Report - shes.vn/san-pham/bong-tay-trang-miniso/

Report Overview

Visited public
2023-12-01 18:31:24
Tags
URL
shes.vn/san-pham/bong-tay-trang-miniso/
Finishing URL
shes.vn/san-pham/bong-tay-trang-miniso/
IP / ASN
103.90.235.252
#135917 Cong ty TNHH Web Panda
Title
Bông tẩy trang Miniso - shes

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

158

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
shes.vn	unknown	unknown	No data	No data	41 kB	1.4 MB	103.90.235.252
pixel.wp.com	2545	1997-03-28	2017-01-30 06:31:40	2023-12-01 05:13:01	1.6 kB	471 B	192.0.76.3
got.statisticplatform.com	unknown	2023-10-06	2023-10-16 17:54:33	2023-11-30 10:32:35	411 B	325 B	80.66.79.247
west.statisticsplatform.com	unknown	2023-10-10	2023-10-10 13:29:44	2023-11-30 13:04:33	414 B	15 kB	188.114.97.1
stats.wp.com	2711	1997-03-28	2017-01-30 06:06:59	2023-12-01 05:13:01	808 B	17 kB	192.0.76.3
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-01 08:02:13	1.1 kB	116 kB	142.250.74.74
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-01 06:26:25	426 B	94 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-01 05:29:09	15 kB	629 kB	216.58.207.227
stay.decentralappps.com	unknown	2023-09-03	2023-09-08 15:11:15	2023-12-01 15:39:00	413 B	14 kB	185.39.206.162

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	decentralappps.com	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed
2023-12-01	medium	shes.vn	Sinkholed

ThreatFox

No alerts detected

JavaScript (56)

	URL	From	Size	First Seen	Last Seen
	shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=11	ScriptElement	263 kB	2023-03-07	2025-03-20
Pretty URL shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=11 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:17 Last Seen2025-03-20 04:34 Times Seen167 Hash 78b8737d57a7d0b029efa514907cd506 67c6ce628b259c9a8c500586302d2ed9c9ea98ad 2d036346b18bf4c27bc91f0416f8b59427e32bfc6c2724a27e6fe2e5a7b58574 Loading...

	shes.vn/wp-content/plugins/td-woo/assets/js/js_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46	ScriptElement	26 kB	2023-05-01	2024-08-20
Pretty URL shes.vn/wp-content/plugins/td-woo/assets/js/js_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-01 05:57 Last Seen2024-08-20 20:41 Times Seen7 Hash 26ab72cd270744ec741519bb47363ae7 b236ba1b469d09718e25266046a523f453edfe7a 958257f315f6f607a186c643bb5ab15a4d9df34b77e4e9ed622806d5992c2847 Loading...

	shes.vn/wp-includes/js/wp-embed.min.js?ver=5.7.10	ScriptElement	1.5 kB	2023-05-16	2025-05-11
Pretty URL shes.vn/wp-includes/js/wp-embed.min.js?ver=5.7.10 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 22:22 Last Seen2025-05-11 07:00 Times Seen6384 Hash 7c5c36baa69fcdb57bd891cda90920b3 9d8b3df7a4fa2968403290d69a60b2eab20734f5 6a482d2d94c0d1bc6937a1759389d01b475e6b28a0d9b5d7eaa3f9cc8f59f3cd Loading...

	unknown	DomTimer	1.5 kB	2023-04-19	2025-03-26
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-04-19 03:58 Last Seen2025-03-26 17:38 Times Seen22 Hash 683bdeb2a799c4649f4e31fbf2f43e66 577bb2a054fccb5007e2f2afbecff02acf3ed80a 799f83c542356868feaa15690895fb58e6f410d36af358ed37370d83d127c054 Loading...

	shes.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.7.10	ScriptElement	14 kB	2023-03-07	2025-05-10
Pretty URL shes.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.7.10 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 21:12 Times Seen2741 Hash eaa8641bcda2371f4024a71fbb67de3b 0e46c39d3821683c856605a82254115f9a6a7792 0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2	ScriptElement	23 kB	2023-03-07	2025-05-09
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10 Last Seen2025-05-09 14:02 Times Seen96 Hash 031b743a76c3631cddc1dd33e0b3f898 79e6163cf945a4221240259a3671ab328652d13a 63ea4f605da0448be22667e995975d694333269fb13cf36036cd291798744c1b Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	32 B	2023-03-07	2025-05-11
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 14:03 Times Seen3104 Hash f28cdba8b1a33fab7b4935482c683e17 7fb92b438ae880e659636e12f78ecca1ab9dd1a9 76d9ab1fc9999540d0f7167df3325f71fbd86160eda576cb60f285b0e65d89a9 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	2.1 kB	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen3 Hash 34858d33a10f42bd2b92515a1dfdb511 ff1aa32867b394fdb4aafc5f102a1bcafd246bb2 1f43857d78ae9184c68e7ba4c8a45f5492addf8a6cce1de83680e190d3079aa2 Loading...

	shes.vn/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1638354851	ScriptElement	4.2 kB	2023-03-07	2025-04-26
Pretty URL shes.vn/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1638354851 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-04-26 22:13 Times Seen328 Hash 5d4894dfb5fa6ce16d2fdd4b48a59650 e6d76d2053d48e018c3da4a01905303582ca3218 92c811b4ac9b3f23ec0c8eadae3be374682a860d290aac9cde2a8a8911b7412c Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1	ScriptElement	9.7 kB	2023-03-07	2025-05-09
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10 Last Seen2025-05-09 14:02 Times Seen95 Hash 75f75d2243b3952270fe275f690e7197 edbdf656bf0fb0f13030e20a630a8f48e94e04c5 b60e37730fdca20988061ac72162a4262c03f646c51fbb695cb5c337af5f6ab6 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	213 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash 46790be491c1efc88020898d79e01310 180cfd91ce10e20aea56fbbdac5b514b4dbec829 6744b0ae754140c09d556a1c3eb7e842f55b9669b05eb268759b9caadffdd03f Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	181 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash a376e3d74c42c45ba5cf171bcc5ce738 4bc1a53f6187a133aeee2e22959a0699228f40d7 ff88cf9d5b64e2ba50656e00b9e55d4c769820261a524c5d5694226d7a896383 Loading...

	shes.vn/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.2.0	ScriptElement	1.9 kB	2023-03-07	2025-03-07
Pretty URL shes.vn/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.2.0 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-03-07 21:34 Times Seen39 Hash ec5778ba3a0451e0265a02c26458a00e 3170e2381ab6c13e2ed79cedaf3ab5f689e73b1a b8c0ce32234af999076b48518b249d477718550593a782e170f159477e8b4265 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	201 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash ff49542c6462c8a121cdf8783d74e8f7 19889400302db6b07edb69dd432c5b1660f719ad f229edea14440c419453402d36f74bda2ba5558678b5d5eadf9ffbb3bf5ab88e Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	5.4 kB	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash 1fe42c91e8cb681bc544ab7a9933e431 edc8b18fadaf731da5b1fb9803e388787f34f286 7148a16819dd9249dd8f82e51461f31d03311229b2fd2fde2067c8d159cfccc5 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	153 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen4 Hash 26cc2459fe76a9aff29768be4c09c619 c3c11feb9991249bf247eff8883cb41bb8133174 d862d354ccee5cb95a9fc75e10854e8ef14f5d5e4de8dea0ecb9654f52d0b13a Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70	ScriptElement	9.5 kB	2023-03-07	2025-05-09
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-09 14:02 Times Seen705 Hash 2e96f622673104a3fb67ab56f849c073 f4c17ae4709cad9bc997357581f4e30fc4bbee2c b49498d1142de7f2e16afc2cd4250d2ba30c5df4de5d291f51d7cf69727efdbe Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4	ScriptElement	1.8 kB	2023-03-07	2025-05-11
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 14:31 Times Seen9810 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	shes.vn/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.1	ScriptElement	9.0 kB	2023-03-07	2025-03-26
Pretty URL shes.vn/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.1 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21 Last Seen2025-03-26 17:38 Times Seen24 Hash 91503748dee534648f21e9caed39c855 a525c0607e5e0cb3b80927c00b835833b810ceaf 2f89f6ca7f14a21a488b539bc5b4703e7f9fb4298dab6ccb59e1553ef69319d1 Loading...

	shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb	ScriptElement	5.2 kB	2023-03-07	2025-04-22
Pretty URL shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:00 Last Seen2025-04-22 06:31 Times Seen252 Hash 6e98296229ffa777101f2ef59ae5f7c5 cb53e2d6108ffbbbc4a96307eefa1ed6b3a4a4d8 0dd95d9bfc689b8862a9dd8ae8166ca21df149fb24f3d0830423b66ae00d426e Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	1.9 kB	2023-09-09	2024-10-04
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-09 23:01 Last Seen2024-10-04 11:14 Times Seen287 Hash 106f853c0b914693cfdfe4c3ed0e8d07 213d4ea53d5f0a7cefbadeff06b87aec386d7f26 5ce8a7e13a33b8993a6195778f5fc67e36cee7bc72cab08421c6db8393c2cef4 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	85 B	2023-03-07	2025-04-19
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:34 Last Seen2025-04-19 17:58 Times Seen80 Hash 1950af329686a9e51ad1bdd9e968db56 cd25ab509057bb72096ee387f7831effcafaa1e4 da3681b5a149fd8d0ee290a11d7f4c0f244748d1c16cdfc0212725c2d17c2a0e Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	2.8 kB	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash 83ec4574d2d8c85791e4cd28bea5fbfb 4b4e3e81faf14e33457d1e50dbf3372f51894aba 125e1accc5df6c759a1c07a4212c88177f025337a4e512ea4a6a6b9ed3faacf2 Loading...

