Overview

URLwww.helios.vn/98jh6d5/89hg56fd.exe
IP 112.213.86.143 (Vietnam)
ASN#45544 SUPERDATA
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-27 11:55:22 UTC
StatusLoading report..
IDS alerts0
Blocklist alert4
urlquery alerts No alerts detected
Tags None

Domain Summary (14)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.pki.goog (10) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
fonts.gstatic.com (3) 0 2014-09-09 00:40:21 UTC 2022-11-27 05:33:29 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
r3.o.lencr.org (5) 344 No data No data 23.36.76.226
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
helios.vn (111) 0 2015-11-08 23:37:39 UTC 2022-11-25 13:31:57 UTC 112.213.86.143 Unknown ranking
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-27 05:34:18 UTC 142.250.74.10
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-27 05:29:56 UTC 34.102.187.140
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-27 05:29:57 UTC 34.117.237.239
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.43.61.95
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-27 06:32:27 UTC 142.250.74.168
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
www.helios.vn (2) 0 2016-01-20 11:16:18 UTC 2022-06-27 15:39:48 UTC 112.213.86.143 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-27 2 www.helios.vn/98jh6d5/89hg56fd.exe Malware
2022-11-27 2 www.helios.vn/98jh6d5/89hg56fd.exe Malware
2022-11-27 2 helios.vn/assets/css/style.css?v=1653965503 Malware
2022-11-27 2 helios.vn/98jh6d5/89hg56fd.exe Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 112.213.86.143
Date UQ / IDS / BL URL IP
2022-12-06 11:33:22 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-12-05 17:15:01 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-11-28 03:53:08 +0000 0 - 0 - 3 helios.vn/ 112.213.86.143
2022-11-27 11:56:07 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-11-27 11:55:22 +0000 0 - 0 - 4 www.helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143


Last 5 reports on ASN: SUPERDATA
Date UQ / IDS / BL URL IP
2023-02-05 16:03:02 +0000 0 - 1 - 0 tachicoffee.com/wp-content/download/File.zip? (...) 103.77.162.8
2023-02-04 11:19:01 +0000 0 - 0 - 2 vietcredit.click/login 27.0.15.60
2023-02-01 19:23:24 +0000 0 - 0 - 1 chithanhplastics.com/uploads/userfiles/file/n (...) 103.1.237.27
2023-02-01 18:47:15 +0000 0 - 2 - 0 ebnbestprice.com/ 103.77.162.20
2023-02-01 18:01:19 +0000 0 - 0 - 2 oncredit247.com/ 27.0.15.60


Last 5 reports on domain: helios.vn
Date UQ / IDS / BL URL IP
2022-12-06 11:33:22 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-12-05 17:15:01 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-11-28 03:53:08 +0000 0 - 0 - 3 helios.vn/ 112.213.86.143
2022-11-27 11:56:07 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-11-27 11:55:22 +0000 0 - 0 - 4 www.helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143


Last 4 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-06 11:33:22 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-12-05 17:15:01 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143
2022-11-28 03:53:08 +0000 0 - 0 - 3 helios.vn/ 112.213.86.143
2022-11-27 11:56:07 +0000 0 - 0 - 3 helios.vn/98jh6d5/89hg56fd.exe 112.213.86.143

JavaScript

Executed Scripts (3)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (147)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9166
Expires: Sun, 27 Nov 2022 14:27:56 GMT
Date: Sun, 27 Nov 2022 11:55:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8993
Expires: Sun, 27 Nov 2022 14:25:03 GMT
Date: Sun, 27 Nov 2022 11:55:10 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 6nFk/OM33L+nJzK/5egX3S48897b9TK11Eb2zGg0hksz6eLdScNBVdLhnGgkBpAyU7rZvWP6W/8=
x-amz-request-id: 74HPG64BT79V7HGA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 11:44:37 GMT
age: 633
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4941
Cache-Control: 'max-age=158059'
Date: Sun, 27 Nov 2022 11:55:10 GMT
Last-Modified: Sun, 27 Nov 2022 10:32:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /98jh6d5/89hg56fd.exe HTTP/1.1 
Host: www.helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         112.213.86.143
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sun, 27 Nov 2022 11:56:09 GMT
Server: Apache/2
Location: https://www.helios.vn/98jh6d5/89hg56fd.exe
Content-Length: 250
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   250
Md5:    05d1e6230268fbc3d151425e96b5ac19
Sha1:   bedd25ee10c5ff5f8c783cdc696f7985638ca7e2
Sha256: bfe6b2f81fa51fe62693a78eb7d704f728342c92622dec4ce00bc8035031a567

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 11:17:39 GMT
cache-control: public,max-age=3600
age: 2251
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 27 Nov 2022 11:55:10 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 11:08:54 GMT
cache-control: public,max-age=3600
age: 2777
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:11 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 07:43:15 GMT
Expires: Fri, 02 Dec 2022 07:43:14 GMT
Etag: "d0fbd136de948aee49113b8e721f02016e69b92f"
Cache-Control: max-age=416282,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770aac648e33b4f3-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1791
Cache-Control: max-age=164492
Date: Sun, 27 Nov 2022 11:55:11 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 09:36:43 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /98jh6d5/89hg56fd.exe HTTP/1.1 
Host: www.helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         112.213.86.143
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
date: Sun, 27 Nov 2022 11:56:10 GMT
server: Apache/2
location: https://helios.vn/98jh6d5/89hg56fd.exe
cache-control: max-age=2592000
expires: Tue, 27 Dec 2022 11:56:10 GMT
content-length: 246
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   246
Md5:    0becde814664e620fd5ba5670b624109
Sha1:   d6ec1edd2bb53b0747002e3a143baa6da9ba2e50
Sha256: 5991f0df4e67752e3245b1ca06d5793827e893117aad2ed398f74011ef83d4a9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v1ZqdrpklpFU5TJve5x/Tw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.43.61.95
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xpImdrYqEhbXoCi5iLivnzPGhfo=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12993
Expires: Sun, 27 Nov 2022 15:31:46 GMT
Date: Sun, 27 Nov 2022 11:55:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12993
Expires: Sun, 27 Nov 2022 15:31:46 GMT
Date: Sun, 27 Nov 2022 11:55:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12993
Expires: Sun, 27 Nov 2022 15:31:46 GMT
Date: Sun, 27 Nov 2022 11:55:13 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:52:26 GMT
age: 50567
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8254
Md5:    6ee5071a31d351c552aa651e40b16189
Sha1:   6fca9136030ea6f67be44e428ea39c34ff3e28e7
Sha256: 8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 50612
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10199
Md5:    2cd887044e91d7ed0f1a8d7119ff7dd0
Sha1:   ae8aa4ce6ddaccba771fe65446926b60fc5628da
Sha256: bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 50612
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5099
Md5:    433875a1b1fef34e45f2d8ac344c07e3
Sha1:   f2129466436cbbdd58abe42a47fb7af19eba58e6
Sha256: ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8335
x-amzn-requestid: 265466c8-029d-4738-bdbe-be0a161fb497
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOeD0GwYIAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638276e5-1c8225cf00057ce0047f74ba;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 20:28:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TK_kNT9Vcv_lNMbiTqXxAYXCko2Gy64Oy9MGXwuBu9S_3DdqIc67Nw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:54:52 GMT
age: 50421
etag: "b298107232e837ccf8d853e6d2c91f67e74dc2ba"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8335
Md5:    c52c26038ed572c870cf2119865907b1
Sha1:   b298107232e837ccf8d853e6d2c91f67e74dc2ba
Sha256: d95471f66cf6404bfb5400c4c707fbb81bcaf4be1518313d3f513c9b2a3da1fd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 50616
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2944
x-amzn-requestid: 8f1b2573-39ab-442e-8c6e-97538a28aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWXXEjJIAMFu1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813762-52f27ff536b0c3b84bdfba8e;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:45:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9hy8v_azPZzuVRv1VN61DoNWbfA83JPs4JcZfRyLo3j6HCtWv_gkNw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:04:40 GMT
age: 49833
etag: "139f48ea60880efc6d2977f4d3141809f22adfef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2944
Md5:    5c135ab961de12d926b94f9abae8adbe
Sha1:   139f48ea60880efc6d2977f4d3141809f22adfef
Sha256: 1578a994e7c4eef451f1c744116caa95e1aa995c4817a13832f1ac3487cea95d
                                        
                                            GET /gtag/js?id=UA-217402381-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 11:55:13 GMT
expires: Sun, 27 Nov 2022 11:55:13 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43680
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43680
Md5:    496445ef732eb9f7607607c1a2de3bb1
Sha1:   a68b974f14e1b04ae1bcb9b4c38a1e25a766eeb1
Sha256: 2e745f892d3b450d096903e7c9fe3bea93c9bdc6c5300d2e5d1a31d7c2135962
                                        
                                            GET /assets/images/ic-search1.png HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Mon, 27 Dec 2021 08:41:25 GMT
etag: "56a-5d41cab8995e6"
accept-ranges: bytes
content-length: 1386
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:11 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size:   1386
Md5:    d20946fe682a8ac4844dec667ced4186
Sha1:   f88f396150d8ad41c0dba0aa49c4fc11c10c50b1
Sha256: 7fcd70312abc8b06fffc759047202fe26b50551df81a3018dedb614f02fc1920
                                        
                                            GET /assets/css/cart.css HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Mon, 27 Dec 2021 08:41:15 GMT
etag: "286c-5d41caae756be-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2448
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2448
Md5:    e9e26634e96eca38f17c1bb62b376a99
Sha1:   a9e952c860ba0d5d76962fb9eae38a0e339b9f98
Sha256: 83f8b85962243787c52c70ef6b7179b263e8989134cb7e5da083d9c2074ab7f2
                                        
                                            GET /assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Mon, 27 Dec 2021 08:43:07 GMT
etag: "7188-5d41cb19ce60e-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6664
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (28900)
Size:   6664
Md5:    dba3feaa47e3ecdb2f96f5656fe27181
Sha1:   1fcdfd2b58707906fb08ed785baeffff9cdbed99
Sha256: 6b7ecb3eae1f96a2f6cf134685d44732de45f94af7aa645346284a9a617e0e8b
                                        
                                            GET /assets/plugins/nice-select/nice-select.css HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Mon, 27 Dec 2021 08:42:50 GMT
etag: "fa7-5d41cb099879e-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1057
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1057
Md5:    d1d7efa19b769d2b6da55df37cebb29b
Sha1:   03b22939665eb62dbd1623d4eeffcd59381c66a3
Sha256: 0a3645773ac0ba2b3c8e31b51d9d00bafccfd56e55fff325d8c6f391506d0a9c
                                        
                                            GET /assets/plugins/jquery-confirm/jquery-confirm.css HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Mon, 27 Dec 2021 08:42:50 GMT
etag: "6b88-5d41cb091908e-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3637
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3637
Md5:    bc7256289c2f82d17db5bed3269d9e0c
Sha1:   e4fc8fe9608dddd20a0997db9bfa276fb70b0dd6
Sha256: ce796e98a858b65043645bc4743d06823d2e8b2043accbe436859b8a06aad3c2
                                        
                                            GET /assets/css/reset.css HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Tue, 04 Jan 2022 04:03:55 GMT
etag: "768e-5d4b9b9d1dfc6-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5184
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5184
Md5:    add3e0eacdc0dc05fc84f12b22326872
Sha1:   a7dc6fbc2a6734fe9e9fb7906f40ca9a49dc8ea6
Sha256: 33b2db037d79d6e1c4ff1c0a571a5c4caaf3b8ef7107e041fbcd1ab322942acd
                                        
                                            GET /thumbs/115x115x1/upload/hinhanh/1588-5746.png HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 02:54:00 GMT
etag: "b35-5ee56c00c4120"
accept-ranges: bytes
content-length: 2869
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:11 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 115 x 115, 8-bit/color RGBA, non-interlaced\012- data
Size:   2869
Md5:    df5ec8fd954c706552640bcf0f737e0a
Sha1:   5d2259f00697e9a323f65ac36c21e00978cf24da
Sha256: 258b47c1a139c29eeaaf13f7526dd45f1069b70087b94cea80570899dce196a8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/css/style.css?v=1653965503 HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Tue, 31 May 2022 02:51:43 GMT
etag: "10fe6-5e045da514e00-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11549
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   11549
Md5:    013399045c38c96ed52efd9366a6a1ac
Sha1:   cbb0a422786da354dbba756427105b18c49c6ef6
Sha256: 481afd6bc92980d6bcefb08fd7b7c29cdf8dc9cdcfb32168da2061d56e344fce

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/css/all.css HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Mon, 27 Dec 2021 08:41:14 GMT
etag: "28bb3-5d41caae47c46-gzip"
accept-ranges: bytes
cache-control: max-age=604800, proxy-revalidate
expires: Tue, 27 Dec 2022 11:56:11 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 22232
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65518), with no line terminators
Size:   22232
Md5:    2e9866bbeede6771a6939e7355962921
Sha1:   183718f00ab7bf237495fe8ee6d52ddb73dfd6e3
Sha256: ad9bf608a2686bcf6865f4d01b406c8c537569b9c6c42335e10c83e320274edc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /thumbs/380x380x1/upload/baiviet/ntav21060502h18756-5518.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:11 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 13:34:51 GMT
etag: "183e6-5ee4b961110e0"
accept-ranges: bytes
content-length: 99302
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:11 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 380x380, components 3\012- data
Size:   99302
Md5:    b24553a6a983495a6f236883967717d1
Sha1:   19e2cda4ccd19ee24361347690e635e3107c41ec
Sha256: 60eca7bbc7ca89976e91d5204c3754c2a8db3491a792c6f7a7388c3df8124216
                                        
                                            GET /thumbs/380x380x1/upload/baiviet/enginakyurt4iofzrbw6beunsplash3129-5893.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 07:25:44 GMT
etag: "1c7ed-5ee466e025fa0"
accept-ranges: bytes
content-length: 116717
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 380x380, components 3\012- data
Size:   116717
Md5:    6815f9b8308bb9da0f2b123327f627d9
Sha1:   d3e2069bc112f6d8d0f8b918cf829a00a79c7b41
Sha256: ad11efb234ebb9ca7a1eb91f8656e77ba4cd0f7e5b7684a2f253c1288388cd90
                                        
                                            GET /s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://helios.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 01:13:04 GMT
expires: Wed, 22 Nov 2023 01:13:04 GMT
cache-control: public, max-age=31536000
age: 470529
last-modified: Mon, 11 Jul 2022 18:57:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 27428, version 1.0\012- data
Size:   27428
Md5:    e6d08c334958c128b793b570a7dce066
Sha1:   081111500e97a7663ff936f847e050fee6b8be2b
Sha256: 8da72dacca3725d500bc789e5f506c76367804eecc46c4249ce0ff822d7a147e
                                        
                                            GET /s/mulish/v12/1Ptvg83HX_SGhgqk0QotcqA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://helios.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 15:36:23 GMT
expires: Sat, 25 Nov 2023 15:36:23 GMT
cache-control: public, max-age=31536000
age: 159530
last-modified: Mon, 11 Jul 2022 19:02:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24316, version 1.0\012- data
Size:   24316
Md5:    318a2ae8b82183cd78b947d0042c7e10
Sha1:   f690c11fe3c8ff360672da95dcfaf0073a8fdc37
Sha256: 2bde8ca32e52ee96dc3d6ddd52240b115f3a2ca527c7697899aa21ed9cba3a5b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/mulish/v12/1Ptvg83HX_SGhgqk0AotcqA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://helios.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7876
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:34:33 GMT
expires: Wed, 22 Nov 2023 20:34:33 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:08:15 GMT
age: 400840
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7876, version 1.0\012- data
Size:   7876
Md5:    1a2bdc86702f56a4e416c28f82a7e711
Sha1:   d016a1922e74431bfb8ae6e5c59a6688f9b829e0
Sha256: 529003f887faa01f4eb94921bae9abdbcea2849becd0f42600726f17b9fb6f4a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 11:55:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-9703.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:03 GMT
etag: "1908c-5ee3fde516988"
accept-ranges: bytes
content-length: 102540
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 500x500, components 3\012- data
Size:   102540
Md5:    470b027153d472cf5be8b3135e584167
Sha1:   9f9821f2e1cfb2081627fbb1117fb342ab9478ea
Sha256: d8583a5e071f5a3fa93e14a9ed58b1169833d42c412ccf31166a465188f32f9d
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/5-8950.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:08 GMT
etag: "1e3f8-5ee6023ccc230"
accept-ranges: bytes
content-length: 123896
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 500x500, components 3\012- data
Size:   123896
Md5:    c3d59bfcc6dfaa2f425633904c379762
Sha1:   883d1716f7f31b29e454342b3597708e50fcd2d3
Sha256: 26d8461cd399fc75d4e291a3f928d3fc125cbda68ed5d0a3c80fb2b762c85580
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-3598.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:09 GMT
etag: "1b624-5ee6023dad7a8"
accept-ranges: bytes
content-length: 112164
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 500x500, components 3\012- data
Size:   112164
Md5:    e9a7a7845a1be52558f671e668e7cef1
Sha1:   44ba32c43474fbf0e005b96299d768ca3e75a63d
Sha256: 556d2edfb3193496b254ebf459ef6138ad170116f241bae72b7659383c4afafc
                                        
                                            GET /98jh6d5/89hg56fd.exe HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

search
                                         112.213.86.143
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Sun, 27 Nov 2022 11:56:10 GMT
server: Apache/2
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
set-cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=604800, private, proxy-revalidate
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-9989.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=604800, private, proxy-revalidate
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/800x0-9276.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 09:15:46 GMT
etag: "16ed3-5ee7033317788"
accept-ranges: bytes
content-length: 93907
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/13616f5-3453.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 02:55:18 GMT
etag: "26192-5ee56c4bd3e40"
accept-ranges: bytes
content-length: 156050
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/hc82304118b52423499-1343.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 02:55:38 GMT
etag: "198e7-5ee56c5ebc778"
accept-ranges: bytes
content-length: 104679
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/12224442-2762.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:44 GMT
etag: "216ed-5ee3fdd2b2198"
accept-ranges: bytes
content-length: 136941
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/4-2737.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 09:15:38 GMT
etag: "190d9-5ee7032c367c0"
accept-ranges: bytes
content-length: 102617
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/1-5243.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:05 GMT
etag: "1ebed-5ee6023a16888"
accept-ranges: bytes
content-length: 125933
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/img64412-6151.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 09:15:40 GMT
etag: "1bdb0-5ee7032e032d8"
accept-ranges: bytes
content-length: 114096
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/2-8245.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:10 GMT
etag: "1cacd-5ee6023e9c3f8"
accept-ranges: bytes
content-length: 117453
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/2-165.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 08:21:13 GMT
etag: "146fd-5ee5b524ddb30"
accept-ranges: bytes
content-length: 83709
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/4-1837.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:03 GMT
etag: "2bc83-5ee6023835d20"
accept-ranges: bytes
content-length: 179331
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/2-80.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 07:28:02 GMT
etag: "d624-5ee5a9414b670"
accept-ranges: bytes
content-length: 54820
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/380x380x1/upload/baiviet/untitleddesign145690-9293.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:01 GMT
etag: "1e9b0-5ee6023661120"
accept-ranges: bytes
content-length: 125360
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnewyorkrings-760.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:40 GMT
etag: "24d12-5ee3fdceb3650"
accept-ranges: bytes
content-length: 150802
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/trnmitrangscminphvnchuyn-1256.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 13:35:16 GMT
etag: "236b4-5ee4b97933c40"
accept-ranges: bytes
content-length: 145076
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-8577.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:20:59 GMT
etag: "1b327-5ee557369c640"
accept-ranges: bytes
content-length: 111399
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-6452.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:11 GMT
etag: "17e8e-5ee6023f8df28"
accept-ranges: bytes
content-length: 97934
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/1-3880.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:06 GMT
etag: "1d1d1-5ee6023b083b8"
accept-ranges: bytes
content-length: 119249
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-8207.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:07 GMT
etag: "1c799-5ee6023bf21e8"
accept-ranges: bytes
content-length: 116633
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/380x380x1/upload/baiviet/ge180979web4189-7969.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:18:07 GMT
etag: "c270-5ee556922a008"
accept-ranges: bytes
content-length: 49776
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-7333.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 13:35:06 GMT
etag: "20378-5ee4b96feb8b8"
accept-ranges: bytes
content-length: 131960
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/v135159008-1094.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:00 GMT
etag: "17305-5ee3fde26c778"
accept-ranges: bytes
content-length: 94981
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondnewyorkrin-8890.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:47 GMT
etag: "1d07e-5ee3fdd53a898"
accept-ranges: bytes
content-length: 118910
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/4xn-7432.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:36 GMT
etag: "21ce5-5ee60f14ac6d0"
accept-ranges: bytes
content-length: 138469
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/1-3520.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 10:46:46 GMT
etag: "2ada3-5ee7178a969c8"
accept-ranges: bytes
content-length: 175523
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/90314b-5913.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:14 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:25 GMT
etag: "2e23d-5ee60f0ac38f8"
accept-ranges: bytes
content-length: 188989
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:14 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/a6e6fbb70cafb34760e78d66de0d30daefc230576b344ec29307334407aaabf2800x-7145.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:05 GMT
etag: "2c4a5-5ee3fde6abde8"
accept-ranges: bytes
content-length: 181413
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/94xn-6107.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:46 GMT
etag: "1e80d-5ee3fe0de4270"
accept-ranges: bytes
content-length: 124941
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/5-1122.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 07:26:10 GMT
etag: "28969-5ee466f96bb40"
accept-ranges: bytes
content-length: 166249
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/20190501121457768x852-5960.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:49 GMT
etag: "328a1-5ee3fe1088e90"
accept-ranges: bytes
content-length: 207009
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/htb1immhmw-4048.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:19 GMT
etag: "1ae0b-5ee60f04d01f8"
accept-ranges: bytes
content-length: 110091
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/14248master-1630.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:34:54 GMT
etag: "1cfba-5ee55a53689d8"
accept-ranges: bytes
content-length: 118714
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnewyorkrings14-9506.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:24 GMT
etag: "22ca5-5ee3fdbff20d0"
accept-ranges: bytes
content-length: 142501
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/r136667sa3-4735.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 08:21:12 GMT
etag: "12ba6-5ee5b523f73b0"
accept-ranges: bytes
content-length: 76710
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/380x380x1/upload/baiviet/pexelssaystraight27359818464-3365.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:34:41 GMT
etag: "16643-5ee55a4647498"
accept-ranges: bytes
content-length: 91715
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/platinumanddiamondcocktailring1309110871-7532.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:21 GMT
etag: "27ab6-5ee3fdbd14e58"
accept-ranges: bytes
content-length: 162486
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/5-1285.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:14 GMT
etag: "20350-5ee60effd5388"
accept-ranges: bytes
content-length: 131920
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-933.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:35:08 GMT
etag: "2469c-5ee55a608b2a0"
accept-ranges: bytes
content-length: 149148
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/3-4392.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:04 GMT
etag: "2e11c-5ee602392e5b0"
accept-ranges: bytes
content-length: 188700
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/600x600x1/upload/baiviet/phacthaotrangsuchelios-7900.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:16 GMT
etag: "22891-5ee3fdb830f18"
accept-ranges: bytes
content-length: 141457
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/h9148e763e3264ed2b8fef6ea4458de8cl-1892.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 02:55:52 GMT
etag: "251e4-5ee56c6c2b6e8"
accept-ranges: bytes
content-length: 152036
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondnewyorkrings-4410.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:34:50 GMT
etag: "203a7-5ee55a4f89678"
accept-ranges: bytes
content-length: 132007
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/limitedtimesale110caratpeachpinkmorganiteprincesscutmorganiteanddiamondengagementringin10krosegold-4124.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:34 GMT
etag: "2e957-5ee3fdc8d85f0"
accept-ranges: bytes
content-length: 190807
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/3-407.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 11:21:43 GMT
etag: "2059b-5ee49b9f58178"
accept-ranges: bytes
content-length: 132507
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondnewyorkrings-2939.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:38 GMT
etag: "25706-5ee3fe0636168"
accept-ranges: bytes
content-length: 153350
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/60029804-2942.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 13:35:14 GMT
etag: "2a0e8-5ee4b976e04e8"
accept-ranges: bytes
content-length: 172264
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/4xn-9990.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:18 GMT
etag: "1d1d8-5ee60246d20e0"
accept-ranges: bytes
content-length: 119256
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/v3753597000800-8108.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:23 GMT
etag: "1b77c-5ee3fdf79f398"
accept-ranges: bytes
content-length: 112508
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-2029.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:35:03 GMT
etag: "1ce93-5ee55a5b5e368"
accept-ranges: bytes
content-length: 118419
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/600x600x1/upload/baiviet/saptrangsuchelios-4816.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 10:06:19 GMT
etag: "2e6db-5ee48ac5394c0"
accept-ranges: bytes
content-length: 190171
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/794xn-800.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:21 GMT
etag: "32d4f-5ee6024989db0"
accept-ranges: bytes
content-length: 208207
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/3st002192a670x670-8882.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:35:27 GMT
etag: "17f95-5ee55a71f7200"
accept-ranges: bytes
content-length: 98197
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/h4b77a9004d8d4438-6470.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:00 GMT
etag: "20401-5ee3fde1a09c0"
accept-ranges: bytes
content-length: 132097
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/n-2381.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:36 GMT
etag: "1e370-5ee60f1577100"
accept-ranges: bytes
content-length: 123760
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-7965.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:15 GMT
etag: "29263-5ee60243451e8"
accept-ranges: bytes
content-length: 168547
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/794xn-561.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:17 GMT
etag: "2e62a-5ee6024531cb8"
accept-ranges: bytes
content-length: 189994
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-2688.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:51 GMT
etag: "116a4-5ee3fdd924fa8"
accept-ranges: bytes
content-length: 71332
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/r136837sa3-8625.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 02:55:30 GMT
etag: "151c0-5ee56c56c4ea8"
accept-ranges: bytes
content-length: 86464
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/picgarwr-8868.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 02:55:46 GMT
etag: "2c8c8-5ee56c65cb1b8"
accept-ranges: bytes
content-length: 182472
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-7555.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:39 GMT
etag: "261e8-5ee3fe06fd100"
accept-ranges: bytes
content-length: 156136
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/v135389803-7295.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:13 GMT
etag: "18e4a-5ee3fdee30ac8"
accept-ranges: bytes
content-length: 101962
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnewyork-4022.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:30 GMT
etag: "1f183-5ee3fdc596e00"
accept-ranges: bytes
content-length: 127363
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/8133014w-7663.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:26 GMT
etag: "193dc-5ee3fdc17cd38"
accept-ranges: bytes
content-length: 103388
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/be1d043svsl8x6ov3white-8402.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:17 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:43 GMT
etag: "1916b-5ee60f1bf3f38"
accept-ranges: bytes
content-length: 102763
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:17 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/artemerartemeraquamarineringwithdiamondfrill-489.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 10:46:45 GMT
etag: "19919-5ee717896c840"
accept-ranges: bytes
content-length: 104729
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-866.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:13 GMT
etag: "13c0d-5ee602416c768"
accept-ranges: bytes
content-length: 80909
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnewyor-4459.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:14 GMT
etag: "223ce-5ee3fdeef8de8"
accept-ranges: bytes
content-length: 140238
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnewyorkrings2-3431.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:15 GMT
etag: "1d430-5ee3fdf091ce0"
accept-ranges: bytes
content-length: 119856
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/4-7654.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 07:27:57 GMT
etag: "10775-5ee5a93c634c8"
accept-ranges: bytes
content-length: 67445
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/600x600x1/upload/baiviet/sanphamhoanthanhhelios-4488.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:12 GMT
etag: "2e46c-5ee6024087370"
accept-ranges: bytes
content-length: 189548
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/794xn-6752.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 20:02:35 GMT
etag: "1fd88-5ee5100becfe0"
accept-ranges: bytes
content-length: 130440
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-6316.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:19 GMT
etag: "1c1af-5ee60247b8090"
accept-ranges: bytes
content-length: 115119
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/fb-copy-7483.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 11:21:42 GMT
etag: "cb0a-5ee49b9e37848"
accept-ranges: bytes
content-length: 51978
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css2?family=Mulish:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 11:55:13 GMT
date: Sun, 27 Nov 2022 11:55:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnew-6623.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:27 GMT
etag: "1b564-5ee60f0c70070"
accept-ranges: bytes
content-length: 111972
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/blackdiamondsnewyorkrings2-1337.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:33 GMT
etag: "1f5f1-5ee3fe0179710"
accept-ranges: bytes
content-length: 128497
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-1669.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:20 GMT
etag: "1e347-5ee60248a3630"
accept-ranges: bytes
content-length: 123719
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/1-1609.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 09:15:39 GMT
etag: "19d13-5ee7032d286d8"
accept-ranges: bytes
content-length: 105747
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/be1d80f3stmt6-1435.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:13 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:35 GMT
etag: "15fe5-5ee60f13d5180"
accept-ranges: bytes
content-length: 90085
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:13 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/aquamarinebluezirconhaloringwithdiamonds1600x600-70.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:34:59 GMT
etag: "2571d-5ee55a574cb58"
accept-ranges: bytes
content-length: 153373
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/5-9354.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:14 GMT
etag: "1dcfb-5ee6024257538"
accept-ranges: bytes
content-length: 122107
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/19196b-5216.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:13 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:30 GMT
etag: "291af-5ee60f0fb33b8"
accept-ranges: bytes
content-length: 168367
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:13 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/fb-copy-6-1617.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 10:46:44 GMT
etag: "1bd14-5ee717885ebd8"
accept-ranges: bytes
content-length: 113940
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/75706c9108867c37277ab1a9ba781f181024x10242x19e257ad8f4b42a189967bf93a92b251-2282.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sun, 27 Nov 2022 10:46:49 GMT
etag: "26a82-5ee7178d37b50"
accept-ranges: bytes
content-length: 158338
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/cammilliringgan2075wview5-1132.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:11 GMT
etag: "22cbc-5ee3fdecaf6b8"
accept-ranges: bytes
content-length: 142524
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/5-8104.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:35:50 GMT
etag: "213dd-5ee3fdd8639e8"
accept-ranges: bytes
content-length: 136157
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/0409482goldenberylring1-3852.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:27 GMT
etag: "186e7-5ee3fdfba11a8"
accept-ranges: bytes
content-length: 100071
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/2-1275.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 08:21:11 GMT
etag: "2468e-5ee5b522f23e8"
accept-ranges: bytes
content-length: 149134
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/600x600x1/upload/baiviet/datdagiaconghelios-9527.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Fri, 25 Nov 2022 07:25:45 GMT
etag: "3d249-5ee466e13bcf0"
accept-ranges: bytes
content-length: 250441
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/r124977sa3-9006.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:18:44 GMT
etag: "13de0-5ee556b6446f0"
accept-ranges: bytes
content-length: 81376
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/2-2833.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:02 GMT
etag: "1e89d-5ee6023753038"
accept-ranges: bytes
content-length: 125085
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/794xn4092-508.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:16 GMT
etag: "1b102-5ee6024444008"
accept-ranges: bytes
content-length: 110850
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/img0018428-7619.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:29 GMT
etag: "1ef39-5ee60f0ee52d8"
accept-ranges: bytes
content-length: 126777
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/er155s4720xfc7534e650db492f859d723fa23d52ac-1133.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Thu, 24 Nov 2022 23:36:43 GMT
etag: "22e82-5ee3fe0aaab68"
accept-ranges: bytes
content-length: 142978
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/16260-9123.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 15:03:33 GMT
etag: "2da05-5ee60f1227a68"
accept-ranges: bytes
content-length: 186885
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/gs111greentourmalineringtv-7502.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 01:34:46 GMT
etag: "1c2b8-5ee55a4b138f0"
accept-ranges: bytes
content-length: 115384
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /thumbs/500x500x1/upload/baiviet/il794xn-9712.jpg HTTP/1.1 
Host: helios.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://helios.vn/98jh6d5/89hg56fd.exe
Cookie: PHPSESSID=94pk6r4t1ubr52jn824p8l1c71
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.213.86.143
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 27 Nov 2022 11:56:12 GMT
server: Apache/2
last-modified: Sat, 26 Nov 2022 14:06:22 GMT
etag: "153b7-5ee6024a6ce80"
accept-ranges: bytes
content-length: 86967
cache-control: max-age=604800, public
expires: Mon, 27 Nov 2023 11:56:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---