Overview

URL vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
IP54.36.158.41
ASN
Location United States
Report completed2018-11-14 14:21:36 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-11-14 14:21:08 CET 2 Client IP  Internal IP ET DNS Query to a *.pw domain - Likely Hostile


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 54.36.158.41

Date UQ / IDS / BL URL IP
2019-01-16 01:47:04 +0100
0 - 0 - 3 cucchat.sextgem.com/blog?__xtblog_block_id=1 54.36.158.41
2018-11-19 04:17:45 +0100
0 - 1 - 0 https://lmodels.sextgem.com/ 54.36.158.41
2018-11-17 13:12:46 +0100
0 - 2 - 0 mp3t.ru/ 54.36.158.41
2018-11-17 09:54:12 +0100
0 - 1 - 0 wq.lt/k2vzK 54.36.158.41
2018-11-15 15:01:08 +0100
0 - 6 - 0 arab-xxx.sextgem.com/ 54.36.158.41
2018-11-15 12:26:56 +0100
0 - 4 - 0 bi3some.sextgem.com/ 54.36.158.41
2018-11-05 14:02:01 +0100
0 - 0 - 1 bankof-america-com.mw.lt/ 54.36.158.41
2018-10-23 05:08:31 +0200
0 - 0 - 1 100x.sextgem.com/bokepindo3gpterbaru/2cowok_1 (...) 54.36.158.41
2018-10-16 17:12:51 +0200
0 - 2 - 0 arab-xxx.sextgem.com/ 54.36.158.41
2018-10-09 16:12:01 +0200
0 - 0 - 0 truyenhot.xtgem.com 54.36.158.41

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2019-01-20 13:03:37 +0100
0 - 0 - 1 https://haphetititletleres.club/VNLCT 172.64.198.29
2019-01-20 13:01:52 +0100
0 - 3 - 0 pf.toggle.com/s/1547980743/ko/8/4/84962-17978 (...) 149.56.159.0
2019-01-20 13:01:28 +0100
0 - 0 - 0 https://content-calpoly-edu.s3.amazonaws.com/ (...) 52.219.24.154
2019-01-20 13:00:42 +0100
0 - 2 - 0 download.audible.com/AM31/CD/AM_Rush.exe 143.204.51.202
2019-01-20 12:59:57 +0100
0 - 4 - 0 download.equalizerpro.com/vcredist2013/vcredi (...) 143.204.51.88
2019-01-20 12:59:21 +0100
0 - 0 - 1 www.nltopoffers.com/ntssmc/nl/index-z-uni.html 143.204.51.186
2019-01-20 12:57:44 +0100
1 - 0 - 1 vitapharma.no/ 164.132.160.172
2019-01-20 12:56:59 +0100
0 - 0 - 92 chacalexpeditions.com/ 170.10.164.98
2019-01-20 12:56:33 +0100
0 - 0 - 2 owwwc.com/mm/amd32.exe 103.100.209.198
2019-01-20 12:55:51 +0100
0 - 0 - 2 owwwc.com/mm/nvidia.exe 103.100.209.198

No other reports on domain: wap.sh



JavaScript

Executed Scripts (22)


Executed Evals (1)

#1 JavaScript::Eval (size: 10, repeated: 1) - SHA256: 213c1fa9294ca2fc11933a79296efc45858a167e32178950f730db94a2ef05a0

                                        __gcse.scb
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 590, repeated: 1) - SHA256: e4718789d3903a6e801912d847f0326188875aa41a2454197192aa399701fa81

                                        < script language = "javascript" >
    var _go_js = "1.0"; < /script><script language="javascript1.1">_go_js="1.1";</script > < script language = "javascript1.2" > _go_js = "1.2"; < /script><script language="javascript1.3">_go_js="1.3";</script > < script language = "javascript1.4" > _go_js = "1.4"; < /script><script language="javascript1.5">_go_js="1.5";</script > < script language = "javascript1.6" > _go_js = "1.6"; < /script><script language="javascript1.7">_go_js="1.7";</script > < script language = "javascript1.8" > _go_js = "1.8"; < /script><script language="javascript1.9">_go_js="1.9";</script > < script language = "javascript" > < /script>
                                    


HTTP Transactions (45)


Request Response
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3 HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 14 Nov 2018 13:21:03 GMT
Vary: Host,Accept-Encoding
Set-Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; expires=Fri, 13-Nov-2020 13:21:05 GMT; Max-Age=63072000; path=/; domain=.wap.sh; httponly _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666; expires=Wed, 14-Nov-2018 13:51:06 GMT; Max-Age=1800; path=/; domain=.wap.sh; httponly
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Content-Encoding: gzip
Content-Length: 6528
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6528
Md5:    a78b93070697351e6f95ec1a2d44f611
Sha1:   dde7bf0be2152a5543d395a000214d3eebfe443d
Sha256: f980473cbeeb70389ff321295f9bf30063f9c0125bad8d02b9e564eb142ed67b
                                        
                                            GET /xtgem_template.css?v=1425199917 HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: text/css;charset=UTF-8
                                        
Date: Wed, 14 Nov 2018 13:20:05 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 647
Age: 59
X-Cache: HIT
X-Cache-Hits: 1
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   647
Md5:    14552f178ca9b86547c3c28f70c6cc3b
Sha1:   9c0688a5bf871f11dc627311a41eba21ece83180
Sha256: 4f67b74ac5b617462e7c5869b564b4c40f25543981c4ca9d911d1c768d408b41
                                        
                                            GET /global_stylesheet.css?v=1405779778 HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: text/css;charset=UTF-8
                                        
Date: Wed, 14 Nov 2018 13:20:06 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 820
Age: 59
X-Cache: HIT
X-Cache-Hits: 1
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   820
Md5:    a1d5e103d7c020519c06334133641c64
Sha1:   edcbc225e09b5e7e0465bb46a0f837f5ff36f7a4
Sha256: 46ec2e1f0cfa45aff332ec2ff0228d00f3841e93414ed574916bff7e8ae63a37
                                        
                                            GET /hinh-anh/lo-go/vuiqua99.ico HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Wed, 14 Nov 2018 13:20:12 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 645
Age: 53
X-Cache: HIT
X-Cache-Hits: 1
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   645
Md5:    ee1b209239487e7c77dcdfeb0c8ed4c0
Sha1:   d023a688877d13090dffe65f37751bae7c8b3819
Sha256: 73c52bb8860c93748983d5ab0a107a72ef3a0a0574701bacbdf8a0a188095cb9
                                        
                                            GET /hinh-anh/lo-go/search-1.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 12:20:33 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 12:20:33 GMT
X-Ngz: 1
Content-Length: 1261
Age: 3632
X-Cache: HIT
X-Cache-Hits: 11
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1261
Md5:    a3271f6987582ff057a0339a1657acad
Sha1:   8b593eaaaa21719e09ee7d1fb613bd4713de2a6d
Sha256: d6a35a2f1a258d7826d2c50f5fedb2859eac8dd1e810c200b38130971b9b9cb5
                                        
                                            GET /hinh-anh/lo-go/hot-qua.gif HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 14 Nov 2018 12:20:33 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 12:20:33 GMT
X-Ngz: 1
Content-Length: 1685
Age: 3630
X-Cache: HIT
X-Cache-Hits: 11
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 52 x 15
Size:   1685
Md5:    9a88569c0cada3d23f7cbf461ef883d6
Sha1:   7c1a4e4f3db7335c54a320630909abb51e502e9b
Sha256: aeb9db7b7d2fc69d0c97193b6d273dd07f6554863d980966dc5bafb410ff85d1
                                        
                                            GET /hinh-anh/lo-go/vuiqua.png HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 14 Nov 2018 12:20:33 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 12:20:33 GMT
X-Ngz: 1
Last-Modified: Thu, 27 Feb 2014 20:29:50 GMT
Etag: "2ac2-4f3692eda0b80"
Content-Length: 10946
Age: 3632
X-Cache: HIT
X-Cache-Hits: 11
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  PNG image, 286 x 65, 8-bit/color RGBA, non-interlaced
Size:   10946
Md5:    77058e25c63cdb4b7d141c87ce6772b0
Sha1:   1a60c667109b678a53e5e3f554d7c01020eaaa1e
Sha256: f56ae834ce27ebfb4428c789b80f4ec89e97eecf0a0e2976ef4f0470aed8db32
                                        
                                            GET /js/page_templates_simple.js HTTP/1.1 
Host: xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 14 Nov 2018 13:19:20 GMT
Last-Modified: Mon, 11 Dec 2017 13:05:49 GMT
Etag: "3d6-5601031744540-gzip"
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:19:20 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 409
Age: 105
X-Cache: HIT
X-Cache-Hits: 74
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   409
Md5:    1fae56719084488a72b247715b146359
Sha1:   eaca9c07fdd8704c3023587f1c8b798e9a4fc548
Sha256: 47049e15ed49186d2daa0bbbf71bd474166dc0a84380f7afd8886344b9c094e4
                                        
                                            GET /tp.gif HTTP/1.1 
Host: enif.images.xtstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 14 Nov 2018 13:20:51 GMT
Last-Modified: Mon, 11 Dec 2017 13:05:49 GMT
Etag: "2a-5601031744540"
Content-Length: 42
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:20:51 GMT
Age: 15
X-Cache: HIT
X-Cache-Hits: 23
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /100/50/-/495fbca2b631df32fdf495de8d15a2a4/backtooldschool.xtgem.com/images/blog/pair-of-vintage-old-school-fru-25084.jpg HTTP/1.1 
Host: 4.thumbs.xtstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:18:58 GMT
Cache-Control: max-age=172800, pre-check=172800
Expires: Fri, 16 Nov 2018 13:18:58 GMT
Last-Modified: Sun, 28 Oct 2018 05:24:39 GMT
Sent-XS: 0.000
X-Ngz: 1
Etag: "3fd-0"
Content-Length: 1021
Age: 128
X-Cache: HIT
X-Cache-Hits: 26
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1021
Md5:    45b9a6c3301594e3902a99808620f1a4
Sha1:   26b6bed4afe609f5f8815c624833bb51e937cf21
Sha256: 58859ef345b70fae56b01bcd97ca0cb72e30267563e70404b43e245f7248036c
                                        
                                            GET /tp.gif HTTP/1.1 
Host: cif.images.xtstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 14 Nov 2018 13:20:51 GMT
Last-Modified: Mon, 11 Dec 2017 13:05:49 GMT
Etag: "2a-5601031744540"
Content-Length: 42
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:20:51 GMT
Age: 15
X-Cache: HIT
X-Cache-Hits: 26
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /quant.js HTTP/1.1 
Host: edge.quantserve.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         18.185.209.124
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: private, no-transform, must-revalidate, max-age=604800
Content-Encoding: gzip
Date: Wed, 14 Nov 2018 13:21:06 GMT
Etag: M0-e2b9884a
Expires: Wed, 21 Nov 2018 13:21:06 GMT
Last-Modified: Wed, 14-Nov-2018 13:21:06 GMT
Server: QS
Vary: Accept-Encoding
Content-Length: 5456
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5456
Md5:    ea55b8aade97737bdb3ac34239afe3e9
Sha1:   5bd3746efdffacbe0a0415d8760167834bb181ee
Sha256: d98cf4549e148788618a1ba008dc66d210d0063608b7c0acdfceb11430dd1579
                                        
                                            GET /js/counter.js HTTP/1.1 
Host: gostats.vn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.236.14.237
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 14 Nov 2018 13:21:06 GMT
Last-Modified: Tue, 09 Aug 2016 14:13:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 14 Dec 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3546
Md5:    a0ab976562999b9456c404a72cbac90c
Sha1:   9bf7dac6a2cf8cee41bc30e0afac035361f60872
Sha256: 65b77b3a21c4f25a41db0b9eccb1084082d8445114591a9adeaf0f5c519cfaac
                                        
                                            GET /public/js/oni-converter.js HTTP/1.1 
Host: www.oni.vn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         45.32.25.27
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.30
Set-Cookie: PHPSESSID=1vlp5mg9j23jm4oeme8os4cg86; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://123link.press/VswR1su7
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/89.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:06 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:49:24 GMT
Etag: "16e6f-4fe8c2441a100"
Content-Length: 93807
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   93807
Md5:    6fa8183182d1354fe17e8cfa74bec762
Sha1:   2e558bb6b8e6620c493dae67619423aa8e9d3ccf
Sha256: 099b3f16660e370298dacc2537dea0da6ca09baa009efd1c39c00b2fd8dd71d1
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/88.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:06 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:49:19 GMT
Etag: "e22a-4fe8c23f555c0"
Content-Length: 57898
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   57898
Md5:    70b3c22fd961ecbd2482034a200da5a3
Sha1:   1800833bf2183614c373857e49e8e5d56581a854
Sha256: bc380edbebd279cfb8af4a62f625120714afca9d8629db0c01aca03f47e96e12
                                        
                                            GET /VswR1su7 HTTP/1.1 
Host: 123link.press
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.18.45.42
HTTP/1.1 301 Moved Permanently
                                        
Date: Wed, 14 Nov 2018 13:21:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 14 Nov 2018 14:21:07 GMT
Location: http://123link.co/VswR1su7
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4799c784133c42a9-OSL


--- Additional Info ---
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/87.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:06 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:49:11 GMT
Etag: "13eda-4fe8c237b43c0"
Content-Length: 81626
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   81626
Md5:    6f79fd4786e9c973a12f34cd5b939084
Sha1:   c2563821263487d04f2983553c7fca9dc6d971ab
Sha256: 59aec78a445110252f1552b20cdf9ca2117b4bf651d663a5e480dd9d0201ecbe
                                        
                                            GET /VswR1su7 HTTP/1.1 
Host: 123link.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.27.115.88
HTTP/1.1 301 Moved Permanently
                                        
Date: Wed, 14 Nov 2018 13:21:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 14 Nov 2018 14:21:07 GMT
Location: https://123link.co/VswR1su7
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4799c784a26842c1-OSL


--- Additional Info ---
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/85.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:06 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:49:03 GMT
Etag: "2d1d7-4fe8c230131c0"
Content-Length: 184791
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   184791
Md5:    6b53cbdfb98fca33122896d5c90e5f9a
Sha1:   1548ee49dcc43bddcd7a0bfed232270961a04d43
Sha256: 295b3aa93f6b5041c86bb7a748b51cf115fc02e150b532dab0012e22c6874175
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/90.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:06 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:49:31 GMT
Etag: "1702-4fe8c24ac70c0"
Content-Length: 5890
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5890
Md5:    c3e7a369dba1b3666f110a732a55cbc4
Sha1:   81da8d746816eeccd8bbcfed71b61e8dbb4206a1
Sha256: 1493eba0c155f75a0c53dec03a8ea79eebfad839f216baa54ae07eda31a64731
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/83.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:07 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:07 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:48:39 GMT
Etag: "1b3bc-4fe8c2192fbc0"
Content-Length: 111548
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   111548
Md5:    25c84f7397626f53ccb61b20d5d2f129
Sha1:   e2f7c4ad603dd5523830a18e267fc38666a7c231
Sha256: 67b71b984117b01928c5478b61af1884551cf303d8193563f90165a51ff330f4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=111340
Date: Wed, 14 Nov 2018 13:21:07 GMT
Etag: "5be908da-1d7"
Expires: Thu, 15 Nov 2018 20:16:47 GMT
Last-Modified: Mon, 12 Nov 2018 05:00:10 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    325db2a4202c744762b2a908e3a1ba68
Sha1:   335f2a74af9001bbf078e1be6ff98efa8e4916f2
Sha256: 82c1366642a1b7def5f290c55280b27dc68a0a7a47e6456c062b924837441d89
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/81.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:07 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:07 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:48:05 GMT
Etag: "d56e-4fe8c1f8c2f40"
Content-Length: 54638
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   54638
Md5:    06e0f084e355069d7d6e25ca1a5269d0
Sha1:   3b1b846bc37bd4c9f5f44f55a0d19c951dde40b3
Sha256: d15e90c28edf5dadc3d07665f095133122d289c7fc75bca1f6fc17c4ab05b3ce
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/82.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:07 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:07 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:48:19 GMT
Etag: "38ea9-4fe8c2061cec0"
Content-Length: 233129
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   233129
Md5:    b741d196a8a619d580847532c0d6eb16
Sha1:   f84d4e0cf610d6873b2fddf095b828f015654037
Sha256: a56d9f1d9e7432f067f2675cfd8214ef9093499d956c594b46b446a8f250aca3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=101928
Date: Wed, 14 Nov 2018 13:21:07 GMT
Etag: "5beae94f-1d7"
Expires: Thu, 15 Nov 2018 17:39:55 GMT
Last-Modified: Tue, 13 Nov 2018 15:10:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9b73e7a6051720d9b9b0b5c3055a1565
Sha1:   006533b430e67003923db614e93d5467cf554fd1
Sha256: 9536ab6edec668c986862197e0d566d350b3055b538c1bd1081fd6147c310eb3
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/84.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:06 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:06 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:48:46 GMT
Etag: "1ebaf-4fe8c21fdcb80"
Content-Length: 125871
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   125871
Md5:    4b1283c4e04f2e3e8c465596b6d50110
Sha1:   87c83aeba7a751fc76f937327f434d3aad4c4418
Sha256: 7fedee08d431b198c989426b88fbdd846cc738b57edb53ddb904944e44a7ddad
                                        
                                            GET /VswR1su7 HTTP/1.1 
Host: 123link.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.27.115.88
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 14 Nov 2018 13:21:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=da5d32b475dc2b53977c6af51ca54ca521542201667; expires=Thu, 14-Nov-19 13:21:07 GMT; path=/; domain=.123link.co; HttpOnly AdLinkFly=26lf0hrmmb7aoenn3mu33qssb0; path=/; HttpOnly csrfToken=0452ee20a4750724c47f2a9b1575a856ec62f1b7edfb25ca6279131066e4337b77a38c38195ea0875fafd4c7c4769fb98d3cf30cf8e449f1901b5ce311fe300c; path=/ DO-LB=node-71026184|W+whR|W+whR; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://123link.pw/VswR1su7
X-Powered-By: Link123
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4799c787ffb8426d-OSL


--- Additional Info ---
                                        
                                            GET /VswR1su7 HTTP/1.1 
Host: 123link.pw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.24.120.114
HTTP/1.1 301 Moved Permanently
                                        
Date: Wed, 14 Nov 2018 13:21:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 14 Nov 2018 14:21:08 GMT
Location: https://123link.pw/VswR1su7
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4799c78d76443cc5-CPH


--- Additional Info ---
                                        
                                            GET /hinh-nen/lien-minh-huyen-thoai/86.jpg HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Nov 2018 13:21:07 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:21:07 GMT
X-Ngz: 1
Last-Modified: Sat, 19 Jul 2014 13:48:26 GMT
Etag: "20f6-4fe8c20cc9e80"
Content-Length: 8438
Age: 0
X-Cache: MISS
X-Cache-Hits: 0
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8438
Md5:    dcb54cb191624a5ce5366ae610b2a083
Sha1:   55da46d88d2112061ffe9f82735ec910ae76e8b6
Sha256: 3973dd6933ae065937036a19556c8c6d40adff7595a8a277af9ac591b352573e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165234
Date: Wed, 14 Nov 2018 13:21:08 GMT
Etag: "5be9e2cf-1d7"
Expires: Fri, 16 Nov 2018 11:15:02 GMT
Last-Modified: Mon, 12 Nov 2018 20:30:07 GMT
Server: ECS (ams/D02F)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ca9020c1a5ac65a702976e33b4cc3690
Sha1:   eab3907c88d20f8020ecc5b93a737ea1f41da87b
Sha256: 5c02ff195ff128b1026249c95377a201b50daaf1dded1d971fc6ea047ed8fbdc
                                        
                                            GET /hinh-anh/lo-go/vuiqua99.ico HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Wed, 14 Nov 2018 13:20:12 GMT
Vary: Host,Accept-Encoding
Content-Encoding: gzip
Content-Length: 645
Age: 56
X-Cache: HIT
X-Cache-Hits: 2
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   645
Md5:    ee1b209239487e7c77dcdfeb0c8ed4c0
Sha1:   d023a688877d13090dffe65f37751bae7c8b3819
Sha256: 73c52bb8860c93748983d5ab0a107a72ef3a0a0574701bacbdf8a0a188095cb9
                                        
                                            GET /VswR1su7 HTTP/1.1 
Host: 123link.pw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.24.120.114
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 14 Nov 2018 13:21:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d2777d63e2366b2c51c15a19306e40f2d1542201668; expires=Thu, 14-Nov-19 13:21:08 GMT; path=/; domain=.123link.pw; HttpOnly AdLinkFly=r3go6klpt36f9v9aujkkqtmet5; path=/; HttpOnly csrfToken=491ba5c6ab14a82fc19c81ce9bbd4ada81d958b783bd227771056417f119e44e6d6cd995047687d54965a604a2807b85cec98a93b8243e3b0448c7b7b414d27e; path=/ DO-LB=node-71026184|W+whS|W+whS; path=/
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-Powered-By: Link123
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4799c78eac613d55-CPH
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3565
Md5:    5ac167740c2d9edc532526a95175c4e5
Sha1:   8873d20a6eef12f4354888ac8742fef169951b2d
Sha256: b7e3b74c2f2c58a264b27d8b5fc2f4aaa1dc83a5648d81f98666580c1044270b
                                        
                                            GET /cse/cse.js?cx=012891314229920033125:mdvmxrndz5a HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         172.217.20.36
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://cse.google.com/cse/cse.js?cx=012891314229920033125:mdvmxrndz5a
Cache-Control: private
X-Content-Type-Options: nosniff
Date: Wed, 14 Nov 2018 13:21:10 GMT
Server: sffe
Content-Length: 267
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  HTML document text
Size:   267
Md5:    5949cd2a5d21eb67de900d5304ec2657
Sha1:   08078f577914cd37cb6f03f0b7da2a63478751ce
Sha256: 84f508574dba446dcdcc863b1fa6a8e45f68c793093a997ba0cf749ee25d6f8a
                                        
                                            GET /hinh-anh/lo-go/green-star.gif HTTP/1.1 
Host: vuiqua99.wap.sh
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: _xta_uid=82320634a1812d5ee40059f9554e4d24; _xta_vid=40a9b42fb3e47fe34d9a89014aff17d4-1542201666

                                         
                                         54.36.158.41
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 14 Nov 2018 11:46:52 GMT
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 11:46:52 GMT
X-Ngz: 1
Content-Length: 843
Age: 5656
X-Cache: HIT
X-Cache-Hits: 19
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 9 x 9
Size:   843
Md5:    9207a430751a8c2ce7df503113a478a9
Sha1:   bc7af021e65dcf42230d1bad8fc601f79251f1f0
Sha256: 06016939ef962c78f18ec51bbca26fc2824256895feff493a9d1563cc2d4be7d
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Nov 2018 13:21:11 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    fae4945e46e4b5269e2f468cba5cd7ad
Sha1:   9217198ff4e3f6dc5faa5bdf7aa97c5ca4665d7f
Sha256: 13a82b8ef7776defc6600588bf1e5ec65a6933f517b74926ecedd238ed9c5847
                                        
                                            GET /bin/count?0.017356919637553037&a=387628&t=5&i=1&r=&p=http%3A%2F%2Fvuiqua99.wap.sh%2Fhinh-nen%2Flien-minh-huyen-thoai%2Findex.html%3F__filelist_page%3D3&c=y&j=y&w=1176&h=885&d=24&js=1.8 HTTP/1.1 
Host: c3.gostats.vn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         104.236.14.237
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 14 Nov 2018 13:21:11 GMT
Content-Length: 95
Last-Modified: Wed, 27 Feb 2008 08:20:02 GMT
Connection: keep-alive
Set-Cookie: sessionID.4.387628=2047698532; expires=Wed, 14 Nov 2018 13:36:11 GMT; path=/; domain=.gostats.vn visitorID.4.387628=1019870075; expires=Wed, 14 Nov 2018 23:59:59 GMT; path=/; domain=.gostats.vn visitorID=270169446; expires=Thu, 31 Dec 2037 23:55:55 GMT; path=/; domain=.gostats.vn
Cache-Control: private, no-cache, no-cache="Set-Cookie", proxy-revalidate
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Etag: "47c51d32-5f"
P3P: policyref="/w3c/p3p.xml", CP="NOI PSA ADM OUR IND ONL UNI COM NAV INT DEM PRE LOC"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 1 x 1, 1-bit colormap, non-interlaced
Size:   95
Md5:    60b2f914842e8b09024754e8a6493b36
Sha1:   119a32ce54609f5e3deefe01ac54582d9fac8eba
Sha256: 172e4e1fca052a61b5d95ba3b321c1f748fbd0aa08ec5914391abef89ee9f3cd
                                        
                                            GET /images/close2.png?v=0.01 HTTP/1.1 
Host: xtgem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         178.33.123.218
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 14 Nov 2018 13:18:16 GMT
Last-Modified: Mon, 11 Dec 2017 13:05:49 GMT
Etag: "234-5601031744540"
Content-Length: 564
Cache-Control: max-age=2592000
Expires: Fri, 14 Dec 2018 13:18:16 GMT
X-Ngz: 1
Age: 174
X-Cache: HIT
X-Cache-Hits: 450
Accept-Ranges: bytes
Connection: close


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit colormap, non-interlaced
Size:   564
Md5:    865dce1b2a4002b9a85f75ea622f4000
Sha1:   f56c8218b5ca721a9e5a3daec742a6f38c33c075
Sha256: bc5dcb35fc074321d66b9d7809e286e4afe72c7b08d1e799672126c92150ecd3
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Nov 2018 13:21:11 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /cse/cse.js?cx=012891314229920033125:mdvmxrndz5a HTTP/1.1 
Host: cse.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Wed, 14 Nov 2018 13:21:11 GMT
Server: gws
Cache-Control: private
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Expires: Wed, 14 Nov 2018 13:21:11 GMT
Set-Cookie: 1P_JAR=2018-11-14-13; expires=Fri, 14-Dec-2018 13:21:11 GMT; path=/; domain=.google.com NID=146=SehbmSKt7zBlk3h09rDw9A83kp2j1-PhLhqZdhdoTgBqL4XxDhNIMLg2SwCt-KNLBDnCztIrsDz1WGrrwmgWuVR4RxP3I4N_hVbEZB29_i7TOXulrwtotOF750DdwiWaGO-IY10tXVV0994073wr6qjRW5NYpXmMHlhOybtd3PE; expires=Thu, 16-May-2019 13:21:11 GMT; path=/; domain=.google.com; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1732
Md5:    ca80f1014f4594fe9c1a4af3428c0730
Sha1:   23dece398b728bb6913709e0d3dbe363005db603
Sha256: 5ab76882c5a4f2e9c4fa77d47c1f49dfd7928200b3ec355bb5614f8f0453c849
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.207.238
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Nov 2018 13:21:11 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    fe1470b3ea8a9612c75c2ea5b0edc6cb
Sha1:   72097a7c24a54d680a0b0931e8bc8a5d8f892463
Sha256: 5f5fc2f9994b787b04dd2e5fd0f4088dfac0eba562ca3a606be23a1e8fb195ca
                                        
                                            GET /jsapi?autoload=%7B%22modules%22%3A%5B%7B%22name%22%3A%22search%22%2C%22version%22%3A%221.0%22%2C%22callback%22%3A%22__gcse.scb%22%2C%22style%22%3A%22https%3A%2F%2Fwww.google.com%2Fcse%2Fstatic%2Fstyle%2Flook%2Fv2%2Fdefault.css%22%2C%22language%22%3A%22vi%22%7D%5D%7D HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: 1P_JAR=2018-11-14-13; NID=146=SehbmSKt7zBlk3h09rDw9A83kp2j1-PhLhqZdhdoTgBqL4XxDhNIMLg2SwCt-KNLBDnCztIrsDz1WGrrwmgWuVR4RxP3I4N_hVbEZB29_i7TOXulrwtotOF750DdwiWaGO-IY10tXVV0994073wr6qjRW5NYpXmMHlhOybtd3PE

                                         
                                         172.217.20.36
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Expires: Wed, 14 Nov 2018 13:21:11 GMT
Date: Wed, 14 Nov 2018 13:21:11 GMT
Cache-Control: private, max-age=3600, must-revalidate
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   6490
Md5:    f59773f6cbf7394dee83ed3dcf72bcb8
Sha1:   54a17221d31df628928f92df5d42a63c2402ca6f
Sha256: df58f96b69954679b4cfc64c666c7c9ee02010d66a1c72a618e7fb7e60af71f0
                                        
                                            GET /uds/api/search/1.0/76c37a052829ad2c9825658fbbc50bce/default+vi.css HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: 1P_JAR=2018-11-14-13; NID=146=SehbmSKt7zBlk3h09rDw9A83kp2j1-PhLhqZdhdoTgBqL4XxDhNIMLg2SwCt-KNLBDnCztIrsDz1WGrrwmgWuVR4RxP3I4N_hVbEZB29_i7TOXulrwtotOF750DdwiWaGO-IY10tXVV0994073wr6qjRW5NYpXmMHlhOybtd3PE

                                         
                                         172.217.20.36
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
Expires: Tue, 12 Nov 2019 22:43:53 GMT
Date: Mon, 12 Nov 2018 22:43:53 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Cache-Control: public, max-age=31536000
Content-Length: 10257
Age: 139038
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   10257
Md5:    d5388a54222bcd47dd92096b9a803ee5
Sha1:   5719a81efd86f4cef133c5426331e8d12ce40740
Sha256: f4ce05d089f0c6ea7aaac846aa11917116e41ead7ca04136a54d96c541322299
                                        
                                            GET /cse/static/style/look/v2/default.css HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: 1P_JAR=2018-11-14-13; NID=146=SehbmSKt7zBlk3h09rDw9A83kp2j1-PhLhqZdhdoTgBqL4XxDhNIMLg2SwCt-KNLBDnCztIrsDz1WGrrwmgWuVR4RxP3I4N_hVbEZB29_i7TOXulrwtotOF750DdwiWaGO-IY10tXVV0994073wr6qjRW5NYpXmMHlhOybtd3PE

                                         
                                         172.217.20.36
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 14 Nov 2018 13:21:11 GMT
Expires: Wed, 14 Nov 2018 13:21:11 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 15 Oct 2018 12:00:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3112
Md5:    6ca462e982ff32c81562e772636c896d
Sha1:   e9503d159ca8b984a846c7e9645cc0a491a90946
Sha256: 53ace406162b236b974873dccf5334c42707d309f29a90efbaaf0d2f52eb12ff
                                        
                                            GET /uds/api/search/1.0/76c37a052829ad2c9825658fbbc50bce/default+vi.I.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vuiqua99.wap.sh/hinh-nen/lien-minh-huyen-thoai/index.html?__filelist_page=3
Cookie: 1P_JAR=2018-11-14-13; NID=146=SehbmSKt7zBlk3h09rDw9A83kp2j1-PhLhqZdhdoTgBqL4XxDhNIMLg2SwCt-KNLBDnCztIrsDz1WGrrwmgWuVR4RxP3I4N_hVbEZB29_i7TOXulrwtotOF750DdwiWaGO-IY10tXVV0994073wr6qjRW5NYpXmMHlhOybtd3PE

                                         
                                         172.217.20.36
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=UTF-8
                                        
Expires: Tue, 12 Nov 2019 22:49:42 GMT
Date: Mon, 12 Nov 2018 22:49:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Cache-Control: public, max-age=31536000
Content-Length: 92732
Age: 138689
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   92732
Md5:    56e654a72433d644046b83f34d0a67e4
Sha1:   21279d1574c36c437a0d401068d1e0c727265222
Sha256: 00773a2c08ad870befdca83392df6769620b60d9d5b23f4647eba02b294919d1