	stay.decentralappps.com/src/page.js	ScriptElement	33 kB	2023-11-09	2024-08-20
Pretty URL stay.decentralappps.com/src/page.js IP 185.39.206.162 ASN #201570 LLC Mobile Television Systems Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 13:46 Last Seen2024-08-20 20:17 Times Seen184 Hash a81b7a55eacdbc5c89c88fe0c9c6e892 7d1bd9f457bf60e274200533973c5d98315d811b ec44ada48f34c866eacd9c06ff3de35efa86822861386899ea158109b27ba174 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	2.7 kB	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen3 Hash e4916a5dc9360d6acc23ccf45232769e 49477a428d060ed88363bbc488b77e58f2c7dca9 5461549311022f6f56a37494aaf45aed5462a9d9ad89e5e144b9a8d59491fdb5 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	678 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen4 Hash 6eb29287fec18085a8d79fe7383fa9dc a3c8167a4360cf8147d6743f3a69c9c6e08a748c 11e7506e976dcafc8578c53d0f35603d13da693c69324d40f13baeae024e1d93 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	152 B	2023-03-07	2025-05-11
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 17:37 Times Seen25338 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.4.4	ScriptElement	2.9 kB	2023-03-07	2025-05-07
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.4.4 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-07 11:42 Times Seen1250 Hash 51af5d767f0300f23ecec6298b707395 5eb2d3d937fe0392a974937125d0420666b9396c 9c7c023f91428234ca0ea4df1199758686f4dcd04da96ba63571788fb3389c0b Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	217 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash a0e665ba7c7b5a960ad4d13b07cad5ed 374ab06b87ecf1a0ae2e5578670a81ae689e7a34 b71b9e01ee32eb13093d3b9271325ad59aa4da8d86970d65af475ee3372e9133 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	157 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash 26f0d41b8a5366fee5c5a2edf9406d6f afb982d39cc8879056a7e68050984c69df9e12b2 e3b34f565fed6aa28330b60a6003b707833f74559a18a1ab50f09b6b405fc88d Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	267 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen4 Hash 394ce5e2757394e784fa975d7a723e8e 8d619c608bc94b9415a7e2d1da7e0d3b34124243 a78f767913bafdd0e0dd54d86f64e767470fef9e5c56bfb9e2a1903b1b39c2ef Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21	ScriptElement	2.7 kB	2023-03-07	2025-05-10
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:52 Times Seen613 Hash 6656000d5e9d405df3093dec766256c2 adc0fc077f359ca912305c4d0ec2d56c201c0613 7592aea3e7ee0eb873abaf4872be28881cf3c6427244c884a20c7860d64586da Loading...

	shes.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	ScriptElement	11 kB	2023-03-07	2025-05-11
Pretty URL shes.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:37 Times Seen21832 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	601 B	2023-03-07	2024-10-30
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12 Last Seen2024-10-30 04:07 Times Seen8 Hash acc0180b0742db22d1faf9a7057d123b 69fdbe59b79805192559a326e583074c3f1a19a6 638739bafced091c2dde33d75a20bd9c15563f52266e0c3855d173e2b12c158e Loading...

	shes.vn/wp-includes/js/underscore.min.js?ver=1.8.3	ScriptElement	16 kB	2023-03-07	2025-05-09
Pretty URL shes.vn/wp-includes/js/underscore.min.js?ver=1.8.3 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-09 01:36 Times Seen945 Hash 203eeb8dd53e84fb53b7aeffb562d825 b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae 6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9 Loading...

	stats.wp.com/s-202348.js	ScriptElement	9.7 kB	2023-11-06	2024-08-20
Pretty URL stats.wp.com/s-202348.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-06 03:36 Last Seen2024-08-20 20:44 Times Seen413 Hash 952f407a7745648037d962dba34a0f48 01b3d3fd6a70e66ea034cd76bc5bb443976be7bf 067b22759bfd5684834af3dde55a1205bf7af63a1355a77777c5a160bdca9b55 Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.4.4	ScriptElement	2.1 kB	2023-03-07	2025-05-11
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.4.4 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 14:31 Times Seen9915 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	135 B	2023-03-07	2025-05-11
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 14:31 Times Seen29339 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	shes.vn/wp-includes/js/jquery/jquery.min.js?ver=3.5.1	ScriptElement	90 kB	2023-03-07	2025-05-10
Pretty URL shes.vn/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:12 Times Seen3405 Hash b6f7093369a0e8b83703914ce731b13c d1889f5c173c2a4b20288f1f84758599afd346ef 60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827 Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1	ScriptElement	31 kB	2023-03-07	2025-05-09
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10 Last Seen2025-05-09 14:02 Times Seen98 Hash d42cb0d25c3f3ddc22b283834a469956 b494f5bb90863408c940fd5b8421864e9dba0c5b c2a3211d75d1987d26a72c53e3e269f676db81b631fcfd6a352fb30dee234581 Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.4.4	ScriptElement	6.4 kB	2023-04-06	2025-05-09
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.4.4 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 21:12 Last Seen2025-05-09 14:02 Times Seen310 Hash d71a9deb6b35ed78b25d49739cb2299e 74daa3f57001632d74a004977ec50c1b74d729d4 c799cc52f81045dc282c29f1f879d9f889e9789d9c35ce569aa3e5e3e7323834 Loading...

	shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb	ScriptElement	37 kB	2023-03-07	2025-01-14
Pretty URL shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:17 Last Seen2025-01-14 10:08 Times Seen59 Hash 9cc7b6b06a13711d555f669f2db09244 03969bed0b360ea0882455888fac7f47f8146e6a 15c510fe49c3ec5fd57ac7ead341655699156a63fe10195347dfeae1dc53f909 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	294 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen4 Hash d5e11c0b82b618a1e27845efe629b0dd 6228f5974dc9a8c4476f32430ec13d3f4b0bf3a3 47d347dccc9aebfa40aba11d13d7f8eccbdeb38b04c82cb836c3cf7bddc8b45e Loading...

	stats.wp.com/e-202348.js	ScriptElement	6.9 kB	2023-07-02	2025-03-25
Pretty URL stats.wp.com/e-202348.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-02 20:30 Last Seen2025-03-25 21:47 Times Seen6898 Hash 2567b82fc5b4900c78be291e6a957e99 114ec9e929313111ec06f33e342205c52cce5b11 ca7752fb33cf3a98c0f29bc4eec563112025da4109a0dcc69dabf5f861751258 Loading...

	got.statisticplatform.com/special	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL got.statisticplatform.com/special IP 80.66.79.247 ASN #20803 LLC Siberian Telecommunications Company Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 18:00 Times Seen4656327 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	491 B	2023-03-07	2025-03-28
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-03-28 22:07 Times Seen750 Hash eda0861d93eea53c3286b2fd93d2e42d 979767d815a8847b00fe1d45a5757fdf67b8ca1b 6e799f88d7836b96f8d81538a375039937e497b6a103bd1d259dfef980fdf926 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	162 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen4 Hash 278d9dcc1cba8f48108719dbd87bfeaf 25a0ab7e171ff265b4cfefd3c83e971467b1abf3 f51ff7d6d5a021df988b1b22a06ce49ed3442dcc3e0dbdf50b1259bd3c56832d Loading...

	shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.4.4	ScriptElement	3.0 kB	2023-03-07	2025-05-10
Pretty URL shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.4.4 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 21:23 Times Seen5732 Hash 8bc2109ef48cabf7a26b73d7c3536c5f 0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b 8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	497 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash 84ae6b02d68185ed4a4e12b219e1bdea 38b6ecaad2e2bf8fb522c648e028f49eb0d6d69f fc337f7ffecd67947e11833ed687f2e55f14547f8c2d6ed6e696c32921c2e0ca Loading...

	www.googletagmanager.com/gtag/js?id=G-5PR2FB6DBC	ScriptElement	281 kB	2023-12-01	2023-12-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-5PR2FB6DBC IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 19:31 Last Seen2023-12-01 19:31 Times Seen1 Hash b2afc573bc22ebe1754bb11462a078d3 3a0e769f96469115d856c0a84b6a45eda26aa651 474f534de7368f0be72f0fc28d49c8c2cfaa7e029fd845c573e899cc550845b7 Loading...

	west.statisticsplatform.com/LJWmLm	ScriptElement	14 kB	2023-11-09	2023-12-06
Pretty URL west.statisticsplatform.com/LJWmLm IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 13:37 Last Seen2023-12-06 00:20 Times Seen1079 Hash 33f661e7931fe68e974f9bacc20cb0d8 2741d54525746e66123f3f9290c7afe6e11f3026 0d10ab9ae81ed51d40af144320af43f208be21fb0ac02e968c5b017fc2c3bbdd Loading...

	shes.vn/wp-content/plugins/td-woo/assets/js/js_external_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46	ScriptElement	21 kB	2023-03-07	2025-03-22
Pretty URL shes.vn/wp-content/plugins/td-woo/assets/js/js_external_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03 Last Seen2025-03-22 08:02 Times Seen27 Hash d10faacca34b43ac38388020e070e143 41b3949bd68e62d0310883ef8bf097663f6b6200 f74e02957f1687e4b09fbac0b73a067edf28c7b491cdcbee81288663660e96b6 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	6 B	2023-03-07	2025-05-11
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 14:49 Times Seen3594 Hash e40805fa510c6622658de2086eb361d2 41d8e131233dceea1d0c9aed70774914965304ef da6bcc93436f9fde95a92d5412601949548490ad0290f355eb4a019eeac1e3f7 Loading...

	shes.vn/wp-includes/js/comment-reply.min.js?ver=5.7.10	ScriptElement	3.0 kB	2023-03-07	2025-05-11
Pretty URL shes.vn/wp-includes/js/comment-reply.min.js?ver=5.7.10 IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 11:00 Times Seen1220 Hash 3b59c3b33879d70b46063089ec505e03 4054dbf1c08e09d8514df72dbe137d02efae907a 143ce443c390db3b8598f951de20bd04623859a581a15b8cde43ebfa1f8ec103 Loading...

	shes.vn/san-pham/bong-tay-trang-miniso/	ScriptElement	184 B	2023-12-01	2024-08-20
Pretty URL shes.vn/san-pham/bong-tay-trang-miniso/ IP 103.90.235.252 ASN #135917 Cong ty TNHH Web Panda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-01 15:57 Last Seen2024-08-20 17:10 Times Seen2 Hash 9d37f7ac8df52395c76e6b64d8b09d4b fd42eddca62d8d49d4374029f6a8f82f695c3c01 dcd8c40fa6f21b61d27b01e1fd7d613743734071453cf4774f24cd249d5ecab7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - f147575d5c6a79323999c6ef08e7a4bf	524 B	2023-09-09 23:01	2024-10-04 11:14
Pretty Observations First Seen2023-09-09 23:01 Last Seen2024-10-04 11:14 Times Seen313 Hash f147575d5c6a79323999c6ef08e7a4bf c8f04bc47a6f8b36f4e5a2f184f0c413794fb719 bda371445c9ccf2a7381ac0c5d12461431ec3e9a0e63b010fb8ae29d0f3e68da Loading...

HTTP Transactions (115)

URL IP Response Size

shes.vn/san-pham/bong-tay-trang-miniso/

103.90.235.252

200 OK

33 kB

URL User Request GET HTTP/2
shes.vn/san-pham/bong-tay-trang-miniso/
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Size
33 kB (33341 bytes)
Hash
b24faa2670da0efde9b037607e59164a
aece0cdcb12bc26b48e78009bc148f16e8a8ec23
89a82d1dbcaf6e7ed3887f8a4332dd2e135581d5cf895ec17cb12e06f16a1bad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /san-pham/bong-tay-trang-miniso/ HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://shes.vn/wp-json/>; rel="https://api.w.org/", <https://shes.vn/wp-json/wp/v2/product/17064>; rel="alternate"; type="application/json", <https://shes.vn/?p=17064>; rel=shortlink
content-encoding: gzip
vary: Accept-Encoding
content-length: 33341
date: Fri, 01 Dec 2023 18:30:17 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/

103.90.235.252

0 B

URL
shes.vn/
IP
103.90.235.252:0
ASN
#135917 Cong ty TNHH Web Panda

Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://shes.vn/
content-length: 0
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
connection: Keep-Alive

shes.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.7.10

103.90.235.252

200 OK

8.1 kB

URL GET HTTP/2
shes.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.7.10
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
Unicode text, UTF-8 text, with very long lines (29677)
Size
8.1 kB (8075 bytes)
Hash
b5d1e2c87b60ce71c3fd90ca27073250
b65e3890ef1565f98971b344b4c85866a5f33860
2cd9de3dd26246204749cff259bc34e8e6a47ae5d6e4528b9b28c75d68d50cde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.10 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "e33b-6078e047-289f5d;br"
last-modified: Fri, 16 Apr 2021 00:54:31 GMT
content-type: text/css
content-length: 8075
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/subscribe.css?ver=1638354851

103.90.235.252

200 OK

478 B

URL GET HTTP/2
shes.vn/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/subscribe.css?ver=1638354851
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (1581)
Size
478 B (478 bytes)
Hash
c15166b40fe1c61bffbb2ff7463927e0
735c0317e33f447d255e9afb5a3e58787a8c40af
19f99fb12d73132951219922caba1076dd3f91f09f44c65e3acdd14495f7cf6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/subscribe.css?ver=1638354851 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "666-61a74fa3-2a1169;br"
last-modified: Wed, 01 Dec 2021 10:34:11 GMT
content-type: text/css
content-length: 478
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=5.1.0

103.90.235.252

200 OK

909 B

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=5.1.0
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (3276), with no line terminators
Size
909 B (909 bytes)
Hash
1acc6d05dce5567e977de5bb00610c80
72c307774f03749c32c313565da58fa3b8a80830
ae707ec81b142f04b6d5f785a5d4f7e8301bdb62a95288dee1f3e58930d21c7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=5.1.0 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "ccc-622a724a-2c0917;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: text/css
content-length: 909
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=5.1.0

103.90.235.252

200 OK

17 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=5.1.0
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
17 kB (16877 bytes)
Hash
a84c331517c1830fee6715ce8be2e9c7
e398adfe8d9fd742eb2e9fc951672af779737804
f859ec6ffbdeda0afa3d1fbfa0931d19c9ed6441323bf46916f2d7411f48ae8a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=5.1.0 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "2b9e9-622a724a-2c090c;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: text/css
content-length: 16877
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.2.0

103.90.235.252

200 OK

574 B

URL GET HTTP/2
shes.vn/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.2.0
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
574 B (574 bytes)
Hash
d8aaec9078702521ce2d4270af660423
1022c53fc626776361c88781beff0f9e48292d2b
70211e8296c52b3feb952e99accc2d44101ab3f2d8d20d912a3f544113af17ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.2.0 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "ba4-60e2c06a-282ca0;br"
last-modified: Mon, 05 Jul 2021 08:18:50 GMT
content-type: text/css
content-length: 574
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.4.4

103.90.235.252

200 OK

856 B

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (3287), with no line terminators
Size
856 B (856 bytes)
Hash
e65cbce40458e232c2d8c7661dfeab7a
9aea5882139ac04bc182d376c34ac6c6e9b95842
8bdb4e5d2066e5a29a162cee6b418adeb546ce98025ab4741107dfaa8485415f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "cd7-622a724a-2c07d2;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: text/css
content-length: 856
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.4.4

103.90.235.252

200 OK

1.7 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (7887), with no line terminators
Size
1.7 kB (1722 bytes)
Hash
e9832bf9ac8e609f5ece62974257220d
feb78d4ff80fd84163c98a67ded3ad06ef7bacb9
0070e220521a6a69cb33f7da37bd5c1aa7e76d0865fb9cdba6672eb5ba50e425

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "1ecf-622a724a-2c07d6;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: text/css
content-length: 1722
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.4.4

103.90.235.252

200 OK

2.4 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
Unicode text, UTF-8 text, with very long lines (17923), with no line terminators
Size
2.4 kB (2370 bytes)
Hash
1cbcc9e85ba99c007f519bf1a67feb58
82d238c9b2a1797c0ad785c01309c49dc1f302af
48052f6267b2e21fb086ad26457c715b3b8b5e8c6fcbcdea42589da06b05e9be

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "4605-622a7249-2c07a3;br"
last-modified: Thu, 10 Mar 2022 21:48:57 GMT
content-type: text/css
content-length: 2370
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.4.4

103.90.235.252

200 OK

8.4 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
Unicode text, UTF-8 text, with very long lines (62789), with no line terminators
Size
8.4 kB (8361 bytes)
Hash
7892d7349e74e7dd7fae386eda2dded7
bd31f749a68bfffc0ba299d94b5de5d3803d9b9b
37811d4d55ec74751bcaa643b3a9798f1d577ac2910b63c6ca202c2e36544e05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "f553-622a724a-2c07c5;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: text/css
content-length: 8361
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-5PR2FB6DBC

142.250.74.168

200 OK

93 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-5PR2FB6DBC
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
93 kB (93077 bytes)
Hash
b2afc573bc22ebe1754bb11462a078d3
3a0e769f96469115d856c0a84b6a45eda26aa651
474f534de7368f0be72f0fc28d49c8c2cfaa7e029fd845c573e899cc550845b7

HTTP Headers

GET /gtag/js?id=G-5PR2FB6DBC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:31:09 GMT
expires: Fri, 01 Dec 2023 18:31:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93077
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shes.vn/wp-includes/css/dashicons.min.css?ver=5.7.10

103.90.235.252

200 OK

35 kB

URL GET HTTP/2
shes.vn/wp-includes/css/dashicons.min.css?ver=5.7.10
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (58981)
Size
35 kB (35099 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=5.7.10 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "e688-6078e047-289f42;br"
last-modified: Fri, 16 Apr 2021 00:54:31 GMT
content-type: text/css
content-length: 35099
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=2.0.17

103.90.235.252

200 OK

190 B

URL GET HTTP/2
shes.vn/wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=2.0.17
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (438), with no line terminators
Size
190 B (190 bytes)
Hash
4c3d163962aa193017b5b3f92bbaa5ea
4e8f3323f5cfa147c58c1497edffa79d23304bf3
b88fca268e1352a0922f301c6b88f0499606c01faa8d0718de11a8153a5edc3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=2.0.17 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "1b6-60e2c056-282c73;br"
last-modified: Mon, 05 Jul 2021 08:18:30 GMT
content-type: text/css
content-length: 190
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.17

103.90.235.252

200 OK

1.3 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.17
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (5103), with no line terminators
Size
1.3 kB (1252 bytes)
Hash
364e9c4b3d608f7969ce298034d4c964
e078e70311cfb21030c7a993f3f15878759ebe9e
22af5d3bf749542c2d95975186991b7b8c1e0766449c3fdeab55d57eb0d1ffdc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.17 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "13ef-60e2c056-282c8f;br"
last-modified: Mon, 05 Jul 2021 08:18:30 GMT
content-type: text/css
content-length: 1252
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=978887166a39c57c36d5cf4a5ec10289

103.90.235.252

200 OK

4.4 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=978887166a39c57c36d5cf4a5ec10289
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (37284), with no line terminators
Size
4.4 kB (4355 bytes)
Hash
b8fdc78e2cf11d2d83c09052d26460e6
95957acafbd2ad4aca91c4406de0b619458df62b
d227e31ec93027f2b903fe5011b6ef0d67fd1fd8e0105843a2f56626e74f4322

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=978887166a39c57c36d5cf4a5ec10289 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "91a4-60e2c1ce-2a1fff;br"
last-modified: Mon, 05 Jul 2021 08:24:46 GMT
content-type: text/css
content-length: 4355
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/themes/Newspaper/style.css?ver=11

103.90.235.252

200 OK

23 kB

URL GET HTTP/2
shes.vn/wp-content/themes/Newspaper/style.css?ver=11
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (378)
Size
23 kB (23122 bytes)
Hash
cd1ca4c1404e4b72da39f36691d61ae1
a642caaa23b25f313222670eb2c3c35aae824613
312460f32193ff9910d720cc337941abd9c749e9f3c7c0e3bf707d90a51ca897

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Newspaper/style.css?ver=11 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "24641-60e2c1c0-282d45;br"
last-modified: Mon, 05 Jul 2021 08:24:32 GMT
content-type: text/css
content-length: 23122
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/forget-about-shortcode-buttons/public/css/button-styles.css?ver=2.1.2

103.90.235.252

200 OK

1.2 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/forget-about-shortcode-buttons/public/css/button-styles.css?ver=2.1.2
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
1.2 kB (1215 bytes)
Hash
6758a8fd4a46a3b523207e2d9aa56463
824fc93a1971dc39b3b21c6b80ac63436220a77d
f46d94840c903a15d22f37b355f71205554b15abd725d6ad0d81f7ca21e8f38e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/forget-about-shortcode-buttons/public/css/button-styles.css?ver=2.1.2 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "2293-602f333e-2a046e;br"
last-modified: Fri, 19 Feb 2021 03:40:46 GMT
content-type: text/css
content-length: 1215
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=978887166a39c57c36d5cf4a5ec10289

103.90.235.252

200 OK

22 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=978887166a39c57c36d5cf4a5ec10289
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
22 kB (21453 bytes)
Hash
bafde036ac718873332dcd486a55b334
a4c2d5a8d1114479a3035fe1b649ac56ed2501f8
b689f2267305a97c30f5bda1a0e18993c4bed294007df78eafd6829a4408cb1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=978887166a39c57c36d5cf4a5ec10289 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "26c08-60e2c1cd-2a1e37;br"
last-modified: Mon, 05 Jul 2021 08:24:45 GMT
content-type: text/css
content-length: 21453
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=9aa5e1ff3d260687f7ac21c07b85571f

103.90.235.252

200 OK

54 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=9aa5e1ff3d260687f7ac21c07b85571f
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
54 kB (54463 bytes)
Hash
32872b624f07035c3a88a86a5baf62c6
d91d523484aad1d9508e889a7684649560519c99
7a89d23287ae3c749a356c76da7ef88c34d0ed018c049701b05304c3f6601ab7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=9aa5e1ff3d260687f7ac21c07b85571f HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "b2ccc-60e2c1eb-2a03d9;br"
last-modified: Mon, 05 Jul 2021 08:25:15 GMT
content-type: text/css
content-length: 54463
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/includes/demos/gossip/demo_style.css?ver=11

103.90.235.252

200 OK

267 B

URL GET HTTP/2
shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/includes/demos/gossip/demo_style.css?ver=11
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
267 B (267 bytes)
Hash
371c05b8170712425bf6981c57bd21ba
594b0f5f4f6c223431ba116301eeae0927ba7a22
e76fc56db6a781f7f604b281948d4be6115b7fd1f95d0abc05ca22ec594f8b21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newspaper/includes/demos/gossip/demo_style.css?ver=11 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "392-60e2c1cc-2a1b9d;br"
last-modified: Mon, 05 Jul 2021 08:24:44 GMT
content-type: text/css
content-length: 267
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-woo/assets/css/td-woo-front.css?ver=f4f1d946dff1760cd00ed51b2735db46

103.90.235.252

200 OK

2.5 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-woo/assets/css/td-woo-front.css?ver=f4f1d946dff1760cd00ed51b2735db46
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
2.5 kB (2483 bytes)
Hash
1cf581ba3e5ed3344d9cdc9af2577746
c93b6e29e7cc9899014c324d4eb02fcd5d425a59
92b9f3a5c631077b3703fcb888aa6e60705e378231b7a1c4cecc670d3c8b52c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-woo/assets/css/td-woo-front.css?ver=f4f1d946dff1760cd00ed51b2735db46 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "3266-60e2c21f-282907;br"
last-modified: Mon, 05 Jul 2021 08:26:07 GMT
content-type: text/css
content-length: 2483
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/jetpack/css/jetpack.css?ver=9.8.2

103.90.235.252

200 OK

12 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/jetpack/css/jetpack.css?ver=9.8.2
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (17229)
Size
12 kB (12484 bytes)
Hash
64eed41abd9764df0f931af09735c3ef
722953159ecb9cbbc325c7905f3c6bfca4a113bb
a63e79b5a97bf477e7d6ad34b4f8be2e4e8c7f3162f7d58b156ff0557f65c312

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack/css/jetpack.css?ver=9.8.2 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "11f12-6475c6d2-4c0478;br"
last-modified: Tue, 30 May 2023 09:50:10 GMT
content-type: text/css
content-length: 12484
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/js/jquery/jquery.min.js?ver=3.5.1

103.90.235.252

200 OK

30 kB

URL GET HTTP/2
shes.vn/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (65451)
Size
30 kB (30127 bytes)
Hash
b6f7093369a0e8b83703914ce731b13c
d1889f5c173c2a4b20288f1f84758599afd346ef
60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "15d98-6013acad-28a186;br"
last-modified: Fri, 29 Jan 2021 06:35:25 GMT
content-type: application/x-javascript
content-length: 30127
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

103.90.235.252

200 OK

4.0 kB

URL GET HTTP/2
shes.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3992 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "2bd8-6013acad-28a184;br"
last-modified: Fri, 29 Jan 2021 06:35:25 GMT
content-type: application/x-javascript
content-length: 3992
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1638354851

103.90.235.252

200 OK

1.6 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1638354851
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (4184), with no line terminators
Size
1.6 kB (1556 bytes)
Hash
5d4894dfb5fa6ce16d2fdd4b48a59650
e6d76d2053d48e018c3da4a01905303582ca3218
92c811b4ac9b3f23ec0c8eadae3be374682a860d290aac9cde2a8a8911b7412c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1638354851 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "1058-61a74fa3-2a1168;br"
last-modified: Wed, 01 Dec 2021 10:34:11 GMT
content-type: application/x-javascript
content-length: 1556
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.2.0

103.90.235.252

200 OK

556 B

URL GET HTTP/2
shes.vn/wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.2.0
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text
Size
556 B (556 bytes)
Hash
ec5778ba3a0451e0265a02c26458a00e
3170e2381ab6c13e2ed79cedaf3ab5f689e73b1a
b8c0ce32234af999076b48518b249d477718550593a782e170f159477e8b4265

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/kk-star-ratings/public/js/kk-star-ratings.js?ver=4.2.0 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "77f-60e2c06a-282ca5;br"
last-modified: Mon, 05 Jul 2021 08:18:50 GMT
content-type: application/x-javascript
content-length: 556
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70

103.90.235.252

200 OK

3.2 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (9151)
Size
3.2 kB (3245 bytes)
Hash
2e96f622673104a3fb67ab56f849c073
f4c17ae4709cad9bc997357581f4e30fc4bbee2c
b49498d1142de7f2e16afc2cd4250d2ba30c5df4de5d291f51d7cf69727efdbe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "2549-622a724a-2c08a5;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 3245
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.4.4

103.90.235.252

200 OK

973 B

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
HTML document, ASCII text, with very long lines (3037), with no line terminators
Size
973 B (973 bytes)
Hash
8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "bdd-622a724a-2c088d;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 973
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21

103.90.235.252

200 OK

1.0 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (2600)
Size
1.0 kB (1048 bytes)
Hash
6656000d5e9d405df3093dec766256c2
adc0fc077f359ca912305c4d0ec2d56c201c0613
7592aea3e7ee0eb873abaf4872be28881cf3c6427244c884a20c7860d64586da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "a6a-622a724a-2c08a3;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 1048
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2

103.90.235.252

200 OK

6.2 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (22774), with no line terminators
Size
6.2 kB (6208 bytes)
Hash
031b743a76c3631cddc1dd33e0b3f898
79e6163cf945a4221240259a3671ab328652d13a
63ea4f605da0448be22667e995975d694333269fb13cf36036cd291798744c1b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "58f6-622a724a-2c0893;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 6208
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1

103.90.235.252

200 OK

12 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (31090)
Size
12 kB (11530 bytes)
Hash
d42cb0d25c3f3ddc22b283834a469956
b494f5bb90863408c940fd5b8421864e9dba0c5b
c2a3211d75d1987d26a72c53e3e269f676db81b631fcfd6a352fb30dee234581

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "79d7-622a724a-2c089f;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 11530
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1

103.90.235.252

200 OK

3.4 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
HTML document, ASCII text, with very long lines (9560)
Size
3.4 kB (3430 bytes)
Hash
75f75d2243b3952270fe275f690e7197
edbdf656bf0fb0f13030e20a630a8f48e94e04c5
b60e37730fdca20988061ac72162a4262c03f646c51fbb695cb5c337af5f6ab6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "25c7-622a724a-2c08a0;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 3430
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.4.4

103.90.235.252

200 OK

1.7 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
Unicode text, UTF-8 text, with very long lines (6357), with no line terminators
Size
1.7 kB (1707 bytes)
Hash
d71a9deb6b35ed78b25d49739cb2299e
74daa3f57001632d74a004977ec50c1b74d729d4
c799cc52f81045dc282c29f1f879d9f889e9789d9c35ce569aa3e5e3e7323834

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "18d8-622a724a-2c0885;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 1707
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/01/logo-shes.png

103.90.235.252

200 OK

129 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/01/logo-shes.png
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
PNG image data, 309 x 202, 8-bit/color RGBA, non-interlaced\012- data
Size
129 kB (128678 bytes)
Hash
be2abc2a98db1fd75a07a01439aa1a9e
d9847a6c6fd08ef148434a33033e78ae1cfd6f5f
ad75b5ddde7317b3fe030b8c2e4e250f2efa4527b88f3ae4db5d1b1d7b29edfb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/logo-shes.png HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "1f6a6-5ff41732-2c24d8;;;"
last-modified: Tue, 05 Jan 2021 07:37:22 GMT
content-type: image/png
content-length: 128678
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/06/banner-02-com.jpg

103.90.235.252

200 OK

86 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/06/banner-02-com.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x500, components 3\012- data
Size
86 kB (86286 bytes)
Hash
88565cdcf6ac14425d03f5ed49f77e4e
753889b8d29817002b71163f3e415c58d9fd92ae
e846d9d9228e04ad37632d05daa76cf953057d7bcbda688eca793378b59ceade

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/06/banner-02-com.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "1510e-61b6d252-2c8381;;;"
last-modified: Mon, 13 Dec 2021 04:55:46 GMT
content-type: image/jpeg
content-length: 86286
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2023/11/goi-dau-duong-sinh-2-100x70.jpg

103.90.235.252

200 OK

2.8 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2023/11/goi-dau-duong-sinh-2-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.8 kB (2806 bytes)
Hash
4cfc592c593bcc717b8e0e79ac364f2b
5c161132c760162f8c7edd2a98c454bb4aeddb2f
62ed26787e15b829aa6348281b65167f2dfb47d028f29a4f29c114f53a004116

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/11/goi-dau-duong-sinh-2-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "af6-654b2b72-46076;;;"
last-modified: Wed, 08 Nov 2023 06:32:18 GMT
content-type: image/jpeg
content-length: 2806
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2023/11/spa-chuyen-massage-body-1-100x70.jpg

103.90.235.252

200 OK

2.8 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2023/11/spa-chuyen-massage-body-1-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.8 kB (2828 bytes)
Hash
b3b062be4ed319f062edee750e01cc3c
a6409b8c63b7d09351b441b35d10c03ae2bf4271
2ecd0d4f305c9365a1d9c7baf2b5f7d2afb07231e143c944c7cba1a30e05ff56

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/11/spa-chuyen-massage-body-1-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "b0c-6548633c-45fa3;;;"
last-modified: Mon, 06 Nov 2023 03:53:32 GMT
content-type: image/jpeg
content-length: 2828
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2023/10/tu-be-gia-re-11-100x70.jpg

103.90.235.252

200 OK

2.6 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2023/10/tu-be-gia-re-11-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.6 kB (2591 bytes)
Hash
be2dde9ddea7e971271c67dd3e6b8acc
8567cb1b1b9e755bfade5ac51d7d50c4dea8e86e
33945177a7628f37e27cc82108fd8a74115069f6cedddf2c8530c4b0fb2a4804

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/10/tu-be-gia-re-11-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "a1f-6520c885-445fcc;;;"
last-modified: Sat, 07 Oct 2023 02:55:01 GMT
content-type: image/jpeg
content-length: 2591
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2023/08/hoc-phun-xam-tham-my-1-100x70.jpg

103.90.235.252

200 OK

2.3 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2023/08/hoc-phun-xam-tham-my-1-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.3 kB (2345 bytes)
Hash
03b241d11b8c73ed1fb921a352532aa4
17a7f025526b6e2a7b513102c84190c853f7d07f
fcc76cbae078e6a8a85f8161677ad594cec6b09edb53d9e3eba134e5ac5ff8fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/08/hoc-phun-xam-tham-my-1-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "929-64e329bf-4a27b2;;;"
last-modified: Mon, 21 Aug 2023 09:09:19 GMT
content-type: image/jpeg
content-length: 2345
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2023/07/image2-min-100x70.gif

103.90.235.252

200 OK

6.6 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2023/07/image2-min-100x70.gif
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
GIF image data, version 87a, 100 x 70\012- data
Size
6.6 kB (6600 bytes)
Hash
c108857be406503f9329811b1956059c
b348e3cd4baf98bde03c76d2117f4ba94e3cc3ed
b0df5a580aa86e8d72deafa875810e9bab4f953a980c559928212e815fb5556f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/07/image2-min-100x70.gif HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "19c8-64c213ec-4a1ac8;;;"
last-modified: Thu, 27 Jul 2023 06:51:24 GMT
content-type: image/gif
content-length: 6600
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2023/07/image1-min-100x70.png

103.90.235.252

200 OK

10 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2023/07/image1-min-100x70.png
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
PNG image data, 100 x 70, 8-bit/color RGB, non-interlaced\012- data
Size
10 kB (10469 bytes)
Hash
03477136cd38a3ce47667c0949430296
fe425f7cf4eedc24fe1eb71dd39d86274b59d7ab
7b4b414f1818b295c3ed3af97ac583a3b9eb551a1db596fca45189992599fefa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/07/image1-min-100x70.png HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "28e5-64b7422e-4a1a70;;;"
last-modified: Wed, 19 Jul 2023 01:53:50 GMT
content-type: image/png
content-length: 10469
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2022/05/ao-chong-nang-nu-dang-dai-2-100x70.jpg

103.90.235.252

200 OK

3.2 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2022/05/ao-chong-nang-nu-dang-dai-2-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x70, components 3\012- data
Size
3.2 kB (3204 bytes)
Hash
f5020182bbf40319f3c720fa3b6c1663
ff92386f9fc6d6ea93cd9c25dff28d90446bf0f3
a1eae72bf1712c2409c69371202b6bed7b8442b995e9affeae227fa8fbba4b8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/05/ao-chong-nang-nu-dang-dai-2-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "c84-627a239c-462578;;;"
last-modified: Tue, 10 May 2022 08:34:36 GMT
content-type: image/jpeg
content-length: 3204
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/10/nuoc-hoa-nam-cao-cap-100x70.jpg

103.90.235.252

200 OK

1.6 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/10/nuoc-hoa-nam-cao-cap-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
1.6 kB (1574 bytes)
Hash
a81eb4e12cb8b4139a3d843e51bc8950
ac58c192a6b4c1c0c59afa5a3d0f15ea60cebaa1
33b12551ac1f54dcdd1b306d8d6294de531d557563d4dc22735593499d736045

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/10/nuoc-hoa-nam-cao-cap-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "626-61a8be90-30804c;;;"
last-modified: Thu, 02 Dec 2021 12:39:44 GMT
content-type: image/jpeg
content-length: 1574
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/10/nuoc-hoa-phap-7-100x70.jpeg

103.90.235.252

200 OK

3.3 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/10/nuoc-hoa-phap-7-100x70.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
3.3 kB (3340 bytes)
Hash
d448e1bf8893c45882a89f433cd4da8b
984bfabacfc5d49f98f7df1417fa6a19d2344c30
2ab6deb4f77d9c8ad7e8baa093285de84839c4eb6e1f03a1890270a1279e73c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/10/nuoc-hoa-phap-7-100x70.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "d0c-61a8bc03-3082ac;;;"
last-modified: Thu, 02 Dec 2021 12:28:51 GMT
content-type: image/jpeg
content-length: 3340
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/10/nuoc-hoa-100x70.jpg

103.90.235.252

200 OK

2.5 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/10/nuoc-hoa-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.5 kB (2483 bytes)
Hash
6583cdec35e96ab805f7b5ebfda259d5
436d2e98a760b3c0b512451108f88ddd2baaa0ad
ce72ae450370fa2c35b204bf62a3f4e9c5421c4900ad3aa666c74d61b2cd72ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/10/nuoc-hoa-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "9b3-61a8bb47-308159;;;"
last-modified: Thu, 02 Dec 2021 12:25:43 GMT
content-type: image/jpeg
content-length: 2483
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2020/07/nuoc-hoa-hong-evoluderm-duong-am-100x70.jpg

103.90.235.252

200 OK

2.7 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2020/07/nuoc-hoa-hong-evoluderm-duong-am-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.7 kB (2668 bytes)
Hash
d3e5c19722016b9ca45d8f43663e6ef7
50f74d021d85717372564aa992e2e93a6522c09b
64104058095fee38cba6df36af07391dabad1b0551402a0cebb0b035e69bb7ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/nuoc-hoa-hong-evoluderm-duong-am-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "a6c-61bc5281-340947;;;"
last-modified: Fri, 17 Dec 2021 09:04:01 GMT
content-type: image/jpeg
content-length: 2668
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2020/07/sua-rua-mat-cho-da-kho-6-100x70.jpg

103.90.235.252

200 OK

2.2 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2020/07/sua-rua-mat-cho-da-kho-6-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
2.2 kB (2185 bytes)
Hash
83f5446bc6f009c2acc47ec2aae129d8
4b6bd6b4c5626cc08c0e69c3862544c2ba62c472
4c3b85a80294a4880d746f501cd24b6f78cda79e1f35964f139cb4446050be37

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/sua-rua-mat-cho-da-kho-6-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "889-61b9abcb-340c12;;;"
last-modified: Wed, 15 Dec 2021 08:48:11 GMT
content-type: image/jpeg
content-length: 2185
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2020/07/nuoc-hoa-hong-diep-ca-dokudami-100x70.jpg

103.90.235.252

200 OK

3.1 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2020/07/nuoc-hoa-hong-diep-ca-dokudami-100x70.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x70, components 3\012- data
Size
3.1 kB (3091 bytes)
Hash
4173f725994324a87ad497084fe4609d
87d337e97d3310c3c6034060549672fa34f4370f
1e5e10f4f333f82252ffce3d1fe426c55b32e8abc96476c9d01f9c9850adebf1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/nuoc-hoa-hong-diep-ca-dokudami-100x70.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "c13-61bc52cd-3419db;;;"
last-modified: Fri, 17 Dec 2021 09:05:17 GMT
content-type: image/jpeg
content-length: 3091
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4

103.90.235.252

200 OK

900 B

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (1668)
Size
900 B (900 bytes)
Hash
d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "72a-622a724a-2c0890;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 900
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.4.4

103.90.235.252

200 OK

679 B

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (2139), with no line terminators
Size
679 B (679 bytes)
Hash
b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "85b-622a724a-2c0871;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 679
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.4.4

103.90.235.252

200 OK

934 B

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (2938), with no line terminators
Size
934 B (934 bytes)
Hash
51af5d767f0300f23ecec6298b707395
5eb2d3d937fe0392a974937125d0420666b9396c
9c7c023f91428234ca0ea4df1199758686f4dcd04da96ba63571788fb3389c0b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "b7a-622a724a-2c088c;br"
last-modified: Thu, 10 Mar 2022 21:48:58 GMT
content-type: application/x-javascript
content-length: 934
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.1

103.90.235.252

200 OK

2.2 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.1
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (355)
Size
2.2 kB (2230 bytes)
Hash
91503748dee534648f21e9caed39c855
a525c0607e5e0cb3b80927c00b835833b810ceaf
2f89f6ca7f14a21a488b539bc5b4703e7f9fb4298dab6ccb59e1553ef69319d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.5.1 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "2333-60e2c2fb-2c1546;br"
last-modified: Mon, 05 Jul 2021 08:29:47 GMT
content-type: application/x-javascript
content-length: 2230
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/js/underscore.min.js?ver=1.8.3

103.90.235.252

200 OK

5.5 kB

URL GET HTTP/2
shes.vn/wp-includes/js/underscore.min.js?ver=1.8.3
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (16010)
Size
5.5 kB (5544 bytes)
Hash
203eeb8dd53e84fb53b7aeffb562d825
b4b4361a61ee78717bdcffe5c46ea79cdc3e04ae
6cd0d6897b3d4779f7d88ce72531f22fbf75851b195fb14e6f3f23d051b3d1e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "3ead-6078e047-289ff1;br"
last-modified: Fri, 16 Apr 2021 00:54:31 GMT
content-type: application/x-javascript
content-length: 5544
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb

103.90.235.252

200 OK

1.8 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (566)
Size
1.8 kB (1818 bytes)
Hash
6e98296229ffa777101f2ef59ae5f7c5
cb53e2d6108ffbbbc4a96307eefa1ed6b3a4a4d8
0dd95d9bfc689b8862a9dd8ae8166ca21df149fb24f3d0830423b66ae00d426e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "1428-60e2c1da-2a1046;br"
last-modified: Mon, 05 Jul 2021 08:24:58 GMT
content-type: application/x-javascript
content-length: 1818
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=11

103.90.235.252

200 OK

56 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=11
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (670)
Size
56 kB (56049 bytes)
Hash
78b8737d57a7d0b029efa514907cd506
67c6ce628b259c9a8c500586302d2ed9c9ea98ad
2d036346b18bf4c27bc91f0416f8b59427e32bfc6c2724a27e6fe2e5a7b58574

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=11 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "4029c-60e2c1cd-2a1e4c;br"
last-modified: Mon, 05 Jul 2021 08:24:45 GMT
content-type: application/x-javascript
content-length: 56049
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/js/comment-reply.min.js?ver=5.7.10

103.90.235.252

200 OK

1.2 kB

URL GET HTTP/2
shes.vn/wp-includes/js/comment-reply.min.js?ver=5.7.10
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (2949)
Size
1.2 kB (1230 bytes)
Hash
3b59c3b33879d70b46063089ec505e03
4054dbf1c08e09d8514df72dbe137d02efae907a
143ce443c390db3b8598f951de20bd04623859a581a15b8cde43ebfa1f8ec103

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=5.7.10 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "ba8-6078e047-28a1a6;br"
last-modified: Fri, 16 Apr 2021 00:54:31 GMT
content-type: application/x-javascript
content-length: 1230
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-woo/assets/js/js_external_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46

103.90.235.252

200 OK

7.4 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-woo/assets/js/js_external_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (598)
Size
7.4 kB (7390 bytes)
Hash
d10faacca34b43ac38388020e070e143
41b3949bd68e62d0310883ef8bf097663f6b6200
f74e02957f1687e4b09fbac0b73a067edf28c7b491cdcbee81288663660e96b6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-woo/assets/js/js_external_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "5287-60e2c21f-28290d;br"
last-modified: Mon, 05 Jul 2021 08:26:07 GMT
content-type: application/x-javascript
content-length: 7390
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb

103.90.235.252

200 OK

8.0 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (832)
Size
8.0 kB (8022 bytes)
Hash
9cc7b6b06a13711d555f669f2db09244
03969bed0b360ea0882455888fac7f47f8146e6a
15c510fe49c3ec5fd57ac7ead341655699156a63fe10195347dfeae1dc53f909

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=45456ad3a6d583e9cee0a9fe2cdd86cb HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "9176-60e2c1da-2a1045;br"
last-modified: Mon, 05 Jul 2021 08:24:58 GMT
content-type: application/x-javascript
content-length: 8022
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/td-woo/assets/js/js_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46

103.90.235.252

200 OK

6.0 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/td-woo/assets/js/js_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (552)
Size
6.0 kB (6004 bytes)
Hash
26ab72cd270744ec741519bb47363ae7
b236ba1b469d09718e25266046a523f453edfe7a
958257f315f6f607a186c643bb5ab15a4d9df34b77e4e9ed622806d5992c2847

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/td-woo/assets/js/js_files_for_front.min.js?ver=f4f1d946dff1760cd00ed51b2735db46 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "665c-60e2c21f-28290a;br"
last-modified: Mon, 05 Jul 2021 08:26:07 GMT
content-type: application/x-javascript
content-length: 6004
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/js/wp-embed.min.js?ver=5.7.10

103.90.235.252

200 OK

703 B

URL GET HTTP/2
shes.vn/wp-includes/js/wp-embed.min.js?ver=5.7.10
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (1443)
Size
703 B (703 bytes)
Hash
7c5c36baa69fcdb57bd891cda90920b3
9d8b3df7a4fa2968403290d69a60b2eab20734f5
6a482d2d94c0d1bc6937a1759389d01b475e6b28a0d9b5d7eaa3f9cc8f59f3cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.7.10 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "5c6-6463fa43-28a1d5;br"
last-modified: Tue, 16 May 2023 21:48:51 GMT
content-type: application/x-javascript
content-length: 703
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.7.10

103.90.235.252

200 OK

4.3 kB

URL GET HTTP/2
shes.vn/wp-includes/js/wp-emoji-release.min.js?ver=5.7.10
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (11272)
Size
4.3 kB (4294 bytes)
Hash
eaa8641bcda2371f4024a71fbb67de3b
0e46c39d3821683c856605a82254115f9a6a7792
0c5f584d1ea2c3313dc8c55824c2a572d3cf2eae87c5ca62a58e598aec9ddb5c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.10 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "3795-601b1e0d-28a1c7;br"
last-modified: Wed, 03 Feb 2021 22:05:01 GMT
content-type: application/x-javascript
content-length: 4294
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-includes/css/dashicons.min.css

103.90.235.252

200 OK

35 kB

URL GET HTTP/2
shes.vn/wp-includes/css/dashicons.min.css
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (58981)
Size
35 kB (35099 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dashicons.min.css HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/wp-content/plugins/forget-about-shortcode-buttons/public/css/button-styles.css?ver=2.1.2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:18 GMT
etag: "e688-6078e047-289f42;br"
last-modified: Fri, 16 Apr 2021 00:54:31 GMT
content-type: text/css
content-length: 35099
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:18 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/forget-about-shortcode-buttons/public/css/font-awesome.min.css

103.90.235.252

200 OK

12 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/forget-about-shortcode-buttons/public/css/font-awesome.min.css
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (20934)
Size
12 kB (11585 bytes)
Hash
baec338eb0c8bf9d40db42442354991a
59a5d719324e2bd0d97e1b3544a4d91c30d95a98
6e00e8106852b7f72579fe646747028c496cb328fdfea0db3b95c1f1d6e0d7f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/forget-about-shortcode-buttons/public/css/font-awesome.min.css HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/wp-content/plugins/forget-about-shortcode-buttons/public/css/button-styles.css?ver=2.1.2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:19 GMT
etag: "159d8-602f333e-2a046f;br"
last-modified: Fri, 19 Feb 2021 03:40:46 GMT
content-type: text/css
content-length: 11585
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 135012
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 135012
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23680, version 1.0\012- data
Size
24 kB (23680 bytes)
Hash
a1dfd8f9303481f81436ac046207b9f5
34bd645fd25f6eaa74fe0c299c345cba900d7f5a
5dc54bae9968691dcf36c223fd1bca396b2bbee0eb668350ac6883e5daa66861

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 00:33:20 GMT
expires: Fri, 29 Nov 2024 00:33:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:23:36 GMT
content-type: font/woff2
age: 151070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 161661
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16424, version 1.0\012- data
Size
16 kB (16424 bytes)
Hash
aa485a5ac8e86032c387497a6e8e139a
c29462206cfb74110ce0e59a2fb5e8cbedbf9c96
db5d7bb36691306bda51b903c84fbdef4206d3c166b8080100915d16a617f5ea

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:22:11 GMT
expires: Fri, 29 Nov 2024 23:22:11 GMT
cache-control: public, max-age=31536000
age: 68939
last-modified: Thu, 14 Sep 2023 00:41:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16424, version 1.0\012- data
Size
16 kB (16424 bytes)
Hash
aa485a5ac8e86032c387497a6e8e139a
c29462206cfb74110ce0e59a2fb5e8cbedbf9c96
db5d7bb36691306bda51b903c84fbdef4206d3c166b8080100915d16a617f5ea

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:22:11 GMT
expires: Fri, 29 Nov 2024 23:22:11 GMT
cache-control: public, max-age=31536000
age: 68939
last-modified: Thu, 14 Sep 2023 00:41:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28512, version 1.0\012- data
Size
28 kB (28512 bytes)
Hash
16cba75f4b9969077ff30bea2f494e12
71b32a3bbcc6157da9d52accf124660a3cfc66dc
241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:36 GMT
expires: Thu, 28 Nov 2024 21:37:36 GMT
cache-control: public, max-age=31536000
age: 161614
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23680, version 1.0\012- data
Size
24 kB (23680 bytes)
Hash
a1dfd8f9303481f81436ac046207b9f5
34bd645fd25f6eaa74fe0c299c345cba900d7f5a
5dc54bae9968691dcf36c223fd1bca396b2bbee0eb668350ac6883e5daa66861

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 00:33:20 GMT
expires: Fri, 29 Nov 2024 00:33:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:23:36 GMT
content-type: font/woff2
age: 151070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2

216.58.207.227

200 OK

7.5 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7476, version 1.0\012- data
Size
7.5 kB (7476 bytes)
Hash
576ef48b228dc441f64abb2ed23f3bb6
cef677542f82fdc22de9d71835640fb42f546c0f
5c2f5d2f87e1dbd68cde8ed4909094ee6832af4501472ae59f6614b1205585f0

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 19:53:06 GMT
expires: Thu, 28 Nov 2024 19:53:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:25:02 GMT
content-type: font/woff2
age: 167884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2

216.58.207.227

200 OK

7.5 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7476, version 1.0\012- data
Size
7.5 kB (7476 bytes)
Hash
576ef48b228dc441f64abb2ed23f3bb6
cef677542f82fdc22de9d71835640fb42f546c0f
5c2f5d2f87e1dbd68cde8ed4909094ee6832af4501472ae59f6614b1205585f0

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 19:53:06 GMT
expires: Thu, 28 Nov 2024 19:53:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:25:02 GMT
content-type: font/woff2
age: 167884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 135216
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2

216.58.207.227

200 OK

5.6 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Size
5.6 kB (5560 bytes)
Hash
ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:05:19 GMT
expires: Fri, 29 Nov 2024 05:05:19 GMT
cache-control: public, max-age=31536000
age: 134751
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.227

200 OK

50 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Size
50 kB (50368 bytes)
Hash
4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334

HTTP Headers

GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:09 GMT
expires: Fri, 29 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 135781
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.4.4

103.90.235.252

200 OK

1.1 kB

URL GET HTTP/2
shes.vn/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.4.4
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
ASCII text, with very long lines (7043), with no line terminators
Size
1.1 kB (1061 bytes)
Hash
456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.4.4 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:19 GMT
etag: "1b83-622a7249-2c07b7;br"
last-modified: Thu, 10 Mar 2022 21:48:57 GMT
content-type: text/css
content-length: 1061
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 07:29:35 GMT
expires: Fri, 29 Nov 2024 07:29:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 126095
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2020/07/womens-short-suits-indybest.jpg

103.90.235.252

200 OK

232 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2020/07/womens-short-suits-indybest.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2048x1536, components 3\012- data
Size
232 kB (231952 bytes)
Hash
0439e71adc7deba2fd724cf587532b33
0c1b3d010b0bea49e881abc969e151ecef214762
60a29769dac8aac5b826303c23a73095763a32f85d0e0ce0b8f75aa48a01131f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/07/womens-short-suits-indybest.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:19 GMT
etag: "38a10-5fa261d5-34100e;;;"
last-modified: Wed, 04 Nov 2020 08:09:57 GMT
content-type: image/jpeg
content-length: 231952
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2020/12/Hinh-Nen-Trang-10.jpg

103.90.235.252

200 OK

25 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2020/12/Hinh-Nen-Trang-10.jpg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x2048, components 1\012- data
Size
25 kB (24881 bytes)
Hash
a03e67a9f4f6801e6c3dc14b51e290e9
0cd9dca845b55794a2209bb3217a8333506e65f1
c9c2127a91009c35d2cc88e036d54fed4faf3d5cb9aa2c450dda2c4dcea74521

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/12/Hinh-Nen-Trang-10.jpg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:19 GMT
etag: "6131-61bae015-34063b;;;"
last-modified: Thu, 16 Dec 2021 06:43:33 GMT
content-type: image/jpeg
content-length: 24881
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/themes/Newspaper/images/icons/newspaper.woff?19

103.90.235.252

200 OK

25 kB

URL GET HTTP/2
shes.vn/wp-content/themes/Newspaper/images/icons/newspaper.woff?19
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
Web Open Font Format, TrueType, length 24864, version 0.0\012- data
Size
25 kB (24864 bytes)
Hash
b527d8ce3f034285f69b410d6ac6e58b
80c79fe969594d2f4c57027650872fdd7bba491d
ea9ad8f6ace011a694d664482cc6ca0acc2dd86a8d6b684154327ec84c0c95fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?19 HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/wp-content/themes/Newspaper/style.css?ver=11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
etag: "6120-60e2c1c0-282d02;;;"
last-modified: Mon, 05 Jul 2021 08:24:32 GMT
content-type: application/font-woff
content-length: 24864
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2

216.58.207.227

200 OK

5.6 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 5604, version 1.0\012- data
Size
5.6 kB (5604 bytes)
Hash
7cda2cfee99d697daf8c14819d9004eb
76f4002863493c93454a9f17424942f321287cba
0948409a22b5979aa7e1ec20da9e61f12e7d403800b541ece053881bd2542b70

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:21:58 GMT
expires: Fri, 29 Nov 2024 23:21:58 GMT
cache-control: public, max-age=31536000
age: 68952
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28512, version 1.0\012- data
Size
28 kB (28512 bytes)
Hash
16cba75f4b9969077ff30bea2f494e12
71b32a3bbcc6157da9d52accf124660a3cfc66dc
241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:36 GMT
expires: Thu, 28 Nov 2024 21:37:36 GMT
cache-control: public, max-age=31536000
age: 161614
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 135012
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Size
35 kB (35120 bytes)
Hash
dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:49 GMT
expires: Thu, 28 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 161661
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16424, version 1.0\012- data
Size
16 kB (16424 bytes)
Hash
aa485a5ac8e86032c387497a6e8e139a
c29462206cfb74110ce0e59a2fb5e8cbedbf9c96
db5d7bb36691306bda51b903c84fbdef4206d3c166b8080100915d16a617f5ea

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:22:11 GMT
expires: Fri, 29 Nov 2024 23:22:11 GMT
cache-control: public, max-age=31536000
age: 68939
last-modified: Thu, 14 Sep 2023 00:41:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 163034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2

216.58.207.227

200 OK

5.5 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 5548, version 1.0\012- data
Size
5.5 kB (5548 bytes)
Hash
cdaab83619fcacd4027a77c99dd51e69
9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:22:10 GMT
expires: Fri, 29 Nov 2024 23:22:10 GMT
cache-control: public, max-age=31536000
age: 68940
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:27 GMT
expires: Fri, 29 Nov 2024 04:48:27 GMT
cache-control: public, max-age=31536000
age: 135763
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2

216.58.207.227

200 OK

5.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 5928, version 1.0\012- data
Size
5.9 kB (5928 bytes)
Hash
791faa85fafa7cb786504f9c934206f1
1f93b5af14b6795e3b89bfefbe363100df1cc26d
0b68e8634c96265eb32a0c769416b5b02215ee3fee0c9e228f3455dc13ecabaf

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xHIzIFKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 03:24:03 GMT
expires: Fri, 29 Nov 2024 03:24:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:40 GMT
content-type: font/woff2
age: 140827
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

216.58.207.227

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:21:50 GMT
expires: Fri, 29 Nov 2024 23:21:50 GMT
cache-control: public, max-age=31536000
age: 68960
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2

216.58.207.227

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 14:03:39 GMT
expires: Fri, 29 Nov 2024 14:03:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
age: 102451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28512, version 1.0\012- data
Size
28 kB (28512 bytes)
Hash
16cba75f4b9969077ff30bea2f494e12
71b32a3bbcc6157da9d52accf124660a3cfc66dc
241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:36 GMT
expires: Thu, 28 Nov 2024 21:37:36 GMT
cache-control: public, max-age=31536000
age: 161614
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2

216.58.207.227

200 OK

7.5 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7476, version 1.0\012- data
Size
7.5 kB (7476 bytes)
Hash
576ef48b228dc441f64abb2ed23f3bb6
cef677542f82fdc22de9d71835640fb42f546c0f
5c2f5d2f87e1dbd68cde8ed4909094ee6832af4501472ae59f6614b1205585f0

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752Fj8Ghe4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 19:53:06 GMT
expires: Thu, 28 Nov 2024 19:53:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:25:02 GMT
content-type: font/woff2
age: 167884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23680, version 1.0\012- data
Size
24 kB (23680 bytes)
Hash
a1dfd8f9303481f81436ac046207b9f5
34bd645fd25f6eaa74fe0c299c345cba900d7f5a
5dc54bae9968691dcf36c223fd1bca396b2bbee0eb668350ac6883e5daa66861

HTTP Headers

GET /s/oswald/v53/TK3iWkUHHAIjg752Fz8Ghe4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 00:33:20 GMT
expires: Fri, 29 Nov 2024 00:33:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:23:36 GMT
content-type: font/woff2
age: 151070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?v=ext&j=1%3A9.8.2&blog=195227192&post=17064&tz=0&srv=shes.vn&host=shes.vn&ref=&fcp=0&rand=0.22589272381888592

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?v=ext&j=1%3A9.8.2&blog=195227192&post=17064&tz=0&srv=shes.vn&host=shes.vn&ref=&fcp=0&rand=0.22589272381888592
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&j=1%3A9.8.2&blog=195227192&post=17064&tz=0&srv=shes.vn&host=shes.vn&ref=&fcp=0&rand=0.22589272381888592 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 18:31:10 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

stay.decentralappps.com/src/page.js

185.39.206.162

200 OK

13 kB

URL GET HTTP/1.1
stay.decentralappps.com/src/page.js
IP
185.39.206.162:443
ASN
#201570 LLC Mobile Television Systems

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectstay.decentralappps.com
Fingerprint39:03:F6:C3:93:DB:F3:F2:3D:CC:03:8B:C4:C7:0D:59:9A:D9:93:D8
ValidityTue, 21 Nov 2023 02:09:13 GMT - Mon, 19 Feb 2024 02:09:12 GMT

File type
ASCII text, with very long lines (32579), with no line terminators
Size
13 kB (13166 bytes)
Hash
a81b7a55eacdbc5c89c88fe0c9c6e892
7d1bd9f457bf60e274200533973c5d98315d811b
ec44ada48f34c866eacd9c06ff3de35efa86822861386899ea158109b27ba174

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /src/page.js HTTP/1.1
Host: stay.decentralappps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 18:31:11 GMT
Content-Type: application/javascript
Last-Modified: Thu, 09 Nov 2023 09:39:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"654ca8ee-7f43"
Expires: Mon, 11 Dec 2023 18:31:11 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip

pixel.wp.com/t.gif?pi=17064&pn=B%C3%B4ng%20t%E1%BA%A9y%20trang%20Miniso&pc=Ch%C6%B0a%20ph%C3%A2n%20lo%E1%BA%A1i&pp=130000&pt=simple&blog_id=195227192&ui=null&url=https%3A%2F%2Fshes.vn&woo_version=5.4.4&cart_page_contains_cart_block=0&cart_page_contains_cart_shortcode=1&checkout_page_contains_checkout_block=0&checkout_page_contains_checkout_shortcode=1&lr=&or=&r3d=&_en=woocommerceanalytics_product_view&_ui=Ar44EN385hJOEERYrmGqeHU8&_ut=anon&_ts=1701455476045&_tz=0&_lg=en-US&_pf=Linux%20x86_64&_ht=1024&_wd=1280&_sx=0&_sy=0&_dl=https%3A%2F%2Fshes.vn%2Fsan-pham%2Fbong-tay-trang-miniso%2F&_dr=&_rt=1701455476047&_=_

192.0.76.3

200 OK

43 B

URL GET HTTP/2
pixel.wp.com/t.gif?pi=17064&pn=B%C3%B4ng%20t%E1%BA%A9y%20trang%20Miniso&pc=Ch%C6%B0a%20ph%C3%A2n%20lo%E1%BA%A1i&pp=130000&pt=simple&blog_id=195227192&ui=null&url=https%3A%2F%2Fshes.vn&woo_version=5.4.4&cart_page_contains_cart_block=0&cart_page_contains_cart_shortcode=1&checkout_page_contains_checkout_block=0&checkout_page_contains_checkout_shortcode=1&lr=&or=&r3d=&_en=woocommerceanalytics_product_view&_ui=Ar44EN385hJOEERYrmGqeHU8&_ut=anon&_ts=1701455476045&_tz=0&_lg=en-US&_pf=Linux%20x86_64&_ht=1024&_wd=1280&_sx=0&_sy=0&_dl=https%3A%2F%2Fshes.vn%2Fsan-pham%2Fbong-tay-trang-miniso%2F&_dr=&_rt=1701455476047&_=_
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /t.gif?pi=17064&pn=B%C3%B4ng%20t%E1%BA%A9y%20trang%20Miniso&pc=Ch%C6%B0a%20ph%C3%A2n%20lo%E1%BA%A1i&pp=130000&pt=simple&blog_id=195227192&ui=null&url=https%3A%2F%2Fshes.vn&woo_version=5.4.4&cart_page_contains_cart_block=0&cart_page_contains_cart_shortcode=1&checkout_page_contains_checkout_block=0&checkout_page_contains_checkout_shortcode=1&lr=&or=&r3d=&_en=woocommerceanalytics_product_view&_ui=Ar44EN385hJOEERYrmGqeHU8&_ut=anon&_ts=1701455476045&_tz=0&_lg=en-US&_pf=Linux%20x86_64&_ht=1024&_wd=1280&_sx=0&_sy=0&_dl=https%3A%2F%2Fshes.vn%2Fsan-pham%2Fbong-tay-trang-miniso%2F&_dr=&_rt=1701455476047&_=_ HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 18:31:11 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1-600x406.jpeg

103.90.235.252

200 OK

25 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1-600x406.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x406, components 3\012- data
Size
25 kB (24937 bytes)
Hash
78985c99b232f9a286e4b6ff5da536a1
ab37012dcc1fff4abc7a55cb05b696a6870c4ca0
bdd4c3d6cc446a07f20efa47137df487c7a4fef3b9bf4bcd5a5949761bfd1f16

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1-600x406.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "6169-61b18bd9-2ccc53;;;"
last-modified: Thu, 09 Dec 2021 04:53:45 GMT
content-type: image/jpeg
content-length: 24937
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/bong-tay-trang-gia-bao-nhieu.jpeg

103.90.235.252

200 OK

116 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/bong-tay-trang-gia-bao-nhieu.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=600], baseline, precision 8, 500x500, components 3\012- data
Size
116 kB (115970 bytes)
Hash
7fda0bb3b677faf9a9ac70f459916fca
57ec4d0a7a83893e2f726d29da490903825ed597
cb6b07b9355df245b040c4b28e02ffc379322aa1d4bd2c59224e027af6a758af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/bong-tay-trang-gia-bao-nhieu.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "1c502-60f5047a-2ce342;;;"
last-modified: Mon, 19 Jul 2021 04:50:02 GMT
content-type: image/jpeg
content-length: 115970
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/19b6226aa120894a89d25983dc6fda32-600x600.jpeg

103.90.235.252

200 OK

58 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/19b6226aa120894a89d25983dc6fda32-600x600.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Size
58 kB (57584 bytes)
Hash
6c4a2b13ec83b6509382d4c4db3ec203
72444af036553d85cfa4fbdca866af50f5d8f373
86d302e54937397d709610e9eef99f816b7659f99c0c4175fb60a7bf29a5ee5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/19b6226aa120894a89d25983dc6fda32-600x600.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "e0f0-61b18c2f-2caf0b;;;"
last-modified: Thu, 09 Dec 2021 04:55:11 GMT
content-type: image/jpeg
content-length: 57584
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1-100x100.jpeg

103.90.235.252

200 OK

2.6 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1-100x100.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Size
2.6 kB (2637 bytes)
Hash
c41bf97061172477fb8508857b00b870
4fe89cd0b9fa6e5d43263d2b9e718897e9bd07a0
478bfc257f5cd97e039038228646ca98d365b22310fcd3fc0dc4c3da814f59a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1-100x100.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "a4d-61b18bd4-2ccf7d;;;"
last-modified: Thu, 09 Dec 2021 04:53:40 GMT
content-type: image/jpeg
content-length: 2637
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/bong-tay-trang-gia-bao-nhieu-100x100.jpeg

103.90.235.252

200 OK

3.3 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/bong-tay-trang-gia-bao-nhieu-100x100.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Size
3.3 kB (3303 bytes)
Hash
2374c9ada13123232f7501d1f934ed29
e9b033b2b0c41763453bbd1c8debe5fde91edc6b
532f689424f86c50ee0012caacb3167f281733af7dba58ce684a3e0082df170e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/bong-tay-trang-gia-bao-nhieu-100x100.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "ce7-61b18c0b-2d4a47;;;"
last-modified: Thu, 09 Dec 2021 04:54:35 GMT
content-type: image/jpeg
content-length: 3303
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/19b6226aa120894a89d25983dc6fda32-100x100.jpeg

103.90.235.252

200 OK

3.2 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/19b6226aa120894a89d25983dc6fda32-100x100.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Size
3.2 kB (3195 bytes)
Hash
33b1aeb4fba9f5c2c6e2887f84879c30
7422c81a28f12f7c1140ec0d3ff731de0f16133d
19c51756f6235fd108167bda94474271e413203137d2ebe203612faf31e1113f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/19b6226aa120894a89d25983dc6fda32-100x100.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "c7b-61b18c2c-2d9d6d;;;"
last-modified: Thu, 09 Dec 2021 04:55:08 GMT
content-type: image/jpeg
content-length: 3195
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1.jpeg

103.90.235.252

200 OK

31 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1.jpeg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x508, components 3\012- data
Size
31 kB (31020 bytes)
Hash
9aaebfab1d5c7502985fc80d697176f2
f17dc1eb1985dbd3351b17b2f42b088ec02b2ed0
f1ef7a0af79421ca4b8347b47338f67f422b64cb7bf262d8f43cb10bb78debf9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/07/Bo%CC%82ng-ta%CC%82%CC%89y-trang-Miniso-180-mie%CC%82%CC%81ng1.jpeg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "792c-61b18c05-2d41d6;;;"
last-modified: Thu, 09 Dec 2021 04:54:29 GMT
content-type: image/jpeg
content-length: 31020
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

got.statisticplatform.com/special

80.66.79.247

200 OK

0 B

URL GET HTTP/1.1
got.statisticplatform.com/special
IP
80.66.79.247:443
ASN
#20803 LLC Siberian Telecommunications Company

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectgot.statisticplatform.com
Fingerprint23:81:9D:63:11:D8:4A:D1:81:E1:28:9B:4B:23:29:2D:27:19:CB:FB
ValidityMon, 16 Oct 2023 14:53:01 GMT - Sun, 14 Jan 2024 14:53:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /special HTTP/1.1
Host: got.statisticplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 18:31:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Fri, 01 Dec 2023 18:31:11 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.33
Access-Control-Allow-Origin: *

shes.vn/wp-content/uploads/2021/01/logo-shes.png

103.90.235.252

200 OK

129 kB

URL GET HTTP/2
shes.vn/wp-content/uploads/2021/01/logo-shes.png
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
PNG image data, 309 x 202, 8-bit/color RGBA, non-interlaced\012- data
Size
129 kB (128678 bytes)
Hash
be2abc2a98db1fd75a07a01439aa1a9e
d9847a6c6fd08ef148434a33033e78ae1cfd6f5f
ad75b5ddde7317b3fe030b8c2e4e250f2efa4527b88f3ae4db5d1b1d7b29edfb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/logo-shes.png HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; tk_ai=Ar44EN385hJOEERYrmGqeHU8; tk_qs=; _ga_5PR2FB6DBC=GS1.1.1701455476.1.0.1701455476.0.0.0; _ga=GA1.1.524983995.1701455476
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:20 GMT
etag: "1f6a6-5ff41732-2c24d8;;;"
last-modified: Tue, 05 Jan 2021 07:37:22 GMT
content-type: image/png
content-length: 128678
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:20 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/?wc-ajax=get_refreshed_fragments

103.90.235.252

200 OK

295 B

URL POST HTTP/2
shes.vn/?wc-ajax=get_refreshed_fragments
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
295 B (295 bytes)
Hash
8a3d65e3496c748e754e27f3232fd9b3
5f43d3ab9063dcfe66903c25828e6eb120b8fa1b
8c4606d54d5c950ea41a1f44c947bd71f8db94ea7b03e8f786ffaf57b27dfeba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://shes.vn
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/san-pham/bong-tay-trang-miniso/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
set-cookie: mailchimp_landing_site=https%3A%2F%2Fshes.vn%2F%3Fwc-ajax%3Dget_refreshed_fragments; expires=Fri, 29-Dec-2023 18:30:21 GMT; Max-Age=2419200; path=/; secure; SameSite=Strict
access-control-allow-origin: https://shes.vn
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 295
date: Fri, 01 Dec 2023 18:30:21 GMT
server: LiteSpeed
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

west.statisticsplatform.com/LJWmLm

188.114.97.1

200 OK

14 kB

URL GET HTTP/2
west.statisticsplatform.com/LJWmLm
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subjectstatisticsplatform.com
Fingerprint19:82:22:77:B6:8A:D6:06:AD:8A:C8:67:8C:27:9D:2E:75:08:61:CE
ValidityTue, 10 Oct 2023 14:49:38 GMT - Mon, 08 Jan 2024 14:49:37 GMT

File type
ASCII text, with very long lines (14150), with no line terminators
Size
14 kB (14150 bytes)
Hash
33f661e7931fe68e974f9bacc20cb0d8
2741d54525746e66123f3f9290c7afe6e11f3026
0d10ab9ae81ed51d40af144320af43f208be21fb0ac02e968c5b017fc2c3bbdd

HTTP Headers

GET /LJWmLm HTTP/1.1
Host: west.statisticsplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 01 Dec 2023 18:31:11 GMT
content-type: application/javascript
cache-control: no-cache, no-store, must-revalidate
expires: Fri, 01 Dec 2023 18:31:11 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TB%2B2upzyepciz9GOb8Ln3jFbutctt01EFfsJ99db7uO97%2BflukcVkAVJsOhpdNmJvZOxwW4tQz7tQ3Mmxf4onCwhi5%2Bcyr37WsJUlKmoUqXbeO8ZKmjw5Ha9PvaSgfBJkN%2B5TKh95qL%2FGdu%2BBQg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82ed67d72d8e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

stats.wp.com/s-202348.js

192.0.76.3

200 OK

9.7 kB

URL GET HTTP/2
stats.wp.com/s-202348.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9943), with no line terminators
Size
9.7 kB (9706 bytes)
Hash
41c8533b774dd50d50a93986dc559d26
5f9beece974a105477db9dae544fbc499fa877f9
57515dea9e5f17e0ca68d25b1c53ef4e3eb4891cb641fa72b37f0c5cb270381d

HTTP Headers

GET /s-202348.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 18:31:09 GMT
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 13:38:55 GMT
vary: Accept-Encoding
etag: W/"654254ef-25ea"
content-encoding: br
expires: Mon, 25 Nov 2024 22:27:20 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

stats.wp.com/e-202348.js

192.0.76.3

200 OK

6.9 kB

URL GET HTTP/2
stats.wp.com/e-202348.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7100), with no line terminators
Size
6.9 kB (6931 bytes)
Hash
530c085c7457919e6f6a76c67b3419ad
4c4929f20e73b6f41fe3474669bfea17b36fe49d
5db8b724469197930b66337c5a9ff7301c4ad5a52e7fc3134b4a568f45199aed

HTTP Headers

GET /e-202348.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 01 Dec 2023 18:31:09 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/13576-1684464982353.1523
content-encoding: br
expires: Mon, 25 Nov 2024 16:24:36 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Oswald%3A400%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CFira+Sans%3A400%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A400%2C600%2C700%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600italic%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A400%2C500%2C700%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500italic%2C600%2C600italic%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=11

142.250.74.74

200 OK

116 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Oswald%3A400%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CFira+Sans%3A400%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A400%2C600%2C700%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600italic%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A400%2C500%2C700%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500italic%2C600%2C600italic%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=11
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
116 kB (115675 bytes)
Hash
7ab437a017a48f78ad89eb7b2b5c0479
c59084b57e02b27db4b066994ca344786f44ce7d
98ff8d07dcc528c865d6f3c903ea938eeeecd19bf0ca19011fa8b6c076651bb6

HTTP Headers

GET /css?family=Oswald%3A400%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CFira+Sans%3A400%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A400%2C600%2C700%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C600italic%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A400%2C500%2C700%2C100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400italic%2C500italic%2C600%2C600italic%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=11 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 18:31:09 GMT
date: Fri, 01 Dec 2023 18:31:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/kk-star-ratings/public/svg/active.svg

103.90.235.252

200 OK

243 B

URL GET HTTP/2
shes.vn/wp-content/plugins/kk-star-ratings/public/svg/active.svg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
243 B (243 bytes)
Hash
9e3ddec83ffe7aa6a4f716f686fff45b
e80d773a501a30a3c7632c4ff9418a44a52dca66
d02267beedcd37d26fb380cb73946ca0f9f5f26da890f966440430abd08ccc3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/kk-star-ratings/public/svg/active.svg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.2.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:19 GMT
etag: "f3-60e2c06a-282ca9;gz"
last-modified: Mon, 05 Jul 2021 08:18:50 GMT
content-type: image/svg+xml
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

shes.vn/wp-content/plugins/kk-star-ratings/public/svg/inactive.svg

103.90.235.252

200 OK

223 B

URL GET HTTP/2
shes.vn/wp-content/plugins/kk-star-ratings/public/svg/inactive.svg
IP
103.90.235.252:443
ASN
#135917 Cong ty TNHH Web Panda

Requested by
https://shes.vn/san-pham/bong-tay-trang-miniso/
Certificate
IssuerLet's Encrypt
Subjectshes.vn
FingerprintCD:32:8E:8B:F0:17:D2:06:85:F1:83:FC:52:D6:B2:14:97:36:C3:68
ValidityThu, 05 Oct 2023 16:12:45 GMT - Wed, 03 Jan 2024 16:12:44 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
223 B (223 bytes)
Hash
41fc6781dedde431652f8442d5bfef8d
342bf59f9c988139f37df37fc80bfd3240f12f7f
c85bc8841db507e5905b0fc404e6aba7f21604dfc10f398d51a43ce7d98a0c2f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/kk-star-ratings/public/svg/inactive.svg HTTP/1.1
Host: shes.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shes.vn/wp-content/plugins/kk-star-ratings/public/css/kk-star-ratings.css?ver=4.2.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 18:30:19 GMT
etag: "df-60e2c06a-282cab;gz"
last-modified: Mon, 05 Jul 2021 08:18:50 GMT
content-type: image/svg+xml
accept-ranges: bytes
date: Fri, 01 Dec 2023 18:30:19 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3-32=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (56)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash