:45 GMT
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yLoGHh2%2BKGTZ4g0ZT5xSgYCgqiwmX4ScfOMsmtX10YtM2RlTnNt4YVOPQI%2B8Hm%2BvrWz8pYURXtMFVbnTticHdxXhJfhzdkRjU5DdeN5J%2Bzzd7Fi8uLJpLJoZ2s705A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641e95b7ab4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/1%20(2).png
172.67.185.104503 Service Unavailable 158 kB URL HTTP/2 shopbacgau.com/upload/userfiles/images/1%20(2).png
IP 172.67.185.104:0
Size 158 kB (157476 bytes)
Hash 2591b297042cf7e969b473b207445005
c4c0a8a04a1cee1b77cf506d9a8eb9b6f98608a0
1d16bb904f5b76577a10650fb01304d7c4129db462a13750651b373a25f77cdc
GET /upload/userfiles/images/1%20(2).png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZYwYHBM6qRiuwAp6N2dxroxzgke%2FDhnuW5twFXRf1UE94YU1rR555w0HsUyWeDJj8Let4hWolEa1G%2FiK1RAJuMdQ9Q8As2j2ZFL3C2R8gOCaQ1Q5rY2p9erpnTfDfohrrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641eb0c3ab4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 593149bcd358a589b546299ed1238523
49b041b55bc05ed34e1128fcd53a7a1f4b347f4d
8c14a724632e43a28d5943033566cf51c633ecda36a60a18d61c3afba828230c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2276
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:48 GMT
Last-Modified: Fri, 23 Sep 2022 20:30:52 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
157.240.200.14200 OK 92 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (18671)
Hash d8c6b94e84a90fed34000c976daa1d25
5992f8c12fb0c978eb711891ba329728615675bc
aa8fb8892b2902fd40a3979086cb43e47992cd1c70a64fe3349175f9ecdb7ad9
GET /vi_VN/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5356068511840b3a1ad4471ab150fa13
etag: "dff0c785bed7ba2281f2caf7166867d8"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 23 Sep 2022 21:22:30 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 2Ma5ToSpD+00AAyXbaodJQ==
x-fb-debug: /bQnzlyST4b8YrbwSaNTbjZ1wigaffCRPMhb0O7lVAVDP/in0VPNf2vPxlj51UazmDqx9IR/TEefE/+BNvnvHg==
content-length: 91510
x-fb-trip-id: 1679558926
date: Fri, 23 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 593149bcd358a589b546299ed1238523
49b041b55bc05ed34e1128fcd53a7a1f4b347f4d
8c14a724632e43a28d5943033566cf51c633ecda36a60a18d61c3afba828230c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2276
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 21:08:48 GMT
Last-Modified: Fri, 23 Sep 2022 20:30:52 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
shopbacgau.com/upload/userfiles/images/noho.png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/noho.png
IP 172.67.185.104:0
GET /upload/userfiles/images/noho.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WummSSS8VQ9%2BA3yzCU1VGGNcpgCGQenjMtgzspIgt45kiutfi2MfGJ7nILLReIiRas8GOzEjRwwFrMe0WgbefOXNsniH5HWCBQctRx2P5eYh%2Bfzdz3QVLNBckY8IQJEVJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641eaabadb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/36.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/36.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/36.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Thu, 06 Jan 2022 16:54:03 GMT
etag: "212f5c4-61d71eab-998fc29df1902ad1;;;"
accept-ranges: bytes
content-length: 34796996
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/member%20(1).png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/member%20(1).png
IP 172.67.185.104:0
GET /upload/userfiles/images/member%20(1).png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ozZ3%2BvFXK3b%2BZOX0Gv5ij5N48x%2F2705FQdXrikDlzAETMEgPAMtK78s2lvs78dxbsVQtVtPJkESomBqoFbvOKbvV7vtJcKhUrkz%2BL6PVKrWg2v5sM7lP1heKVP%2BWSrG32w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ee89b5b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css
IP 104.18.10.207:0
GET /bootstrap/3.4.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 02:09:03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 58a14c611aed8364c087bd7ac1dea21e
cdn-cache: HIT
cf-cache-status: HIT
age: 12077021
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74f641e8aae2b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto|Roboto+Condensed
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto|Roboto+Condensed
IP 142.250.74.10:0
GET /css?family=Roboto|Roboto+Condensed HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 21:08:45 GMT
date: Fri, 23 Sep 2022 21:08:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
asmobile.vn/storage/images/O5Q1EvfpfR_1648192257.gif
172.67.173.52403 Forbidden 0 B URL HTTP/2 asmobile.vn/storage/images/O5Q1EvfpfR_1648192257.gif
IP 172.67.173.52:0
GET /storage/images/O5Q1EvfpfR_1648192257.gif HTTP/1.1
Host: asmobile.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DLWyxnF4EcuWurQh5kTtRtxAsrhW060%2BANFs6%2F5LZKVCvrJJoewcwcLuEXezsnk2zpo6TWy9vkoDExqnc%2BWJGhPv5Mg%2BylZIAR8h5m2z9pUghP6Fp0idbuon5%2BBAdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641e93de41c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/37.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/37.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/37.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Thu, 06 Jan 2022 16:54:19 GMT
etag: "60f2765-61d71ebb-20a635d0a9e93c3f;;;"
accept-ranges: bytes
content-length: 101656421
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/39.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/39.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/39.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Mon, 02 May 2022 13:00:51 GMT
etag: "e88de-626fd603-55931ba33f27401;;;"
accept-ranges: bytes
content-length: 952542
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/gif.png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/gif.png
IP 172.67.185.104:0
GET /upload/userfiles/images/gif.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VmU0pz6VVidc8O%2FjnH8OwRm1pmFyikExi7XcWRfeOz%2Fz56l1kiFuJXNwWEwxBM6G9U5juo2Bv5OiuYzsHzkzO5KMA9xux2pyBHDEoRkIUogFWFAcisS1xNsyCKfyRKJBEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ee79b3b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/member%20(1).png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/member%20(1).png
IP 172.67.185.104:0
GET /upload/userfiles/images/member%20(1).png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JZ15JeQyaB05Whd3dpWVNQ0dQTQYPDoh14SGJhwlfsFbdjdsdE%2BNOdygz0AaEZTodn5x6NKAewpZM596wJgRMq%2Fhxvv%2B08L4o%2B%2BxzFVAs2MF3eXuuSmApeOhEHY6UC3Gbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641eaabb0b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/1%20(2).png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/1%20(2).png
IP 172.67.185.104:0
GET /upload/userfiles/images/1%20(2).png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NRIrOCO0o6iTmxHRJIi5xkbWLW%2BZ3MAzbF6v00Q505pkBRLS153YHxANrwWsimi%2BErl9t8ihI1T1I09EmRH6DK9QB9hrKonwrX2LOnBr91nLohY7h5hA1Tl6W6uD%2BFoYgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ee89b9b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopquynhxinh.com/
151.106.117.118200 OK 0 B IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/5.6.40
set-cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3; expires=Sat, 24-Sep-2022 21:08:45 GMT; Max-Age=86400; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
shopquynhxinh.com/assets/frontend/theme/assets/plugins/bootstrap-social/bootstrap-social.css
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/assets/frontend/theme/assets/plugins/bootstrap-social/bootstrap-social.css
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /assets/frontend/theme/assets/plugins/bootstrap-social/bootstrap-social.css HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 16:50:25 GMT
etag: "4fcf-61d71dd1-8b4bca8754c67de6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2286
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/sale.png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/sale.png
IP 172.67.185.104:0
GET /upload/userfiles/images/sale.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:46 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ivZyFYGRdUzwTsIuedWV%2BQcwrnDBlbhSBaMC73UJsTtBH%2F34dlEFgDAZUDnJwXXTfExfUyE52iXeO4on6URMZQrz6%2FI03m1g0902Z4lDyooSB8DZXUUGSokydbkuDaW8OA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641ee89c3b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/30.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/30.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/30.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Thu, 06 Jan 2022 16:53:36 GMT
etag: "15aabb-61d71e90-120d6a7ee859e31c;;;"
accept-ranges: bytes
content-length: 1419963
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
s10.gifyu.com/images/banner-shop-fix-1280b6ed9c6c1038a.gif
65.21.74.205200 OK 0 B URL HTTP/2 s10.gifyu.com/images/banner-shop-fix-1280b6ed9c6c1038a.gif
IP 65.21.74.205:0
ASN #24940 Hetzner Online GmbH
GET /images/banner-shop-fix-1280b6ed9c6c1038a.gif HTTP/1.1
Host: s10.gifyu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: image/gif
content-length: 26073141
last-modified: Tue, 25 Jan 2022 16:03:02 GMT
etag: "61f01f36-18dd835"
accept-ranges: bytes
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/35.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/35.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/35.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Thu, 06 Jan 2022 16:53:57 GMT
etag: "2af12bc-61d71ea5-d0f9f2e840dbb893;;;"
accept-ranges: bytes
content-length: 45028028
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/3.4.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 06:53:05
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 82949e3a4ffefb0b3980b7d96ff76a06
cdn-cache: HIT
cf-cache-status: HIT
age: 12077632
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74f641e87a9bb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/40.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/40.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/40.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Mon, 02 May 2022 13:13:47 GMT
etag: "1ea805-626fd90b-ce97f477b65b44ca;;;"
accept-ranges: bytes
content-length: 2009093
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopbacgau.com/upload/userfiles/images/gif.png
172.67.185.104503 Service Unavailable 0 B URL HTTP/2 shopbacgau.com/upload/userfiles/images/gif.png
IP 172.67.185.104:0
GET /upload/userfiles/images/gif.png HTTP/1.1
Host: shopbacgau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
date: Fri, 23 Sep 2022 21:08:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aXdDM%2BqAZWoBXNC7JMCz7FWfWWgtwpGlBF9d4pvPM5MGqUdfLvX3GEuzFxsXjBTR38o1Irtd3tj7OyQtbwPS%2B%2BZeDcZr07z4psoAWwPDlYrSDZdeTPsaWHJdWEG8Gx9O4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f641eaabb7b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/42.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/42.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/42.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Mon, 02 May 2022 13:21:22 GMT
etag: "1752c2-626fdad2-4e10f8dce62c05bc;;;"
accept-ranges: bytes
content-length: 1528514
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
shopquynhxinh.com/upload/vongquay_kimcuong/thumb/41.png
151.106.117.118200 OK 0 B URL HTTP/2 shopquynhxinh.com/upload/vongquay_kimcuong/thumb/41.png
IP 151.106.117.118:0
ASN #47583 Hostinger International Limited
GET /upload/vongquay_kimcuong/thumb/41.png HTTP/1.1
Host: shopquynhxinh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shopquynhxinh.com/
Cookie: PHPSESSID=jgknipktcuvu087t7jbun3scd3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Sep 2022 21:08:45 GMT
content-type: image/png
last-modified: Mon, 02 May 2022 13:18:02 GMT
etag: "ed848c-626fda0a-63a782aa4fe3d006;;;"
accept-ranges: bytes
content-length: 15565964
date: Fri, 23 Sep 2022 21:08:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2