Report - dangiaoductai.com/?maps?t=m

Report Overview

Submitted URL
dangiaoductai.com/?maps?t=m
IP
91.194.90.111
ASN
#51167 Contabo GmbH
Submitted
2022-09-20 19:42:40
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
dangiaoductai.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	5.0 MB	91.194.90.111
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	44 kB	142.250.74.72
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	21 kB	142.250.74.174
use.fontawesome.com	942	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	858 B	172.64.132.15
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.149.28.179
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	1.6 kB	142.250.74.10
maps.googleapis.com	33876	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	874 B	58 kB	142.250.74.170
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	747 B	564 B	216.239.32.36
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	504 B	694 B	142.250.74.3
khms1.googleapis.com	5021	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	12 kB	216.58.207.202
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	53 kB	142.250.74.163
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	8.4 kB	142.250.74.3
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	597 B	712 B	142.251.1.154
maps.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	71 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	70 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-20	medium	dangiaoductai.com/images/loading.svg	Malware
2022-09-20	medium	dangiaoductai.com/images/DucTai/gb/slide/bg-slide-1.jpeg	Malware
2022-09-20	medium	dangiaoductai.com/templates/saco/css/jquery-11.0.min.js	Malware
2022-09-20	medium	dangiaoductai.com/media/system/js/caption.js	Malware
2022-09-20	medium	dangiaoductai.com/media/jui/js/jquery-migrate.min.js	Malware
2022-09-20	medium	dangiaoductai.com/media/jui/js/jquery.min.js	Malware
2022-09-20	medium	dangiaoductai.com/media/jui/js/bootstrap.min.js	Malware
2022-09-20	medium	dangiaoductai.com/media/jui/js/jquery-noconflict.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	dangiaoductai.com/templates/saco/css/jquery-11.0.min.js	96 kB	2023-03-07	2024-04-26
Pretty URL dangiaoductai.com/templates/saco/css/jquery-11.0.min.js IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:10 Last Seen2024-04-26 11:14:03 Times Seen18532 Hash 8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682 Loading...

	dangiaoductai.com/media/jui/js/bootstrap.min.js	29 kB	2023-03-07	2024-04-22
Pretty URL dangiaoductai.com/media/jui/js/bootstrap.min.js IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:43 Last Seen2024-04-22 22:28:59 Times Seen673 Hash 94935933a620fef61d4b0c15c664f8b3 e879415d9cdda4ae99767995f49560440025ad74 6ebe64de8e1c2f92400a03a97250c8b2f7443025d53fa42df90cb0589350c233 Loading...

	dangiaoductai.com/?maps?t=m	155 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 6aa1c86df7b2ad73c203b4e050832a49 6ce5d9da1ae91e38193a33ac41bd8512fa4e8c46 6889f137e810a45193d92b521e38a719101ea968129b7a33a90128c217d72c15 Loading...

	www.googletagmanager.com/gtag/js?id=UA-129326006-1	112 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-129326006-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash b270a063bfc4da4105a850d1b8ccdc7e fdf85161ed40cbecec899abc5d2e3e6edb9f27ab 285e5212f0eeba9244b211fa7df35ff4d48264e305c3543d6e35aa10e6ce2f61 Loading...

	www.googletagmanager.com/gtag/js?id=G-MEZNL82V5L&l=dataLayer&cx=c	212 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-MEZNL82V5L&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 169fb4528de59bfd0bf8eeb688e24403 304a11f96b9fb5cc109a3679020f93a8097989eb 2b200b6f33da31297d42d950a243cb372ad60ffc60c3e86964c1c210b178b701 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/search_impl.js	2.8 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:35:31 Last Seen2023-03-17 12:55:35 Times Seen1 Hash 3482d831c981cc0a2ebe3a8c8a6f20db fe9a919722e8253100e8cc68c01cef9dc5b5bcb0 382d262a95c931c8c66bba02c978a8dc02385ba6cde9e514c6d5105ddad59689 Loading...

	dangiaoductai.com/media/jui/js/jquery-noconflict.js	21 B	2023-03-07	2024-04-26
Pretty URL dangiaoductai.com/media/jui/js/jquery-noconflict.js IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-26 01:15:02 Times Seen4689 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 Loading...

	www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d62706.77019152476!2d106.602803!3d10.798048!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x31752b8b084ea46b%3A0x2fc0f4b3b85e7354!2zNTQgxJDGsOG7nW5nIHPhu5EgMTAsIELDrG5oIEjGsG5nIEhvw6AsIELDrG5oIFTDom4sIEjhu5MgQ2jDrSBNaW5oLCBWaWV0bmFt!5e0!3m2!1sen!2sus!4v1589709772219!5m2!1sen!2sus	2.2 kB	2023-03-07	2023-03-07
Pretty URL www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d62706.77019152476!2d106.602803!3d10.798048!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x31752b8b084ea46b%3A0x2fc0f4b3b85e7354!2zNTQgxJDGsOG7nW5nIHPhu5EgMTAsIELDrG5oIEjGsG5nIEhvw6AsIELDrG5oIFTDom4sIEjhu5MgQ2jDrSBNaW5oLCBWaWV0bmFt!5e0!3m2!1sen!2sus!4v1589709772219!5m2!1sen!2sus IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 473ed4f58e9288969b50817eddb7292b 2127ea28e56cd815091066acb78fc4b96beb093a 7f1541a7b5d6d02d3146bd681a01278cd290ec9115bca5d9ff4dc495a270a1e0 Loading...

