firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 11 Oct 2022 14:08:30 GMT
Expires: Tue, 11 Oct 2022 14:30:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 133321d9ca8be95a19f574700824c0e0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: eEFt5TytT2PQbZFAztvAcMjaRsUR55fGG8NNuDVQrZAdHBAh_zvYfg==
Age: 2060
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 03c3cfc567661cca575e54ad505acd08
e73f7955b0c794a9cf8ff77b3ecaf436354521fe
50017e6eb57c5bcaa8dc74af6e3967362ec6b8f177a5bf722dd2d215698c4fa9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50017E6EB57C5BCAA8DC74AF6E3967362EC6B8F177A5BF722DD2D215698C4FA9"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10206
Expires: Tue, 11 Oct 2022 17:32:56 GMT
Date: Tue, 11 Oct 2022 14:42:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0ffae9abfdf558a6286013a0201c8b
2dc8ea0000a1b0c0f849611fdd73429bca51bfad
8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10807
Expires: Tue, 11 Oct 2022 17:42:57 GMT
Date: Tue, 11 Oct 2022 14:42:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iXo0Ywkr5uJ+5zlMSPB7EAFJjIM3ZBmVC12azDxAQrhKn8YeYYkX81yCDKs8X2t3/zn2lXsvmXc=
x-amz-request-id: EHZRJK6FZ0QS287E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 11 Oct 2022 14:00:53 GMT
age: 2517
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
daominhha.net/dang-nhap-thanh-vien/
103.97.124.72301 Moved Permanently 0 B URL HTTP/1.1 daominhha.net/dang-nhap-thanh-vien/
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /dang-nhap-thanh-vien/ HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 11 Oct 2022 14:42:50 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Vary: Accept-Encoding,User-Agent
Location: https://daominhha.net/dang-nhap-thanh-vien/
Cache-Control: max-age=0
Expires: Tue, 11 Oct 2022 14:42:50 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 11 Oct 2022 14:41:38 GMT
Expires: Tue, 11 Oct 2022 15:39:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f25262ad6146af3450ccd86dcbcc3780.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: iuy-PHe7ZngZ7CSGY6Q3iOLDTF8tua7-yJOxpjFzegGdFV3t26l9Nw==
Age: 72
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 34c15fee665f03aab24038618bb2d9a7
6b90ea5a496581b83daf1764938d1db1a5a32bb4
93e99055eb4a94f808eed2fac338d6c480047c30a56498b2a65036a7d5bdea04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3766
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:51 GMT
Last-Modified: Tue, 11 Oct 2022 13:40:05 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 703447b55b24129d6f3d63026302aa32
eec9703d11dd11187fce89ef6cbccbb20f62f8a8
409856de07d177688b70be6f0405f9e8a86aa6619458fd93bc6efa5c12779da5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "409856DE07D177688B70BE6F0405F9E8A86AA6619458FD93BC6EFA5C12779DA5"
Last-Modified: Mon, 10 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 11 Oct 2022 20:42:51 GMT
Date: Tue, 11 Oct 2022 14:42:51 GMT
Connection: keep-alive
push.services.mozilla.com/
100.20.30.105101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.30.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: n+CJfGutnU5ZQiU63Hdz4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: avwYM3O7TuoK95xlnNDADvU833Y=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2c08f85bd74f5c0456761cd4180e3d1b
1fb1ed9973e481092ae4e51e7277e7e58144f994
e5e5d24ca076fb29f70c900432ad20cc1c838d61924c257d2fe01e898a76ecad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-183268939-1
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-183268939-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1962)
Hash c313002896b215c56db67b3a9ff55d0e
bfc2ea3766ba2788171ff3c70172cd45aec0ee41
5422be5bb9c0b34a3e803c9f0b90da5a2608a940b5919be217d295829fbd0c08
GET /gtag/js?id=UA-183268939-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 11 Oct 2022 14:42:52 GMT
expires: Tue, 11 Oct 2022 14:42:52 GMT
cache-control: private, max-age=900
last-modified: Tue, 11 Oct 2022 14:14:06 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42419
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 040e2cbe64b96e6fbf5d75866bd89ac6
543e1bb8e0d51f814810e4d990f18cdb0424c0ff
ab1cc7d67266df6f96b214b938a6aa9736af1c09d18f9bd6bf2702417c7a9dda
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 11 Oct 2022 14:42:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 11 Oct 2022 12:41:44 GMT
Expires: Wed, 12 Oct 2022 12:41:44 GMT
ETag: "543e1bb8e0d51f814810e4d990f18cdb0424c0ff"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 040e2cbe64b96e6fbf5d75866bd89ac6
543e1bb8e0d51f814810e4d990f18cdb0424c0ff
ab1cc7d67266df6f96b214b938a6aa9736af1c09d18f9bd6bf2702417c7a9dda
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 11 Oct 2022 14:42:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 11 Oct 2022 12:41:44 GMT
Expires: Wed, 12 Oct 2022 12:41:44 GMT
ETag: "543e1bb8e0d51f814810e4d990f18cdb0424c0ff"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
daominhha.net/wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css
103.97.124.72200 OK 265 B URL HTTP/2 daominhha.net/wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (548), with no line terminators
Hash 1001c2f945aac59f9108454f005ed5f3
b994e1b01144e3d8395f95400027b8782af03d38
9269300d49b0a255f5e6c7e533f707128927b17c6e5cc8e77a302ad37a61f349
GET /wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
content-length: 265
vary: Accept-Encoding,User-Agent
x-accel-version: 0.01
last-modified: Sat, 06 Aug 2022 20:27:23 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
images.dmca.com/Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1
151.139.242.29200 OK 2.2 kB URL HTTP/2 images.dmca.com/Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1
IP 151.139.242.29:0
File type PNG image data, 121 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c626298d2bc133121172b17e8ac5cf
7e0d59debd84381b1c5a64136e6ef4c4f24034cc
075535cca15623d527f533d7a54e63ed6f4443eb7113d850447b959569fbc6b3
GET /Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1 HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 2152
cache-control: max-age=2592000
etag: "20bc6d33e0ebca1:0"
last-modified: Tue, 04 May 2010 23:19:10 GMT
x-powered-by: ASP.NET
expires: Thu, 10 Nov 2022 14:42:06 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/dmca_protected_sml_120m.png>; rel="canonical"
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
images.dmca.com/Badges/DMCABadgeHelper.min.js
151.139.242.29200 OK 280 B URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js
IP 151.139.242.29:0
Hash 676eb336bf17b6d9ba8106a096fdd587
22d3b0769cd5aa177e723be2456b32509914fa7d
9e9dc74a53c9a60256b8d4db5b26d02599cea75d3d00e02f16bef59169477a69
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript
content-length: 280
cache-control: max-age=2592000
etag: "26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
expires: Thu, 10 Nov 2022 14:42:12 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
content-encoding: gzip
vary: Accept-Encoding
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
daominhha.net/wp-content/themes/hncgamingtheme/main.css
103.97.124.72200 OK 40 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/main.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Hash dc79c9a7d8e8979b5ff040fcd215ccfc
75d35c6a98a8ace1a155782e3452a6f140931286
d2af25efd0787656a712d4ec9b1db342c771d197c1610f289e3b72e27cefe56e
GET /wp-content/themes/hncgamingtheme/main.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Tue, 13 Sep 2022 07:24:26 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"6320302a-3576c"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/contact-form-7/includes/css/styles.css
103.97.124.72200 OK 1.6 kB URL HTTP/2 daominhha.net/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Hash 8cd6689fb5d3ff9991f2ebba9cfdcc27
ae88ad763bf313d159756618195cf1dc157505b0
4f31706b43774467fe04dd97ad2f995f247569a27e29ac99d9cfbf62a6b42a85
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 02 Sep 2022 16:27:21 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"63122ee9-aab"
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16124
Expires: Tue, 11 Oct 2022 19:11:36 GMT
Date: Tue, 11 Oct 2022 14:42:52 GMT
Connection: keep-alive
daominhha.net/wp-content/plugins/hnc-random-code/assets/css/main.css
103.97.124.72200 OK 978 B URL HTTP/2 daominhha.net/wp-content/plugins/hnc-random-code/assets/css/main.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Hash 9cb82e9405b441ab85d19c6401782c8b
f4033cd740242e65502d6afb2add84edb0aa6cb8
70f38dfdab97a1bd1855707fa3dcc3fb8be454001a89b4ca05973d8b49ae007a
GET /wp-content/plugins/hnc-random-code/assets/css/main.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Sun, 14 Aug 2022 04:58:33 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62f880f9-429"
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16124
Expires: Tue, 11 Oct 2022 19:11:36 GMT
Date: Tue, 11 Oct 2022 14:42:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 94e8e091-1136-41a7-843c-44c4ffe9e688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZqylGGYwoAMFQIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340fe20-60b47aeb3b55af4f755577f4;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 04:35:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fzfUAL2jahiFgsqMExf1dB_7PFJt9wwO2BDKo3XJHSvk5AeeNP8FQg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:22:13 GMT
age: 58839
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: d31d1c0c-02a2-4912-b757-aa166018d5ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHkZFqeoAMFW0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec82-73f20af53f27f6f66e2906f2;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6IvU7Nkd48yGZUoGRwMEzLkIOBVKLvf8st0hggogDdKSCuzkPsnSQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:58:49 GMT
age: 60243
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e6761274cf8c2ed62e317e310f74ac3
32b3631be51d3385f061fee29e41ed28fad4b914
45d68ffebd269cae06ae471a11a128c32070367db85f525b81df4164f510adea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 2f64751f-13d2-49c3-85c4-fb0f28186a37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt8mFh7IAMF_lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449050-100b2d49411d4bed369655c1;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lss2UdzBjP4PysNdrrEsK0WX20WfoKkbHuhcPzL6WWyyTXSynpXJDA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:55:51 GMT
etag: "32b3631be51d3385f061fee29e41ed28fad4b914"
content-type: image/jpeg
age: 60421
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a8720e1bfd92ce7ccfeb8ab6ca2477a
1277a8a73b2fbf48562a7f767c3219d836b1faa9
61cfaa0a0338ae710735fab66822d8227adeb6a8bc4035686fae4a4de6247f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6645
x-amzn-requestid: 6e75c182-93bc-4339-a679-b069f78a397c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuQ0H3qoAMFi5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634490d1-4e134a93174cbf3559bea75c;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:38:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2T5ArGyU86KvuyKtp_G0XC9MaZQWS2luBYlIKcQRWNeeUjqcmQgMSA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:10:38 GMT
age: 59534
etag: "1277a8a73b2fbf48562a7f767c3219d836b1faa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6943f4735bdb3eaf396cd0edbd101dae
3be209d8b74abe0d12033cf6149da04eb9e1a116
7578a8981216adc59909baf4e41ef4044d5a592e6dc7f80f4fa8f5f1cc1b282f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5957
x-amzn-requestid: e7388c82-006d-4114-84e1-f6c5af236edb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zt4h5EMzoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63423ad8-135cd65273a99b4c1719796b;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 03:07:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: H6aoPUjEEPgK6GhTjcpiUg0lVa0e78LQa7cbpYT-QR8NKUzn7UL1Sw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 04:12:36 GMT
age: 37816
etag: "3be209d8b74abe0d12033cf6149da04eb9e1a116"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7abfd93d-a205-46fc-a450-d0de2182b1c7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7abfd93d-a205-46fc-a450-d0de2182b1c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c510a5010677fcfa9ee8065c0abc894
5f2cf2a511760f5fd16d5c14a48a1aff185830e0
a07018792c7eb661bfddde47d26d728298c90314e52c96228a91c7d1978fedc6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7abfd93d-a205-46fc-a450-d0de2182b1c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10736
x-amzn-requestid: fb2bd595-cff6-4278-95cb-f42939d91f17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt85Fd9IAMFQeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449052-326c047f01d742353e1891c8;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: u5XxBwVbvOux8Bv_DgbsHjE5KcQE5gy_F2mXDNFfgPxmTfsfwCQS7Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:55:51 GMT
etag: "5f2cf2a511760f5fd16d5c14a48a1aff185830e0"
content-type: image/jpeg
age: 60421
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1665524571
103.97.124.72200 OK 3.9 kB URL HTTP/2 daominhha.net/wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1665524571
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash c824f088e94b1cbb8e1cb244fd505d39
c77c30f7df3a23591e36837fe2c52a2e43db060a
ded90d728b0677abcd1683b5feee8dc3bca8666f359a81262c081d375eec6507
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1665524571 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 3936
last-modified: Mon, 27 Sep 2021 02:39:23 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "61512edb-f60"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2020/12/logonew.png
103.97.124.72200 OK 6.2 kB URL HTTP/2 daominhha.net/wp-content/uploads/2020/12/logonew.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 420 x 77, 8-bit colormap, non-interlaced\012- data
Hash 3fa5d6d612f0c234719ffe1650b673f0
42c2a6f7b390b073ff6e8d1a3dc106ae66ced38e
c113b2921b35d0a9551cf6e2aac580cd6f5664c85cba4be9cfc73c47b552efed
GET /wp-content/uploads/2020/12/logonew.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 6179
last-modified: Mon, 27 Sep 2021 03:17:18 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "615137be-1823"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js
103.97.124.72200 OK 254 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (416), with no line terminators
Hash 7684f8c072269f23a32073a6a8203b8a
6db2bd15f9cb31a93bcb734b741353b3bd363e41
a6bed8312fe7a80bed976e1cfc776ac71fd6aa6d83ebcb9dfcc6ab525be5f4ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 254
vary: Accept-Encoding,User-Agent
x-accel-version: 0.01
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2021/02/gamer-icon.png
103.97.124.72200 OK 1.6 kB URL HTTP/2 daominhha.net/wp-content/uploads/2021/02/gamer-icon.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 4cd45f428d44debef9f0359515da9cc3
46f1598cecdf8241f880d67428ae9d4212b41650
6910b2b234fb246961b984f89dface46b53338dffd9aa235c80e94fee3a0e749
GET /wp-content/uploads/2021/02/gamer-icon.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 1602
last-modified: Mon, 27 Sep 2021 02:40:54 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "61512f36-642"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2
103.97.124.72200 OK 2.3 kB URL HTTP/2 daominhha.net/wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 2348, version 1.0\012- data
Hash 83b6052cdcd55044e06bc99f5e316e28
b82570b3c5b64545f3b92f8e49dbe796ed72e015
df5fb895368d354c17a502e398cee9417d531377fb273443bc60e6fc8e39cb82
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 2348
last-modified: Sun, 03 Apr 2022 15:38:44 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "6249bf84-92c"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js
103.97.124.72200 OK 19 B URL HTTP/2 daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with no line terminators
Hash 8102dc9eee0565de28649497220d8d17
a32963be36656f3dd149892540138913bc88de6c
51ff2b4b46acab057eba32dc5fbd0bcf410f0ad2bb75d7a92b230bc627d930d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 19
vary: Accept-Encoding,User-Agent
x-accel-version: 0.01
last-modified: Tue, 20 Sep 2022 09:12:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js
103.97.124.72200 OK 198 B URL HTTP/2 daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with no line terminators
Hash a5dc7dead45132519871276f050c6ada
57574eedf40c36431aaa842c194de37c755e92a4
cd90d94d9530cb2213a9f4e34cc1242bae23dbf8505cbfa1d0670380f17d185b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 198
vary: Accept-Encoding,User-Agent
x-accel-version: 0.01
last-modified: Tue, 20 Sep 2022 09:12:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js
103.97.124.72200 OK 140 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with no line terminators
Hash fe35280d3ae8e7d181a74e3a707ba08e
1d1ac9adae0b0a1d7a1467d6388ebc53bc2ef334
5bb723cf4c05607e03ce15570127a1e19c58e675756471b925dd9f6f41609b87
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 140
vary: Accept-Encoding,User-Agent
x-accel-version: 0.01
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1665524571
103.97.124.72200 OK 2.0 kB URL HTTP/2 daominhha.net/wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1665524571
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash d14ea1b242d39fd110c6fc9200d3b661
983084e54d135410b486199b45e69f7ab8249aa7
d3418e28eab6356b165e073bbd852bae0986a3163d7951ec5e726fe815489bb9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1665524571 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 2022
last-modified: Mon, 27 Sep 2021 02:23:38 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "61512b2a-7e6"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg
103.97.124.72200 OK 26 kB URL HTTP/2 daominhha.net/wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 618x715, components 3\012- data
Hash 56761a246f68f2ad2b27d39012be973a
8ea21aafa76a1a5b75869cb39af7dd935128d31f
5c57e9b8bcf1214892f848e2e192e096aa7b512962aeb263704deb80badc4729
GET /wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 25647
last-modified: Mon, 27 Sep 2021 02:24:15 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "61512b4f-642f"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/ultimatemember/15/profile_photo-100x100.png?1665524571
103.97.124.72200 OK 6.2 kB URL HTTP/2 daominhha.net/wp-content/uploads/ultimatemember/15/profile_photo-100x100.png?1665524571
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash fa2c56472d8ce61fa6c577ba87a41d33
925adbf9320bf87b47eb8b85ab37db0d88109a64
41b4407415e9a4b79a53d78778d5767f8ad30aaa3fecbd436ac94b32234bd6d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/ultimatemember/15/profile_photo-100x100.png?1665524571 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 6177
last-modified: Mon, 27 Sep 2021 02:39:11 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "61512ecf-1821"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/images/slider-fullscreen.png
103.97.124.72200 OK 260 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/images/slider-fullscreen.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash c5350c0d06a289a94e339b964a3d7e44
03fe8c2b20e3621050ca0ad1cb49538025242b32
8a810670d5e7d1e0d44e5876f1bdd42c5efb7a59c4832a478ac715fd6172e1a7
GET /wp-content/themes/hncgamingtheme/images/slider-fullscreen.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 260
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sat, 26 Dec 2020 19:18:52 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/images/left.png
103.97.124.72200 OK 227 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/images/left.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash cbbfedc55e99b45096e5cfd14f9b97ab
031e9f7f25340efc920adf644c38153cb336681c
93ad22009da66cddfaba4080a7e8a23cf7a1ca0aeb2d9fa0d7326dd7998f245e
GET /wp-content/themes/hncgamingtheme/images/left.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 227
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sat, 26 Dec 2020 19:18:52 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/images/right.png
103.97.124.72200 OK 213 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/images/right.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e90147cba47d1370781f14e0f0c4f1d1
f3c72115509baff871be7906ae55d84db8b08a0b
ddd038432377ce7fcfe3c613e7571177e740da85f7accb47a1c841fc8b246288
GET /wp-content/themes/hncgamingtheme/images/right.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 213
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sat, 26 Dec 2020 19:18:52 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2022/10/wall-Uncharted-2-Among-Thieves-Wallpaper-2.jpg
103.97.124.72200 OK 354 kB URL HTTP/2 daominhha.net/wp-content/uploads/2022/10/wall-Uncharted-2-Among-Thieves-Wallpaper-2.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1920x1080, components 3\012- data
Size 354 kB (354196 bytes)
Hash 1c127b24d21e2ec28a6003d49c6c6be3
f7853063d09959a60f345eb71dd0480073c273b3
66573e8f2f8ae69fc6f1fb3b67cbb2519804719b0225aad8c9c072cad453f17d
GET /wp-content/uploads/2022/10/wall-Uncharted-2-Among-Thieves-Wallpaper-2.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 354196
last-modified: Mon, 03 Oct 2022 03:40:56 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "633a59c8-56794"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2022/09/Wallpaper-Farthest-Frontier-HD-2.jpg
103.97.124.72200 OK 417 kB URL HTTP/2 daominhha.net/wp-content/uploads/2022/09/Wallpaper-Farthest-Frontier-HD-2.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1280, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1280, components 3\012- data
Size 417 kB (416898 bytes)
Hash b7bdb2173076114a07d2da2afc80a321
1345db987d65d4d07a62ef7fc998489b30a6afea
10e481d666fb7b86a7dd1b35f400ee8297721e93418e88b46049f9156b8c7ba5
GET /wp-content/uploads/2022/09/Wallpaper-Farthest-Frontier-HD-2.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 416898
last-modified: Wed, 21 Sep 2022 14:44:40 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "632b2358-65c82"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2
103.97.124.72200 OK 45 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 44936, version 1.0\012- data
Hash 97593b89e95959c7f41c47cf407d1f63
714db8a8c2f2425dbe450f83ff25c51cefd244d6
486c67592731a0b36a89dba1fd0b97aeb73f236bbf60dbf28d7c6b5723c07989
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 44936
last-modified: Fri, 05 Feb 2021 07:41:12 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "601cf698-af88"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2
103.97.124.72200 OK 43 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 43236, version 1.0\012- data
Hash a9557eb451f17dcd8e687327ea9383a0
78ad7ac0d04e1c0439c26d47978622b5b75b472a
2e3b1d34ac67763ab50652da19305d4b3694c6b6e6bf35f4b98411ce4af646d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 43236
last-modified: Fri, 05 Feb 2021 07:41:12 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "601cf698-a8e4"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/images/overlay.png
103.97.124.72200 OK 211 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/images/overlay.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 2 x 2, 1-bit colormap, non-interlaced\012- data
Hash 0a3750e6fdb29fcd632e627e2fc34dde
7c046ea4b1669da4eb81acccd7fc58b00201543d
5ddb13e84c10a1b7a773f0580f2997c3b5e91d1c2227fc1313c5991429442657
GET /wp-content/themes/hncgamingtheme/images/overlay.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/png
content-length: 211
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sat, 26 Dec 2020 19:16:32 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg
103.97.124.72200 OK 378 kB URL HTTP/2 daominhha.net/wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:10:03 10:36:14], baseline, precision 8, 3833x2049, components 3\012- data
Size 378 kB (377533 bytes)
Hash 4c846fd7e3decf0da641772eeb4636db
a7a535453d9adcbb7d75e46722769915623d1d30
f08dc06233dfc63636f2fa40194ec9dc258cd0d7d5076c5cc65b7d07c23ef002
GET /wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 377533
last-modified: Mon, 03 Oct 2022 03:36:29 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "633a58bd-5c2bd"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2022/09/Wallpaper-Farthest-Frontier-HD.jpg
103.97.124.72200 OK 670 kB URL HTTP/2 daominhha.net/wp-content/uploads/2022/09/Wallpaper-Farthest-Frontier-HD.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1080, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], progressive, precision 8, 1920x1080, components 3\012- data
Size 670 kB (670429 bytes)
Hash ffdc23ebd7e729628430c28b479d4f29
bc8415ab90b2731523916fd058d7612e7b4d7d15
db0434e84e9fb12e60fbf9a4a39b5caa28948271153972630143a01f1260d274
GET /wp-content/uploads/2022/09/Wallpaper-Farthest-Frontier-HD.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 670429
last-modified: Wed, 21 Sep 2022 14:44:41 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "632b2359-a3add"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2
103.97.124.72200 OK 142 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 141600, version 331.524\012- data
Size 142 kB (141600 bytes)
Hash 16e9dbeb2afd22d5cf0e7eeb2b2879ae
91689c405037a6cc57058a8738324bd762cf5c2b
e77c7e1c8f859611d1200ee9a75eadbce02664f28a53b05807233e88deb82f65
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 141600
last-modified: Tue, 10 Nov 2020 20:51:44 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "5faafd60-22920"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2
103.97.124.72200 OK 45 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 44988, version 1.0\012- data
Hash 17c283b4e785e073ec09dc72acebafac
42b7e1929f00cdcdc7d84878153338875b4fbb6a
c22fe8c70c36f1d862903b772eaed864d3a8fa849473c9caff224fdb852428e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 44988
last-modified: Fri, 05 Feb 2021 07:41:12 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "601cf698-afbc"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600italic.woff2
103.97.124.72200 OK 42 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600italic.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 42120, version 1.0\012- data
Hash ba0552ee00a0f1ab04d862f651201fd4
89b27a4a56fc4e82e7dee5b9244547f7deb940a4
1a3e865977024f444834a75a1b33b89b93134c93007ae3d6e14f24e6c88d8dfb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600italic.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 42120
last-modified: Fri, 05 Feb 2021 07:41:12 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "601cf698-a488"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2022/07/wall-Spider-Man.jpg
103.97.124.72200 OK 522 kB URL HTTP/2 daominhha.net/wp-content/uploads/2022/07/wall-Spider-Man.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:01:21 19:45:29], baseline, precision 8, 1920x1080, components 3\012- data
Size 522 kB (521813 bytes)
Hash bf0ee51a30ed5e5c33cfd3181e24e96f
7d59daa18656d98f21b91b97558724fed88d9b70
de824499b32c6cad62fc7ac3613ff02469eb570f7a9c1acf25242e075d613b6d
GET /wp-content/uploads/2022/07/wall-Spider-Man.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 521813
last-modified: Thu, 07 Jul 2022 10:14:47 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "62c6b217-7f655"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/font/ionicons.woff?v=2.0.0
103.97.124.72200 OK 68 kB URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/font/ionicons.woff?v=2.0.0
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format, TrueType, length 68060, version 0.0\012- data
Hash a5e53ff192d19be6c67297311261f613
9ba4bf64c6450f6726dc6542965e46db554f3290
df9b0492cd6e941ec03d9507ce5b7d8808a975cdbdac20b418bb6ceea17c6e3d
GET /wp-content/plugins/ultimate-member/assets/font/ionicons.woff?v=2.0.0 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/x-font-woff
content-length: 68060
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "62ff69f3-109dc"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2
103.97.124.72200 OK 77 kB URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format (Version 2), TrueType, length 76636, version 331.524\012- data
Hash a0f6b35c2b55babc93cb9b15791a1d4c
bd5cea4fa49feb29a336ee8623b46f8eb5c235b3
80c7d8d88a91688aa18a1ce39ec33e15ac5e1cad7c7be1c5fa3c403f34f1b53c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/octet-stream
content-length: 76636
last-modified: Tue, 10 Nov 2020 20:51:44 GMT
cache-control: max-age=2592000
expires: Thu, 10 Nov 2022 14:42:52 GMT
etag: "5faafd60-12b5c"
accept-ranges: bytes
X-Firefox-Spdy: h2
daominhha.net/wp-content/uploads/2022/08/wall-Dying-Light-2.1.jpg
103.97.124.72200 OK 468 kB URL HTTP/2 daominhha.net/wp-content/uploads/2022/08/wall-Dying-Light-2.1.jpg
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1080, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x1080, components 3\012- data
Size 468 kB (468066 bytes)
Hash ade168f8fb01e508c48961b58332133f
cea4f10890cd1ceb57c299bcae48eb53ebb2330a
d92d81151107d48cceecb0f0594f31e163272715485befc7d803df233f6c2d54
GET /wp-content/uploads/2022/08/wall-Dying-Light-2.1.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: image/jpeg
content-length: 468066
last-modified: Fri, 05 Aug 2022 01:20:13 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:52 GMT
etag: "62ec704d-72462"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 55429dd512d3e72adc0792b5e941d914
affb6ecf685702a7e652d81bef23fdb03515709f
46efa31a4d653d84c6b1c9156c248b92032a5a4305fad19857d9ed6183b16251
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 11 Oct 2022 14:41:09 GMT
expires: Tue, 11 Oct 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 104
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=33622956&t=pageview&_s=1&dl=https%3A%2F%2Fdaominhha.net%2Fdang-nhap-thanh-vien%2F&ul=en-us&de=UTF-8&dt=%C4%90%C4%83ng%20nh%E1%BA%ADp%20th%C3%A0nh%20vi%C3%AAn%20-%20Daominhha.com%20-%20Web%20T%E1%BA%A3i%20Game%20PC%20Vi%E1%BB%87t%20H%C3%B3a%20Mi%E1%BB%85n%20Ph%C3%AD%20%231&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1956623162&gjid=676385910&cid=207416499.1665499374&tid=UA-183268939-1&_gid=1834665695.1665499374&_r=1>m=2ouaa0&z=2021448418
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=33622956&t=pageview&_s=1&dl=https%3A%2F%2Fdaominhha.net%2Fdang-nhap-thanh-vien%2F&ul=en-us&de=UTF-8&dt=%C4%90%C4%83ng%20nh%E1%BA%ADp%20th%C3%A0nh%20vi%C3%AAn%20-%20Daominhha.com%20-%20Web%20T%E1%BA%A3i%20Game%20PC%20Vi%E1%BB%87t%20H%C3%B3a%20Mi%E1%BB%85n%20Ph%C3%AD%20%231&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1956623162&gjid=676385910&cid=207416499.1665499374&tid=UA-183268939-1&_gid=1834665695.1665499374&_r=1>m=2ouaa0&z=2021448418
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=33622956&t=pageview&_s=1&dl=https%3A%2F%2Fdaominhha.net%2Fdang-nhap-thanh-vien%2F&ul=en-us&de=UTF-8&dt=%C4%90%C4%83ng%20nh%E1%BA%ADp%20th%C3%A0nh%20vi%C3%AAn%20-%20Daominhha.com%20-%20Web%20T%E1%BA%A3i%20Game%20PC%20Vi%E1%BB%87t%20H%C3%B3a%20Mi%E1%BB%85n%20Ph%C3%AD%20%231&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1956623162&gjid=676385910&cid=207416499.1665499374&tid=UA-183268939-1&_gid=1834665695.1665499374&_r=1>m=2ouaa0&z=2021448418 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://daominhha.net
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://daominhha.net
date: Tue, 11 Oct 2022 14:42:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7857004727829891
142.250.74.66200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7857004727829891
IP 142.250.74.66:0
File type ASCII text, with very long lines (2910)
Hash 94d70f70af5168297c782366eaf8200e
e27729bc7a135d0d3656461f3ea57b3165e30d0c
cb72a95c0d4d86b8fefd3eb92eb00d843287fb6622b4f206d12d49db2f82a0f3
GET /pagead/js/adsbygoogle.js?client=ca-pub-7857004727829891 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://daominhha.net
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Tue, 11 Oct 2022 14:42:53 GMT
expires: Tue, 11 Oct 2022 14:42:53 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17612502094043069456
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 55429dd512d3e72adc0792b5e941d914
affb6ecf685702a7e652d81bef23fdb03515709f
46efa31a4d653d84c6b1c9156c248b92032a5a4305fad19857d9ed6183b16251
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
daominhha.net/wp-content/uploads/2020/12/favicon-220x220.png
103.97.124.72200 OK 10 kB URL HTTP/2 daominhha.net/wp-content/uploads/2020/12/favicon-220x220.png
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 220 x 220, 8-bit colormap, non-interlaced\012- data
Hash fe45c4bbf8474658be129f067ca9e269
22a1d286516e687ce7876138c8f216112b5b0519
f7361144bb08a1c407bb487ea1da043453bd0ea92863c55f6c5b3601371ed6a8
GET /wp-content/uploads/2020/12/favicon-220x220.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:53 GMT
content-type: image/png
content-length: 10226
last-modified: Mon, 27 Sep 2021 03:17:53 GMT
cache-control: max-age=10368000, public
expires: Wed, 08 Feb 2023 14:42:53 GMT
etag: "615137e1-27f2"
accept-ranges: bytes
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20221005/r20190131/zrt_lookup.html
172.217.21.162200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221005/r20190131/zrt_lookup.html
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20221005/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Mon, 10 Oct 2022 15:13:38 GMT
expires: Mon, 24 Oct 2022 15:13:38 GMT
cache-control: public, max-age=1209600
age: 84555
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6d7ebd26b0055f1e253b028cb7f4c14
82042dc3d0eff94d4d271b7435533e292ba7fc2b
c1d5ffcfe48fd438fc5f3160ea6c879b0e700490f675515c9985e778979d09ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 630d2d1f4572fc2d78b1318b8a5c05d9
e88d0c31bc701e6620366a83dd337a89420a4215
73442de4417e1f83c5e82b0e281bf0e4144a0a25f8c59552a788932d5c47bde5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6d7ebd26b0055f1e253b028cb7f4c14
82042dc3d0eff94d4d271b7435533e292ba7fc2b
c1d5ffcfe48fd438fc5f3160ea6c879b0e700490f675515c9985e778979d09ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0fa37076cf716e45f8c7d4c9d3763ec4
b5e15dbbf63afd38dafc5681994078585c2974a6
819e659d6a167e928acd75ce791dbe29c4ad44784b47a5beb0376cbfab59937f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=daominhha.net
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=daominhha.net
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=daominhha.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 11 Oct 2022 14:42:54 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=daominhha.net
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=daominhha.net
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=daominhha.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 11 Oct 2022 14:42:54 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 630d2d1f4572fc2d78b1318b8a5c05d9
e88d0c31bc701e6620366a83dd337a89420a4215
73442de4417e1f83c5e82b0e281bf0e4144a0a25f8c59552a788932d5c47bde5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b8e058c50dbe0871b6ccde4ed4cc8785
06b0c34d584624df99282c1fff1d766b9ed00e64
3319073b74402c41450cc9ca2162140dbe8b231db146cf8e77cb0b43fa461b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b45d7f40a93a062e11d3152f4c8cc386
118b3c9ba2d1939c87d45bc232b6833eb2190623
85f94ae27cef37d4aa23385459ae771386e0d4f2f794ccbf43174de141601b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8cfe90d44697ca96e18640967d09f361
70e86bc3173bdc745fe3f049904a5ffc2b14a24a
1dad84ba96fdc2c685a0ff47c04c234d9d143c15604cf6f90321a208cd34c847
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8cfe90d44697ca96e18640967d09f361
70e86bc3173bdc745fe3f049904a5ffc2b14a24a
1dad84ba96fdc2c685a0ff47c04c234d9d143c15604cf6f90321a208cd34c847
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221005/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221005/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash 32c677a4647f0ae3cc8da5d2d6cad9a9
15172d1fc264735d804259a86089ae205b875aa0
10f273ec96eb4c065d9b5f3192aaf2ee566f04defe7b593bbeb00f795a5f54ae
GET /pagead/js/r20221005/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7570
x-xss-protection: 0
date: Tue, 11 Oct 2022 14:25:11 GMT
expires: Tue, 25 Oct 2022 14:25:11 GMT
cache-control: public, max-age=1209600
etag: 9181008806812530437
content-type: text/javascript; charset=UTF-8
age: 1063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221005/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221005/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 48c035f633b5f56e26b54dae9cc1897d
58be20a58a49d99bed9006e1d94873abe5ff728c
cb9831d38950e4c877fa64ef51c493caec85c448b57c6ade013618c55dcc2f44
GET /pagead/js/r20221005/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9572
x-xss-protection: 0
date: Tue, 11 Oct 2022 14:19:51 GMT
expires: Tue, 25 Oct 2022 14:19:51 GMT
cache-control: public, max-age=1209600
etag: 13714838864795470651
content-type: text/javascript; charset=UTF-8
age: 1383
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.130200 OK 47 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.130:0
File type ASCII text, with very long lines (3502)
Hash 30bfc8a5b8da1b4db0b5dbf93d136a11
df49d189a8cc301f83e8b743b9881142fa6083d7
bbd112e067f13570cdf9274fac3c0dfcd408dd342246d8749f5ba09fedd910a2
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47122
date: Tue, 11 Oct 2022 14:42:54 GMT
expires: Tue, 11 Oct 2022 14:42:54 GMT
cache-control: private, max-age=3000
etag: "1665402098278948"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 78a3ee88876e1d435a7336de2648d41f
96ec618e5f3e76bdbc03e4e60a793ec396b40dd3
4eab0c4746253e517a0523b2e47d6d392c5e17e663ac59307182a566f31d86e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80441eff42b20b9def8e35c2e40efd3
f9fe84a9e292cb463f176040150eafbb68dd2e02
89bb831922fbb4b3675d0a7b109880111057574202841db3c6db5b6bdeab39b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/mysidia/1d54d8cacad5994e062108e03542c880.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/1d54d8cacad5994e062108e03542c880.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (1792)
Hash 09167db249fb99cbde6fd35cc52e39d6
de808eb234a3967ef6fb89567dd8f7dffebfbe06
3553647595ea69b989d8b04af93830177c4eabf1e35a487122dc78184ea14257
GET /mysidia/1d54d8cacad5994e062108e03542c880.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 07:38:54 GMT
expires: Thu, 05 Jan 2023 07:38:54 GMT
cache-control: public, max-age=7776000
last-modified: Fri, 07 Oct 2022 06:02:48 GMT
content-type: text/javascript
age: 371040
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaQEuPm6IDENUSSp7K2Zv5IMpnz_-sYeC6UxRcssMOQqio49GrzVglQY6QdmRSBqOML8y1fHGR06Ve0XJtYN00-LKLpFrw
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaQEuPm6IDENUSSp7K2Zv5IMpnz_-sYeC6UxRcssMOQqio49GrzVglQY6QdmRSBqOML8y1fHGR06Ve0XJtYN00-LKLpFrw
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaQEuPm6IDENUSSp7K2Zv5IMpnz_-sYeC6UxRcssMOQqio49GrzVglQY6QdmRSBqOML8y1fHGR06Ve0XJtYN00-LKLpFrw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 11 Oct 2022 14:42:54 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d86e14ff3ce5350e8b876fa551583c57
f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30
6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 14:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
142.250.74.163200 OK 205 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 4087858e2c9db9aa8f6a840aedcfb533
d1ffe861da6bd0e95fd1a365b0c3d3ceb6cd58a3
4d45982f2dc34f36c9045ee46a75a1943666bb7fd64e103cac8c7429e7012840
GET /images/icons/material/system/2x/feedback_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 07:48:24 GMT
expires: Wed, 11 Oct 2023 07:48:24 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 24870
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 15:21:36 GMT
expires: Thu, 05 Oct 2023 15:21:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
age: 516078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221005&st=env
142.250.74.66200 OK 12 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221005&st=env
IP 142.250.74.66:0
File type ASCII text, with very long lines (14847)
Hash 350e213ad9e6ea1077d28808dc34452c
21c36134343c2b8001acadab167eeafafbeccc53
410f216f60aa5cc7c6a2a4ea6cc94c9a6544f2a2586be5ee9f0a9af089fb1c68
GET /getconfig/sodar?sv=200&tid=gda&tv=r20221005&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://daominhha.net
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 11 Oct 2022 14:42:55 GMT
server: cafe
cache-control: private
content-length: 11269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssB31OZOi6sIn7-WDNfYVW5NL5npfBlqmdgtHxNpMTQyarfjZhW8OO_ZpufIKIyCO7H04_FhfNUxrUe5WcIEIaNHSQYV8X-fKZpAwwbUeV9wxe7S5go_ZNQw70yZQdgNccfW2XsJ7I&sai=AMfl-YTzNg9kSu0aXdcFCDbp1cr3nUwZz6paF6tpS8deIvSZHu3o6wOJ_0GcXB3I07Ovwj91vsGZ20xINEHYntjHxBCHSAaYEeJhnSJoOIp9fA5YzUZt3C0-6HGL6rBUPbX4jEo&sig=Cg0ArKJSzIurgInOWXeVEAE&id=lidar2&mcvt=1000&p=0,0,280,1140&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20221010&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=878644014&rs=2&la=1&cr=0&vs=4&r=v&rst=1665499374063&rpt=934&met=mue&wmsd=0
142.250.74.66200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssB31OZOi6sIn7-WDNfYVW5NL5npfBlqmdgtHxNpMTQyarfjZhW8OO_ZpufIKIyCO7H04_FhfNUxrUe5WcIEIaNHSQYV8X-fKZpAwwbUeV9wxe7S5go_ZNQw70yZQdgNccfW2XsJ7I&sai=AMfl-YTzNg9kSu0aXdcFCDbp1cr3nUwZz6paF6tpS8deIvSZHu3o6wOJ_0GcXB3I07Ovwj91vsGZ20xINEHYntjHxBCHSAaYEeJhnSJoOIp9fA5YzUZt3C0-6HGL6rBUPbX4jEo&sig=Cg0ArKJSzIurgInOWXeVEAE&id=lidar2&mcvt=1000&p=0,0,280,1140&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20221010&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=878644014&rs=2&la=1&cr=0&vs=4&r=v&rst=1665499374063&rpt=934&met=mue&wmsd=0
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssB31OZOi6sIn7-WDNfYVW5NL5npfBlqmdgtHxNpMTQyarfjZhW8OO_ZpufIKIyCO7H04_FhfNUxrUe5WcIEIaNHSQYV8X-fKZpAwwbUeV9wxe7S5go_ZNQw70yZQdgNccfW2XsJ7I&sai=AMfl-YTzNg9kSu0aXdcFCDbp1cr3nUwZz6paF6tpS8deIvSZHu3o6wOJ_0GcXB3I07Ovwj91vsGZ20xINEHYntjHxBCHSAaYEeJhnSJoOIp9fA5YzUZt3C0-6HGL6rBUPbX4jEo&sig=Cg0ArKJSzIurgInOWXeVEAE&id=lidar2&mcvt=1000&p=0,0,280,1140&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20221010&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=878644014&rs=2&la=1&cr=0&vs=4&r=v&rst=1665499374063&rpt=934&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Tue, 11 Oct 2022 14:42:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
daominhha.net/wp-admin/admin-ajax.php
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-admin/admin-ajax.php
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 65
Origin: https://daominhha.net
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Cookie: _ga=GA1.2.207416499.1665499374; _gid=GA1.2.1834665695.1665499374; _gat_gtag_UA_183268939_1=1; __gads=ID=f71968c970892447-2247495140ce0005:T=1665499374:RT=1665499374:S=ALNI_MZIv_cOnVxK6qN1SQ9k3bMuc9gZCQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://daominhha.net
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-3a77"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/pickadate/default.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/pickadate/default.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-f52"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/dist/hooks.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/dist/hooks.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"6254194e-132e"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/dist/i18n.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/dist/i18n.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 12 Apr 2022 15:12:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"625596ee-27ee"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-modal.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-modal.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-modal.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-149d"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/dist/vendor/wp-polyfill.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"6254194e-4ac6"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/imagesloaded.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/imagesloaded.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 13 Jun 2020 18:53:26 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"5ee520a6-15fd"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-2604"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 11 Aug 2022 17:58:41 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62f54351-cc4"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 26 Dec 2020 18:57:23 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"5fe78793-3816"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/jquery/jquery.masonry.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/jquery/jquery.masonry.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.masonry.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 18 Aug 2016 18:55:30 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"57b604a2-71b"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-crop.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-crop.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-crop.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-4287"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-9adb"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-80df"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-functions.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-functions.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-functions.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-3908"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-7519"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/dang-nhap-thanh-vien/
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/dang-nhap-thanh-vien/
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /dang-nhap-thanh-vien/ HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:51 GMT
content-type: text/html; charset=UTF-8
link: <https://daominhha.net/wp-json/>; rel="https://api.w.org/", <https://daominhha.net/wp-json/wp/v2/pages/350>; rel="alternate"; type="application/json", <https://daominhha.net/?p=350>; rel=shortlink
vary: Accept-Encoding,User-Agent
cache-control: max-age=0
expires: Tue, 11 Oct 2022 14:42:51 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-38f9"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/dist/vendor/regenerator-runtime.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"6254194e-194b"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-account.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-account.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-account.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-afc"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-modal.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-modal.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-modal.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-e92"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fileupload.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fileupload.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-fileupload.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-e9f"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-styles.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-styles.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-styles.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-627b"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/jquery/jquery.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/jquery/jquery.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"6048e0ac-15db1"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-fileupload.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-fileupload.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-fileupload.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-2658"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/simplebar.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/simplebar.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/simplebar.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-ad47"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Tue, 10 Nov 2020 20:51:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"5faafd62-2a63a"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-misc.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-misc.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-misc.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-871"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/hnc-random-code/assets/js/main.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/hnc-random-code/assets/js/main.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hnc-random-code/assets/js/main.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 14 Aug 2022 04:58:33 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62f880f9-124e"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/js/main.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/main.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/js/main.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 11 Aug 2022 18:12:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62f5469e-1d1a"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/masonry.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/masonry.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 13 Jun 2020 18:53:26 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"5ee520a6-5e4a"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-old-default.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-old-default.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-old-default.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-186e"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-raty.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-raty.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-raty.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-44b"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/contact-form-7/includes/swv/js/index.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Sep 2022 16:27:21 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"63122ee9-25d0"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-raty.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-raty.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-raty.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-23ae"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-account.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-account.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-account.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-118c"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/wp-util.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/wp-util.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 25 Jun 2021 14:50:58 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"60d5ed52-53c"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-profile.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-profile.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-profile.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-26fd"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/simplebar.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/simplebar.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/simplebar.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-faa"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-tipsy.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-tipsy.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-tipsy.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-8df"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 31 May 2021 20:08:47 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"60b5424f-f7eb"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 03 Apr 2022 15:38:45 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"6249bf85-2322f"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-9ef"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/jquery/jquery-migrate.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/jquery/jquery-migrate.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"5fb4e3fe-2bd8"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-c1bb"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-crop.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-crop.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-crop.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-10fa"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 14 Aug 2022 04:58:33 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62f880f9-601c"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-3073"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-a14a"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-110e"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-profile.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/um-profile.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/um-profile.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-adb"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-responsive.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/um-responsive.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/um-responsive.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-3241"
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.10:0
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 11 Oct 2022 14:42:54 GMT
date: Tue, 11 Oct 2022 14:42:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 11 Dec 2020 06:49:14 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"5fd3166a-c9b1"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-1356d"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 31 May 2021 20:08:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"60b5424e-27681"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 19 Aug 2022 10:46:11 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62ff69f3-1779"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-content/plugins/contact-form-7/includes/js/index.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-content/plugins/contact-form-7/includes/js/index.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 02 Sep 2022 16:27:21 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"63122ee9-2fb3"
content-encoding: gzip
X-Firefox-Spdy: h2
daominhha.net/wp-includes/js/underscore.min.js
103.97.124.72200 OK 0 B URL HTTP/2 daominhha.net/wp-includes/js/underscore.min.js
IP 103.97.124.72:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/dang-nhap-thanh-vien/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 14:42:52 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 27 Apr 2022 14:39:20 GMT
vary: Accept-Encoding
cache-control: max-age=31536000, public
expires: Wed, 11 Oct 2023 14:42:52 GMT
etag: W/"62695598-49df"
content-encoding: gzip
X-Firefox-Spdy: h2