	maps.gstatic.com/maps-api-v3/embed/js/50/5/init_embed.js	226 kB	2023-03-07	2023-03-17
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/50/5/init_embed.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:34 Last Seen2023-03-17 12:55:41 Times Seen1 Hash 02bd1fbb29f087b6c6201bc984528bac 913cabfd213e4cd14c756aad403a8243179e27d5 92f17746f27b53471dbfc41bb50f5781610a810bf0edf04e981893582c43caec Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/util.js	162 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:30:01 Last Seen2023-03-17 12:55:51 Times Seen1 Hash bb070995e955ea7b99d8a249eae1f42f bca98330eacaeaf4b569f3aad51b90826a0a1a57 f5123eb348cf2b173bcc8539abccda7d96adb0c16ab1789fdc2ccd4bb57f61bc Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/onion.js	28 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:34 Last Seen2023-03-17 12:55:41 Times Seen1 Hash 951ee02099d6aa3ea300a4a0b7ad7001 0d0b2f3586ab3422017a7b73aec2c79aa04df2ff dfeb585c38daa9882ae1c1775af19e51430e7cd9d9b736ae63a618759f035a7e Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d10.538860385068126&2d105.9956422088612&2m2&1d11.061587860167506&2d107.20971892522104&2u11&4sen&5e0&6sm%40619000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._3gzs2v&client=google-maps-embed&token=62495	23 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d10.538860385068126&2d105.9956422088612&2m2&1d11.061587860167506&2d107.20971892522104&2u11&4sen&5e0&6sm%40619000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._3gzs2v&client=google-maps-embed&token=62495 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 20fb88becba9427aa101dda96ebfa356 15d3588eef531107153fa0e4fce906127d84e235 346ef19a33da8c40fe098a22ed58537a7b7305b228c65b1ead43dabe3c806cd7 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/controls.js	93 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:34 Last Seen2023-03-17 12:55:47 Times Seen1 Hash 906b04005994d4ad1316264299e71877 71684ee7dfb549bf89c9eaf6c58b7a005b8ee5a1 eb88d61bc0f637dc247d24f62c9dbfb3d40282c4ca62b0f76a51318d2a4005f1 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d10.477750112917484&2d106.27432257387733&2m2&1d11.113386616832242&2d106.93046348114417&2u8&4sen&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._8sxasp&client=google-maps-embed&token=112033	8.5 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d10.477750112917484&2d106.27432257387733&2m2&1d11.113386616832242&2d106.93046348114417&2u8&4sen&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._8sxasp&client=google-maps-embed&token=112033 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 4b697c0aa54deac4453272e9943e4274 a067c7ff82ae4a7aa25908e336e349376d4b407c b604a0fd7130d04952f49b541e4e7547d28b4a923f7b1ecd4ac963b82ccc9c83 Loading...

	dangiaoductai.com/?maps?t=m	784 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash b95800aedc1712992fbdf0077a3f106f 5f9ae4cf78dedd294e15a9cbcf5cda1ceb5386d9 f514a3d69e1c4a7bbe268a9585d94457203f14679fcd90aa4c4fc21affcec0c1 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/map.js	71 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:34 Last Seen2023-03-17 12:55:41 Times Seen1 Hash 6d60d5cd3272c418c4d0a87751929fed 8fca0bdffebf043e86f2b75b8814fb82e1db072b 5c74df20bf1b1275d5726db80615a153626379cb377670aece71e9cb06be5e45 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7sals59l&10e1&callback=_xdc_._3mv9c2&client=google-maps-embed&token=84108	62 B	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7sals59l&10e1&callback=_xdc_._3mv9c2&client=google-maps-embed&token=84108 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 5e9da3cd6476bc438de6a289d67af2f4 d51eae289a225af2c57fdc037751b02438e5f1bf 3c27ae79741dec19db4324f90d6bbc50a1ac973c57dcd14ea7480c77aa27e739 Loading...

	dangiaoductai.com/media/system/js/caption.js	491 B	2023-03-07	2024-04-24
Pretty URL dangiaoductai.com/media/system/js/caption.js IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-24 04:42:17 Times Seen2383 Hash 27e0e11b572de3bc44be960d25d65570 9c431113357e1a7147388978bde9b70a3ff6114a 20f7c83ab9dfdc1e88f4c3fafc0712492200ab738fb30660526bad9dcb7282dc Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7sals6s6&10e1&callback=_xdc_._iiene7&client=google-maps-embed&token=117829	62 B	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7sals6s6&10e1&callback=_xdc_._iiene7&client=google-maps-embed&token=117829 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 03a8eba018bc629991e09ad72a3e51a2 8bcdaf28568ca6e15cccf324893abc5ec48bf5a5 089ca80854491b1316f46f566aa419d518dbe24ca25a4ae0a0f7fde63b97124d Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/common.js	252 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:30:01 Last Seen2023-03-17 12:55:51 Times Seen1 Hash 8568cc36c4694799c910f3d38617dd7e 70894911a3596372e9da10afa1fa125c4161f8b7 2f2177a6943c9a4ea303c97fb5c8499a4d6af949f9dad402d98f732341349bab Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&callback=_xdc_._lkdbea&client=google-maps-embed&token=73483	62 B	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&callback=_xdc_._lkdbea&client=google-maps-embed&token=73483 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-03-17 12:55:46 Times Seen1 Hash 0e17a392d717b51a588445d5d37fde38 bf28db243e1250adcbc26ead733c95fde9b8ff9d e8787b986ce1452c351a4976cb95b95be50429a278530debf91d524e72a65ec8 Loading...

	dangiaoductai.com/?maps?t=m	141 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 44526ef38339a5f94ca871c6a07d2b23 06d5472c8e781e5f080a9e50b4c8b38bd536fc00 052317877145128eed8585034559d134c041f88212388dc90290dad5a952c6db Loading...

	dangiaoductai.com/?maps?t=m	792 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash b192ff2297c2e48bc4c4b7f019814f80 fc47e807a932d24ad410c090e95a0daebe50a389 2ed44411529ebe601a1a0f7703af3c8449bea72b092a7ec2f45d81cb9d658136 Loading...

	dangiaoductai.com/?maps?t=m	87 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 21a867b840e0e1468df680fdc95ab3c4 82d659a5bbee35d0d63855ac439340be6e227264 942c44d361f49c9d44ec0f9952692af37a7c1416650028317635b4803714efa9 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=us&callback=onApiLoad	174 kB	2023-03-07	2023-03-07
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=us&callback=onApiLoad IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:56:29 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 26cad4379dcfec377975a340191240af 4a6ee31637cef259f6b7884fe31f3f6e2a93deb4 cadc3eee6ab720baff187f897e05956435ad54e483ebf85e37490e5104a1186d Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/5/overlay.js	3.6 kB	2023-03-07	2023-03-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/5/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:32:34 Last Seen2023-03-17 12:55:41 Times Seen1 Hash 4babc9b33b384f40972123bf67f42385 aca1c55a15af822038e99e45584b91c3132999f1 ee616a69966d8647866772b612ecf3deb5031f79a1095197d29f76d513e800c0 Loading...

	dangiaoductai.com/media/jui/js/jquery.min.js	97 kB	2023-03-07	2024-04-26
Pretty URL dangiaoductai.com/media/jui/js/jquery.min.js IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 09:59:28 Times Seen118744 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	dangiaoductai.com/media/jui/js/jquery-migrate.min.js	10 kB	2023-03-07	2024-04-26
Pretty URL dangiaoductai.com/media/jui/js/jquery-migrate.min.js IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-26 10:14:42 Times Seen37232 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	dangiaoductai.com/?maps?t=m	427 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 0c02276d4fd971ff1bd2ade2e44ad8e0 989b53b591153af7983ca3a3cefbcee2b2eddc6d b73a4535877bf626bb920d9f5c5091541044fa154bb201525ca1ba27c855f536 Loading...

	dangiaoductai.com/?maps?t=m	160 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 7860ffaea238cfcc3b75a5a234ca6922 89280a9d5e7e3c4bdf1ad24fb3a6385eebc011f0 12f3da11dc824b010efe409d186e52f16cef9536c5ade0eab5ed73a5e5cff8dd Loading...

	dangiaoductai.com/?maps?t=m	792 B	2023-03-07	2023-03-07
Pretty URL dangiaoductai.com/?maps?t=m IP 91.194.90.111 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:05 Last Seen2023-03-07 21:59:05 Times Seen1 Hash 1bc2aa0ff8a78742a485a8886ab1f7fb 8c1d5239bc65085a52b9dcdc414f000ca3d95bf0 7bb88c250df6aac9218eaa0fddb502acdc8176eed5b28650bbd992caa5ceb942 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 19:24:16 Times Seen842 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

HTTP Transactions (71)

URL IP Response Size

dangiaoductai.com/?maps?t=m

91.194.90.111

301 Moved Permanently

162 B

URL HTTP/1.1
dangiaoductai.com/?maps?t=m
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /?maps?t=m HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 20 Sep 2022 19:42:29 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://dangiaoductai.com/?maps?t=m

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 19:03:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UnsD-aXqHNgeexUEIoOzmXXQyC0wHeVXWfuIyEzNIx1C1sdLwkLw1Q==
Age: 2362

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3445
Expires: Tue, 20 Sep 2022 20:39:54 GMT
Date: Tue, 20 Sep 2022 19:42:29 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0gXPna4alnm_ueF6BFqpp0hX3Mb8MXEQStWpfAAijEx8LkO3LxnZ7Q==
age: 54436
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcdb9f8b2e076c9e79882b1115eb523a
b6891ffb482ec2e2b474e6cc85af77875498a612
134b6251ba5875a8ed729aa015db576b180f63774174de49d15f68ecadc87246

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "134B6251BA5875A8ED729AA015DB576B180F63774174DE49D15F68ECADC87246"
Last-Modified: Mon, 19 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Wed, 21 Sep 2022 01:42:05 GMT
Date: Tue, 20 Sep 2022 19:42:29 GMT
Connection: keep-alive

dangiaoductai.com/?maps?t=m

91.194.90.111

200 OK

6.2 kB

URL HTTP/2
dangiaoductai.com/?maps?t=m
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1440), with CRLF, CR, LF line terminators
Size
6.2 kB (6154 bytes)
Hash
a26cbdd7c51ab43b707506a078ea88e8
186651690c411dca06e269530ecf41d4b0beafd3
04a56137054e78c1bc224cd09435591fc377befc5af997602edfd720f1004e40

HTTP Headers

GET /?maps?t=m HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: text/html; charset=utf-8
content-length: 6154
content-encoding: gzip
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50; path=/; HttpOnly
last-modified: Tue, 20 Sep 2022 19:42:29 GMT
x-powered-by: PHP/5.6.40, PleskLin
X-Firefox-Spdy: h2

dangiaoductai.com/templates/saco/css/define.css

91.194.90.111

200 OK

576 B

URL HTTP/2
dangiaoductai.com/templates/saco/css/define.css
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
ASCII text
Size
576 B (576 bytes)
Hash
2166c70bf230923b452091583544dd9a
04a67b2c9d2800562d31b7af0774548fb8283073
6a6090351a9595e00a6dd4ec1edffc7e0e51e303d69592fdc4f6ba64879b0c2e

HTTP Headers

GET /templates/saco/css/define.css HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"98-5e7e8862604de"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 19:03:22 GMT
Expires: Tue, 20 Sep 2022 19:31:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 95c1qLP24Cd_ZeZj2feo96ItCAjBW-xS3psigHoIzneiaaXhHFBRIA==
Age: 2348

dangiaoductai.com/images/loading.svg

91.194.90.111

200 OK

810 B

URL HTTP/2
dangiaoductai.com/images/loading.svg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (810), with no line terminators
Size
810 B (810 bytes)
Hash
82a613706f197094d391c23f801f12e3
6a3e433f6319d4090c4ea08449848441a3e5d414
003771ef13ad8bc451ce87f3f68f512daa6895ed8ce518e4ae9478a51fd95dea

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/loading.svg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/svg+xml
content-length: 810
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "32a-5e7e8860bb2a0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/gb/email.png

91.194.90.111

200 OK

721 B

URL HTTP/2
dangiaoductai.com/images/DucTai/gb/email.png
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
721 B (721 bytes)
Hash
3a4204fc38b59827483a073b54084cd9
c0b1a007d7b9635900dcf877faad42b34089c3ed
384255e2f755ff3d72cc80da29570d04ce13a9e0106e67fb3c77b6d48f142162

HTTP Headers

GET /images/DucTai/gb/email.png HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/png
content-length: 721
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "2d1-5e7e8860bb2a0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/categories/chong-kich-tang.jpg

91.194.90.111

200 OK

30 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/categories/chong-kich-tang.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 233x234, components 3\012- data
Size
30 kB (29727 bytes)
Hash
3a87b72de264ad2d1b65b433fb5487c0
f0d8a498584681c8c042919f46f5073d773bb70e
2cb2bf0930e4c427f15f7d27d732f56bb0b6d12edb7f3da0cba6b4a353126731

HTTP Headers

GET /images/DucTai/categories/chong-kich-tang.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 29727
last-modified: Thu, 08 Sep 2022 03:26:00 GMT
etag: "631960c8-741f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/gb/phone.png

91.194.90.111

200 OK

929 B

URL HTTP/2
dangiaoductai.com/images/DucTai/gb/phone.png
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
929 B (929 bytes)
Hash
f33219060ed7bfb86c6ff1e53c8fce49
f63fbb75c48c29802f85a1bc08b6073cf61023b3
1eb6b267d0f4bb2b18b9461ac68fd64335d6744c2df3c95f793e196b34e1f3bd

HTTP Headers

GET /images/DucTai/gb/phone.png HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/png
content-length: 929
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "3a1-5e7e8860bb2a0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/gb/logo.png

91.194.90.111

200 OK

14 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/gb/logo.png
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 129 x 84, 8-bit/color RGBA, interlaced\012- data
Size
14 kB (14028 bytes)
Hash
06f3586a451d39ce5c13acb153f6de32
222e058330b718ea7d710bb34a626e5c97f2b764
9f63ccf8083e096eebb30a762ccd40cabc0e3ea7ff521937c896a12c91ac43b7

HTTP Headers

GET /images/DucTai/gb/logo.png HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/png
content-length: 14028
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "63159cae-36cc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/categories/linh-phu-kien.jpg

91.194.90.111

200 OK

24 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/categories/linh-phu-kien.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 232x234, components 3\012- data
Size
24 kB (23672 bytes)
Hash
0ba76bd7462f0125932bb48c7e1d84aa
be5c13522ae4c416c82a80cc76fd2c823b3163ad
535fb2171d9e1cbc64111eb1c94cc632b00b167b9799c2f78e1360af70906d3c

HTTP Headers

GET /images/DucTai/categories/linh-phu-kien.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 23672
last-modified: Thu, 08 Sep 2022 03:26:01 GMT
etag: "631960c9-5c78"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/categories/dan-giao-khung.jpg

91.194.90.111

200 OK

32 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/categories/dan-giao-khung.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 234x232, components 3\012- data
Size
32 kB (32192 bytes)
Hash
c7461a68d0bb31206689bf4c918318dd
adb799ab27db799736b69c28a93d8745c5b9c823
b8123d7ebd862ef780df85409d108548ae601bb9c59dafb6994f6cd92f805454

HTTP Headers

GET /images/DucTai/categories/dan-giao-khung.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 32192
last-modified: Thu, 08 Sep 2022 03:25:59 GMT
etag: "631960c7-7dc0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/gb/time.png

91.194.90.111

200 OK

1.4 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/gb/time.png
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1353 bytes)
Hash
4a70efa64164d1a20af337a44344ef6b
e85a00f2ea4b17bed3206836ee4ad1a5e9341ca5
0f30431de402fb3556886d4345e5e51e1e3416b03a6c13eff7537c31116e89e4

HTTP Headers

GET /images/DucTai/gb/time.png HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/png
content-length: 1353
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "63159cae-549"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-129326006-1

142.250.74.72

200 OK

43 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-129326006-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
43 kB (43246 bytes)
Hash
b854d09b39b5f9cf43fae6ea1fd0715e
66c4db1ad079affa3edb745e69575a07f7308cd4
03a2dc0e3f5598e6dee7af0b566e6b03d4ee4368ad4038fbd4ca3352ab5a3da0

HTTP Headers

GET /gtag/js?id=UA-129326006-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 19:42:30 GMT
expires: Tue, 20 Sep 2022 19:42:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43246
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5281
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:30 GMT
Last-Modified: Tue, 20 Sep 2022 18:14:30 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

dangiaoductai.com/images/DucTai/categories/dung-cu-thi-cong-do-san.jpg

91.194.90.111

200 OK

28 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/categories/dung-cu-thi-cong-do-san.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 234x233, components 3\012- data
Size
28 kB (27839 bytes)
Hash
64bfb4ef43e2e4ff9e38c03ef04c0156
e4b79a9c30db90fd161d45c980a324cecd691f68
09218cffbaf58a4a64f8a729112fb2346bdc22126532c67e490f22faf42f2ae1

HTTP Headers

GET /images/DucTai/categories/dung-cu-thi-cong-do-san.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 27839
last-modified: Thu, 08 Sep 2022 03:26:01 GMT
etag: "631960c9-6cbf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0a103478642d8967648f98988c7e6419
b39283cc8c8cd4f335f94e15f03ede72698f75de
348b99176d4f4d9f324ce464cf051eac70f03bb6219e54c0b6fbf35efa356443

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dangiaoductai.com/images/News/898/gian-giao-nao-duoc-ua-chuong-hien-nay-1.jpg

91.194.90.111

200 OK

547 kB

URL HTTP/2
dangiaoductai.com/images/News/898/gian-giao-nao-duoc-ua-chuong-hien-nay-1.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 1246x944, components 3\012- data
Size
547 kB (546824 bytes)
Hash
e15ca31401418958c4b5000190e14118
5171254d3c2d16f1924a7e12cbc941b7be891c3b
79f908f07c57b1084a41494bd3df2afc0f6e453c93d5813ca159f266c229e222

HTTP Headers

GET /images/News/898/gian-giao-nao-duoc-ua-chuong-hien-nay-1.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 546824
last-modified: Thu, 08 Sep 2022 03:27:59 GMT
etag: "6319613f-85808"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/News/899/cac-loai-cop-pha-trong-xay-dung-ma-ban-muon-biet-1.jpg

91.194.90.111

200 OK

294 kB

URL HTTP/2
dangiaoductai.com/images/News/899/cac-loai-cop-pha-trong-xay-dung-ma-ban-muon-biet-1.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 1236x930, components 3\012- data
Size
294 kB (293501 bytes)
Hash
2d10c3999e98e6208ae6f62dd774b69c
1e022dc704efcd0afd4b03774a6c5b1e5d5789aa
06881b318284d35a83a7ec69c18b14c9f18874b71ad8b3563676d5319a0633de

HTTP Headers

GET /images/News/899/cac-loai-cop-pha-trong-xay-dung-ma-ban-muon-biet-1.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 293501
last-modified: Thu, 08 Sep 2022 03:28:01 GMT
etag: "63196141-47a7d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dangiaoductai.com/images/News/896/nhung-luu-y-khi-mua-coppha-2.png

91.194.90.111

200 OK

1.6 MB

URL HTTP/2
dangiaoductai.com/images/News/896/nhung-luu-y-khi-mua-coppha-2.png
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 1124 x 746, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 MB (1573500 bytes)
Hash
23bfcd2b6727fc4a45ae02941d4e56bf
2d170266051cd27e6ffc18b896cdb0773ef69efa
5d32fac24957f3cdc46140f05a4d3b1afbfe04f93a4cbb711f58022c925df401

HTTP Headers

GET /images/News/896/nhung-luu-y-khi-mua-coppha-2.png HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/png
content-length: 1573500
last-modified: Thu, 08 Sep 2022 03:27:56 GMT
etag: "6319613c-18027c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/News/897/nen-mua-moi-hay-thue-gian-giao-xay-dung-1.png

91.194.90.111

200 OK

1.8 MB

URL HTTP/2
dangiaoductai.com/images/News/897/nen-mua-moi-hay-thue-gian-giao-xay-dung-1.png
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 1130 x 754, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 MB (1757434 bytes)
Hash
2a191a804ea32bb5e51e53cf65768f39
8007bc9637d65be167bb718ee3e4f8ccc8d2ff38
ab33e8a6da1c380bf294f023c06a642b6ef5bf352c8089be202d3c7737f3d446

HTTP Headers

GET /images/News/897/nen-mua-moi-hay-thue-gian-giao-xay-dung-1.png HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/png
content-length: 1757434
last-modified: Thu, 08 Sep 2022 03:27:57 GMT
etag: "6319613d-1ad0fa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dangiaoductai.com/images/DucTai/gb/slide/bg-slide-1.jpeg

91.194.90.111

200 OK

232 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/gb/slide/bg-slide-1.jpeg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, baseline, precision 8, 1280x622, components 3\012- data
Size
232 kB (231547 bytes)
Hash
203b469ae8c417dfcf49e9908686f2ab
781cf154c88e3bebca45a18aac4375e1c4f6ce74
f7571b42c9c0b952d697d7b1c3b3c4ccf93f3bf1b1224b9da7a9f27218919339

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/DucTai/gb/slide/bg-slide-1.jpeg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/templates/saco/css/ductai.css
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 231547
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "63159cae-3887b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.149.28.179

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.28.179:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /PRDZ8l1Ktr56dhBXutfdA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VijnCX5pJjGZx6wTV4vPEvbqPyE=

dangiaoductai.com/images/DucTai/gb/bg-aboutus.jpg

91.194.90.111

200 OK

438 kB

URL HTTP/2
dangiaoductai.com/images/DucTai/gb/bg-aboutus.jpg
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1150x400, components 3\012- data
Size
438 kB (438303 bytes)
Hash
1c4b9054b5092db0a5e50d29824a14bb
a351227b014e86565c4dad56d6d2a123874b654f
2641cf125a4a13d71d0ec0aa256f71b8c4aeaeb91cf0c8bc414fc4f7abc17344

HTTP Headers

GET /images/DucTai/gb/bg-aboutus.jpg HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/templates/saco/css/ductai.css
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/jpeg
content-length: 438303
last-modified: Mon, 05 Sep 2022 06:52:30 GMT
etag: "63159cae-6b01f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Grand+Hotel&display=swap

142.250.74.10

200 OK

826 B

URL HTTP/2
fonts.googleapis.com/css?family=Grand+Hotel&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
826 B (826 bytes)
Hash
dc4ba0fae761b222624cc62f13616fcd
7a132ac79391d2fb53aa6d5f8678c45b03b05664
e552069bcf1decb1c0160b45fbca3387c0ea7516f643a10f8bf9d708d337dbcc

HTTP Headers

GET /css?family=Grand+Hotel&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 19:42:30 GMT
date: Tue, 20 Sep 2022 19:42:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dangiaoductai.com/favicon.ico

91.194.90.111

200 OK

18 kB

URL HTTP/2
dangiaoductai.com/favicon.ico
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 103 x 76, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (18138 bytes)
Hash
98003ce9948b64750c0454e2a064e7f2
9f468d97e8a7104f2bc8b68e96f35a1c044001cf
967afefafd1e2ef40d14f24b45f76376bef96d80a06155eb796330fa8bc5adc0

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: image/vnd.microsoft.icon
content-length: 18138
last-modified: Mon, 05 Sep 2022 06:52:34 GMT
etag: "63159cb2-46da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 20 Sep 2022 18:41:12 GMT
expires: Tue, 20 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 3678
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-129326006-1&cid=1194096317.1663702951&jid=1259315861&gjid=1439864891&_gid=1260538784.1663702951&_u=YADAAUAAAAAAAC~&z=1166564218

142.251.1.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-129326006-1&cid=1194096317.1663702951&jid=1259315861&gjid=1439864891&_gid=1260538784.1663702951&_u=YADAAUAAAAAAAC~&z=1166564218
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-129326006-1&cid=1194096317.1663702951&jid=1259315861&gjid=1439864891&_gid=1260538784.1663702951&_u=YADAAUAAAAAAAC~&z=1166564218 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://dangiaoductai.com
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://dangiaoductai.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 20 Sep 2022 19:42:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

dangiaoductai.com/templates/saco/css/jquery-11.0.min.js

91.194.90.111

200 OK

33 kB

URL HTTP/2
dangiaoductai.com/templates/saco/css/jquery-11.0.min.js
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type
ASCII text, with very long lines (32341)
Size
33 kB (33271 bytes)
Hash
02c030fe09b8e4d37a97b2d2c4043bda
17d646cb244c1dffbb8ad2f87065362486dbfc7c
6f4b9a7c8779b0a6e73f237cdf93dc4b87221b9207fcd4f9480cdb5a810de630

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /templates/saco/css/jquery-11.0.min.js HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"63159cb0-1787d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e5d7d983b288c67e17280c6a1c0d80d9
8a1e575f8b8427e872c1e4c5645d9ce3e5445e52
a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=us&callback=onApiLoad

142.250.74.170

200 OK

57 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=us&callback=onApiLoad
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2468)
Size
57 kB (56929 bytes)
Hash
4487bc9973cf072d4d3bac9ee40f140b
e76d57e18d3c4945e62493ba4ff9b3bcf2c6ab03
aa4b68616d0527a1cff94e02d97d4e88353e5b3e2088cac1744115e527089887

HTTP Headers

GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en&region=us&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56929
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
date: Tue, 20 Sep 2022 19:40:56 GMT
expires: Tue, 20 Sep 2022 20:10:56 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 95
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0180bad73e9143c70a43e0065c4a8072
035340a6bdb7d6438d9e1c5cfa1d5bd0928d98e4
c74f5ac8268c64bc64d08fe4da689750b91c40462265e8ce1b815d202889f3e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-129326006-1&cid=1194096317.1663702951&jid=1259315861&_u=YADAAUAAAAAAAC~&z=1555529337

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-129326006-1&cid=1194096317.1663702951&jid=1259315861&_u=YADAAUAAAAAAAC~&z=1555529337
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-129326006-1&cid=1194096317.1663702951&jid=1259315861&_u=YADAAUAAAAAAAC~&z=1555529337 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 19:42:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0180bad73e9143c70a43e0065c4a8072
035340a6bdb7d6438d9e1c5cfa1d5bd0928d98e4
c74f5ac8268c64bc64d08fe4da689750b91c40462265e8ce1b815d202889f3e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.170

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 20 Sep 2022 19:42:31 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.gstatic.com/maps-api-v3/embed/js/50/5/init_embed.js

142.250.74.163

200 OK

70 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/50/5/init_embed.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2669)
Size
70 kB (70418 bytes)
Hash
0fc3152fed6efc465b1800d74c5e6e03
d1c179356bb78058c9f3a915b9d0860cee8f0d18
3126304f64d7b4a45e7c7c2db4393290ac9e659411d493607f56c51370422f35

HTTP Headers

GET /maps-api-v3/embed/js/50/5/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 70418
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 17:14:08 GMT
expires: Thu, 14 Sep 2023 17:14:08 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Sep 2022 20:19:12 GMT
content-type: text/javascript
age: 527303
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.google-analytics.com/g/collect?v=2&tid=G-MEZNL82V5L&gtm=2oe9j0&_p=1931219700&cid=1194096317.1663702951&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663702950&sct=1&seg=0&dl=https%3A%2F%2Fdangiaoductai.com%2F%3Fmaps%3Ft%3Dm&dt=D%C3%A0n%20Gi%C3%A1o%20%C4%90%E1%BB%A9c%20T%C3%A0i%20-%20Danh%20m%E1%BB%A5c%20s%E1%BA%A3n%20ph%E1%BA%A9m&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-MEZNL82V5L&gtm=2oe9j0&_p=1931219700&cid=1194096317.1663702951&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663702950&sct=1&seg=0&dl=https%3A%2F%2Fdangiaoductai.com%2F%3Fmaps%3Ft%3Dm&dt=D%C3%A0n%20Gi%C3%A1o%20%C4%90%E1%BB%A9c%20T%C3%A0i%20-%20Danh%20m%E1%BB%A5c%20s%E1%BA%A3n%20ph%E1%BA%A9m&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-MEZNL82V5L&gtm=2oe9j0&_p=1931219700&cid=1194096317.1663702951&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663702950&sct=1&seg=0&dl=https%3A%2F%2Fdangiaoductai.com%2F%3Fmaps%3Ft%3Dm&dt=D%C3%A0n%20Gi%C3%A1o%20%C4%90%E1%BB%A9c%20T%C3%A0i%20-%20Danh%20m%E1%BB%A5c%20s%E1%BA%A3n%20ph%E1%BA%A9m&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dangiaoductai.com
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://dangiaoductai.com
date: Tue, 20 Sep 2022 19:42:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6698
Expires: Tue, 20 Sep 2022 21:34:09 GMT
Date: Tue, 20 Sep 2022 19:42:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6698
Expires: Tue, 20 Sep 2022 21:34:09 GMT
Date: Tue, 20 Sep 2022 19:42:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6698
Expires: Tue, 20 Sep 2022 21:34:09 GMT
Date: Tue, 20 Sep 2022 19:42:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9865 bytes)
Hash
1a7d863845e96c5927e812f325c08c16
b8484fb5443344b03e52dd56b1d6c5682eb6221a
fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 77864
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9543 bytes)
Hash
30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 77286
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11145 bytes)
Hash
c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 77797
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11832 bytes)
Hash
2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 77568
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10894 bytes)
Hash
d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 34589
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9873 bytes)
Hash
7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 77567
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

khms1.googleapis.com/kh?v=930&hl=en&x=203&y=120&z=8

216.58.207.202

200 OK

12 kB

URL HTTP/2
khms1.googleapis.com/kh?v=930&hl=en&x=203&y=120&z=8
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Size
12 kB (11616 bytes)
Hash
4df49d9399870aca4e4104fc1e9757d2
71df7a7eb8c869798625f51dd0d7c1226de3b1e4
bc8505f8e0699ab836c1ba35e80048c748b84ee580cefd0426a02760d760342e

HTTP Headers

GET /kh?v=930&hl=en&x=203&y=120&z=8 HTTP/1.1
Host: khms1.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
expires: Wed, 20 Sep 2023 19:42:32 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 1 Jan 2010 01:00:00 GMT
date: Tue, 20 Sep 2022 19:42:32 GMT
access-control-allow-credentials: true
content-type: image/jpeg
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 11616
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 518905
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 02:02:22 GMT
expires: Sun, 17 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 322811
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size
12 kB (11800 bytes)
Hash
e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:35:48 GMT
expires: Thu, 14 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 518805
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2

142.250.74.163

200 OK

5.6 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5604, version 1.0\012- data
Size
5.6 kB (5604 bytes)
Hash
7cda2cfee99d697daf8c14819d9004eb
76f4002863493c93454a9f17424942f321287cba
0948409a22b5979aa7e1ec20da9e61f12e7d403800b541ece053881bd2542b70

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 20:01:06 GMT
expires: Thu, 14 Sep 2023 20:01:06 GMT
cache-control: public, max-age=31536000
age: 517287
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

dangiaoductai.com/templates/saco/css/template.css

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/templates/saco/css/template.css
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/saco/css/template.css HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 03:32:21 GMT
etag: W/"63196245-26cba"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.7.2/css/all.css

172.64.132.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.7.2/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: text/css
x-amz-id-2: grn7KcgpcoaHToz60L0D+X/b1dK9DTrBsUwuQeO71fs5aGDO5NvZ8jC09uorZCHNsioKINHzyCE=
x-amz-request-id: G3A9RZDYWMEWMKRP
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28469967
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oIEcA6XDIzZuGvGQK3p4DGXpmkEZBqoNpe9mxFqbdEdbagx9avKWHdn%2Bv2PzYYi3%2Bc8gDcCeu879IIgy1XvhR9Y0%2BedJ6mi8Pc1qAvroyTtO2263zxsR5reTxjgFxlMRghA3BblU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74dd0b6ef812e658-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

dangiaoductai.com/templates/saco/css/ductai.css

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/templates/saco/css/ductai.css
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/saco/css/ductai.css HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"63159cb0-5265"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dangiaoductai.com/media/system/js/caption.js

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/media/system/js/caption.js
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/system/js/caption.js HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"1eb-5e7e8861e0601"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dangiaoductai.com/media/jui/js/jquery-migrate.min.js

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/media/jui/js/jquery-migrate.min.js
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/jquery-migrate.min.js HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"63159cb0-2748"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dangiaoductai.com/media/jui/js/jquery.min.js

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/media/jui/js/jquery.min.js
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/jquery.min.js HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"63159cb0-17b8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dangiaoductai.com/media/jui/js/bootstrap.min.js

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/media/jui/js/bootstrap.min.js
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/bootstrap.min.js HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:30 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"63159cb0-71e4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dangiaoductai.com/media/jui/js/jquery-noconflict.js

91.194.90.111

200 OK

0 B

URL HTTP/2
dangiaoductai.com/media/jui/js/jquery-noconflict.js
IP
91.194.90.111:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/jquery-noconflict.js HTTP/1.1
Host: dangiaoductai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dangiaoductai.com/?maps?t=m
Cookie: 756848d896fe657cf1e0b1d3419b5062=ho9t18cc03v3f6ku3n9sflbd50
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:42:29 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 05 Sep 2022 06:52:32 GMT
etag: W/"15-5e7e8861e4869"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations