firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 02:13:01 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -FOaTZhvj6r6V8XsahSMQv2CJBoALgt0YO9XcTW0MND3c7h0wfXVjg==
Age: 339
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6952
Expires: Tue, 20 Sep 2022 04:14:32 GMT
Date: Tue, 20 Sep 2022 02:18:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: c7k9jdJohcBfLJM1turDT9imafbBFnNaB6iV2fZm32sUsuI5DnU_HQ==
age: 78207
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 02:18:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 02:03:22 GMT
Expires: Tue, 20 Sep 2022 02:50:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: juouTnPDTSjnUNdSbQNheZloE-fULZHZzDg55Dkt0EFlspigLURY4Q==
Age: 919
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:41 GMT
Last-Modified: Tue, 20 Sep 2022 00:48:24 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
fago.vn/
123.31.24.142200 OK 54 kB IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1871), with CRLF, LF line terminators
Hash e17155274262147185e772699ef5b245
bef7b0b19ae2d51bdbe0ca7864cc0009aa7539a7
1e0c2656fdd38eb47ac7e511e0b45d34b58dd88223401df38e842731c21fb926
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.19
Link: <http://fago.vn/wp-json/>; rel="https://api.w.org/", <http://fago.vn/>; rel=shortlink
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9W4391m0C0VfKftMmNa7Fw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4J7ICDsv6DlvI2bLgsRh9HgxnE4=
fago.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.2.3
123.31.24.142200 OK 29 kB URL HTTP/1.1 fago.vn/wp-includes/css/dist/block-library/style.min.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (29295), with no line terminators
Hash 375bd65d60ff3c8723fccc343afb1b9b
b06ba18a307bdf4821dded9ebffd2489f7b01d6a
4b8fe5c3d0e5ef7a6582185cbf5c535b5d369c8df1da98c03ed69833e55f474d
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:41 GMT
Content-Type: text/css
Content-Length: 29295
Last-Modified: Thu, 18 Mar 2021 13:23:39 GMT
Connection: keep-alive
ETag: "6053545b-726f"
Accept-Ranges: bytes
fago.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.9.2
123.31.24.142200 OK 1.7 kB URL HTTP/1.1 fago.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.9.2
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash c59549274016652fafb31fac733805b0
c48c3896d125b8dcdf910468d1bd37a041e84a56
8ac11aaa3c0e4e78a3f08697d4bf12f8d38015f24e9d12efadcc9722b48b2023
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.9.2 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:41 GMT
Content-Type: text/css
Content-Length: 1713
Last-Modified: Thu, 18 Mar 2021 14:31:18 GMT
Connection: keep-alive
ETag: "60536436-6b1"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/nivo-slider.css?ver=5.2.3
123.31.24.142200 OK 1.2 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/nivo-slider.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (1186), with no line terminators
Hash 0224a6fd4437dde02d44d880aad6ef7a
89101ea97472d9c44401e66adfa34295ec2fa649
b9286329053b3db5211ad0c3ceb3e4b259b5de3a3046b875078bd8ed8e81c9aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/css/nivo-slider.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:41 GMT
Content-Type: text/css
Content-Length: 1186
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-4a2"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/venobox/venobox.css?ver=5.2.3
123.31.24.142200 OK 7.9 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/venobox/venobox.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash cc0f894b1fc7f1eed389c21b142717d5
a43af675a2eda9b2e25f75eb6ae81b384c598fef
7b1a902519b25105e78d8398f957f7bed588ef04b26cb0b965ba74d6f0575f9a
GET /wp-content/themes/bravery/venobox/venobox.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:41 GMT
Content-Type: text/css
Content-Length: 7930
Last-Modified: Thu, 18 Mar 2021 13:23:16 GMT
Connection: keep-alive
ETag: "60535444-1efa"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/owl.carousel.css?ver=5.2.3
123.31.24.142200 OK 2.9 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/owl.carousel.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (2836), with CRLF line terminators
Hash 5eb873e1708018a5dc0701d982480a5b
0e0a7f31fb877800a2f7c827a176f48e8aa25e61
89eb1eb0b4d48331d3710b7a9eebe3d526b53e118e27c9916107067127dc65ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/css/owl.carousel.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 2931
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-b73"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/owl.transitions.css?ver=5.2.3
123.31.24.142200 OK 4.6 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/owl.transitions.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash c2d6c2845cb1147fd99ffa05682cb4b8
148ce9531a8db901c7552565e3f91228d5c89f4a
46c63e19392696c9ccbce249541b5b7edeb46ca35679a5f91ed4f6779c0dfdbc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/css/owl.transitions.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 4638
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-121e"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/meanmenu.min.css?ver=5.2.3
123.31.24.142200 OK 4.0 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/meanmenu.min.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash ab4b9555bd341dd88ec12e066a285bee
72582577ba3ae7065b6c2137845cf8e4c4277d12
ac98f59e27bf1a1b31412c8df04bddc52109e3affbcbdcf1e5289d4c9587ee69
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/css/meanmenu.min.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 4000
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-fa0"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/theme-default.css?ver=5.2.3
123.31.24.142200 OK 2.7 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/theme-default.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash 780951b17fd9da4aeb1901d820092301
ed4d1f18f4b0bb4bd94448628d28b4b638c134b5
afed4a309bb79410013e9c03cfb8471d7f29a8e821b5d09a01229855d4bf6029
GET /wp-content/themes/bravery/assets/css/theme-default.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 2693
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-a85"
Accept-Ranges: bytes
fago.vn/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.6.17
123.31.24.142200 OK 18 kB URL HTTP/1.1 fago.vn/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.6.17
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (17655), with CRLF line terminators
Hash 0b0ef47ca691caa6f9275ccf12f3b5f7
995448078e804ef8d58ea93498b076620d3562ea
13aa5bd38f6d08481aa948cfebf35a2ee93731afe46bb9352ef8f430c9067726
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.6.17 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: application/javascript
Content-Length: 17657
Last-Modified: Thu, 18 Mar 2021 15:08:59 GMT
Connection: keep-alive
ETag: "60536d0b-44f9"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/widget.css?ver=5.2.3
123.31.24.142200 OK 4.5 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/widget.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash 32a70466b4d847ab7a175f33609e2aed
33b8c99cf6c0e61394227dea8ac52ef2d4854a58
6bdcfdfb4836555f1dbe093b725266d20835c6bb00fe60a71ca3a5f2b75e614c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/css/widget.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 4469
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-1175"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/font-awesome.min.css?ver=5.2.3
123.31.24.142200 OK 28 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/font-awesome.min.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (27330), with CRLF line terminators
Hash d319b5b519bef003875397db9eb98d68
b70f2301028bfceb4ebd769aa9907378f1f5fe2f
88bad54b86ac0bbc27b5b48ecf8677833e1590b0eee2b8317f9ae97633f28a1f
GET /wp-content/themes/bravery/assets/css/font-awesome.min.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 27497
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-6b69"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/unittest.css?ver=5.2.3
123.31.24.142200 OK 4.8 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/unittest.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash c947afd0be9ddb6d8710a750fef660c5
eebbab5f67741a9ac47bd905055a3838cd52e7cd
b4bb237353a75f4948cb115a1b56f985a017c5daa108c4ee5fc5b37e8df1c49d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/css/unittest.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 4812
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-12cc"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/responsive.css?ver=5.2.3
123.31.24.142200 OK 3.5 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/responsive.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash e8e309ca821a0ac42737351aa1c3d5cf
e431c6db8e4ac7a28df3187ed823ed436641febf
7f36b69c719b76f70d86c98188b95f8fa39b186e77909b9d2667592a3efa386b
GET /wp-content/themes/bravery/assets/css/responsive.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 3461
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-d85"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/em-breadcrumb.css?ver=5.2.3
123.31.24.142200 OK 0 B URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/em-breadcrumb.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/bravery/assets/css/em-breadcrumb.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 0
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-0"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/css/bootstrap.min.css?ver=5.2.3
123.31.24.142200 OK 121 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/css/bootstrap.min.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (65367), with CRLF line terminators
Size 121 kB (121220 bytes)
Hash 64acbcefa5f448b32bb525fbea0c0d3b
7634df5994454c16a4db68f5f28d9e4e670959cb
9587908487415d258d9ceb26f30854e9edf08f6c249f55a374e4a6c39424ac36
GET /wp-content/themes/bravery/assets/css/bootstrap.min.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:41 GMT
Content-Type: text/css
Content-Length: 121220
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-1d984"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 02:18:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 02:18:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 02:18:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 02:18:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f816c646aefe417c3b980f432b98b41f
39c46ac3c49f0e2067aa6937a95839845b372dea
b9d8cb82c21257f9d5b5d82cf12bbf8aff690321f39c26e4a89f8a4d89fb00a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8746
x-amzn-requestid: 23ee3cce-0abd-436a-b4d8-a2ad451cbeaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7zElLoAMF0cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-1e03d3ee7a0033dd78620f20;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ChuMpL0m_XtTffIvROFslpQUwz13cx8rKF8UfD3LTfMtHvKKm5VNAQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:08:46 GMT
age: 14997
etag: "39c46ac3c49f0e2067aa6937a95839845b372dea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 14658
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3463c46d2b7a87a91ff1a701a438d80e
92c78b27f4e31609c1b78670b26e68b4f991a8ed
b95b290832f12f97c7da51382fe92feba2fa93a5ec0470d48a533a58a13dc474
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5985
x-amzn-requestid: 6797727b-78c7-470f-bee8-7b55e64d36ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugzxH6qoAMF67w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e1b1-0d574a815d19636b21376c91;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIRyR6BXSZrTZq2joFYjssEpZAqxuWYgdoU5um35md0Yt_m0UzZpiw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:51:37 GMT
age: 16026
etag: "92c78b27f4e31609c1b78670b26e68b4f991a8ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01e64380-4337-479f-95be-13bf7c9e4ba1.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01e64380-4337-479f-95be-13bf7c9e4ba1.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1bda5f699b90aa7303c8804027fd7ebf
5df2a7908f1892a49da9b4c3b866826f2dc19196
8fb596a87289aa77344bed71691f6de0ecbaece8868634593c15c27ccef85013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01e64380-4337-479f-95be-13bf7c9e4ba1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10982
x-amzn-requestid: bf24c1e2-2a07-4dd6-b842-9d44b87c9fb7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yug2JGyeoAMFqBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e1c0-4fc8fdf2243829fa034478dc;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:40:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0PhtlkDftlGaCHWn03vWvOBAoIuzvpOzMI8j-AtOWozauUl8pkN0Uw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:08:19 GMT
age: 15024
etag: "5df2a7908f1892a49da9b4c3b866826f2dc19196"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87d4d388-444f-41e8-a237-12a4557dec2d.webp
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87d4d388-444f-41e8-a237-12a4557dec2d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0af641b07f0f07dcc59bd86a318b581c
02f67cf9f3465a09af8ee2501199976cfad69b64
0187ad25bfa48228ece4686f4fa2e9c65095806fa5a6358b0e16c85907eb287f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87d4d388-444f-41e8-a237-12a4557dec2d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8318
x-amzn-requestid: ed1e73fe-eb19-452a-9f8b-e1bf5eb5fa72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugHuEzeIAMFz6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e097-529db9d95a91ad965445caf2;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yQ_DyFTMD1g9ORVMBH4yg9AeulqOUm5KHLFQ5Y8m9HS9NwW73acEkw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:48:55 GMT
age: 16188
etag: "02f67cf9f3465a09af8ee2501199976cfad69b64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4438521bfdc6871ae384abcb7da547
a17fc7a7c30999b8789011c2064f5a8704b00eee
2e40ac154724af625c4858b09b90fa3f6a600b70c9e5e959598f0cdb05a78847
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5402
x-amzn-requestid: 0442580c-9024-46b1-8ad5-5c7e8d35371d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfMALHT2oAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322c067-254ecd9003455f090f7d5ef9;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:04:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y4IeHZWMs_JdT2dG8d3BNqpxvU3lcYDsXub1CuCoVBxzTPsjuU_5Ww==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 18:11:38 GMT
age: 29225
etag: "a17fc7a7c30999b8789011c2064f5a8704b00eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fago.vn/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.6.17
123.31.24.142200 OK 69 kB URL HTTP/1.1 fago.vn/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.6.17
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (65408), with CRLF line terminators
Hash 630bdd7c6766ed656b784e2bb7d47f82
4deaaa0c8d42b8fc75a7c781471f8bcdbc468452
c0046b04745954c6452c2ada082d8fbb9caa892b0206c75310f2943b9479954d
GET /wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.6.17 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 68962
Last-Modified: Thu, 18 Mar 2021 15:08:59 GMT
Connection: keep-alive
ETag: "60536d0b-10d62"
Accept-Ranges: bytes
fago.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
123.31.24.142200 OK 10 kB URL HTTP/1.1 fago.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (9959), with CRLF line terminators
Hash b644343c88a30cb4b610a852b78c4ae1
77e3e9916241582b6ca0b73128daee0aec4d006c
ef0968035e387c8b468f4a943a9b5998d159c9e2f1a4994c70aa86bf53a9316d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 10057
Last-Modified: Thu, 18 Mar 2021 12:53:52 GMT
Connection: keep-alive
ETag: "60534d60-2749"
Accept-Ranges: bytes
fago.vn/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.6.17
123.31.24.142200 OK 37 kB URL HTTP/1.1 fago.vn/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.6.17
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (36512), with CRLF line terminators
Hash b4df19de80d43be4e2d47118e3f3a829
34f767d7602afb3c6485a64c1f1b694e696d673b
909f7d7c1b97b956971de65ee4f7f7c5298cf5cfb679042a87ea26160a0a6033
GET /wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.6.17 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 36753
Last-Modified: Thu, 18 Mar 2021 14:31:19 GMT
Connection: keep-alive
ETag: "60536437-8f91"
Accept-Ranges: bytes
fago.vn/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.6.17
123.31.24.142200 OK 41 kB URL HTTP/1.1 fago.vn/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.6.17
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (27986), with CRLF line terminators
Hash cf8eaffdd7852962a6b3e2ad4cf933fa
cc8eafb051d7ebd715eaa555bd3e18752d73eb7b
234fef858591dcc69d33ae55f57f2aed14b4efd32c2f92ad9d218b8d5b3d6230
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.6.17 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: text/css
Content-Length: 41382
Last-Modified: Thu, 18 Mar 2021 14:31:19 GMT
Connection: keep-alive
ETag: "60536437-a1a6"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/style.css?ver=5.2.3
123.31.24.142200 OK 58 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/style.css?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type assembler source, ASCII text, with CRLF line terminators
Hash 58936b3c333e9985fbd1bc45f09e5752
10d8ec5f493716fb234744846f196eef7dee6b59
2a9294b3190df91cc8333ec36071afdcd0c8cd906e8699e2e1d8c0689f5a2c25
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/style.css?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:42 GMT
Content-Type: text/css
Content-Length: 57783
Last-Modified: Thu, 18 Mar 2021 12:53:44 GMT
Connection: keep-alive
ETag: "60534d58-e1b7"
Accept-Ranges: bytes
fago.vn/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
123.31.24.142200 OK 97 kB URL HTTP/1.1 fago.vn/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (31997), with CRLF line terminators
Hash 011b8fb527ebbcb31fa867bda9c09128
93c0bc7faa18b6758960feea9c360da6b4d41eb6
b89a069631069459456740ac971a9af2cd3fd3b15a1294243b3a28b67dcaf4b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 96878
Last-Modified: Thu, 18 Mar 2021 12:53:52 GMT
Connection: keep-alive
ETag: "60534d60-17a6e"
Accept-Ranges: bytes
fago.vn/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.9.2
123.31.24.142200 OK 15 kB URL HTTP/1.1 fago.vn/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.9.2
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash c770bb262a4e0e9e82f2ad604786e53b
d3c3764b7e9f0636ee30c28dab014fe580b85076
062f91a2a874c24a4ea2e2c0a0ed80185e8bc55d16a58043c547054553cfc845
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.9.2 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 14609
Last-Modified: Thu, 18 Mar 2021 14:31:18 GMT
Connection: keep-alive
ETag: "60536436-3911"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/bootstrap.min.js?ver=3.3.5
123.31.24.142200 OK 37 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/bootstrap.min.js?ver=3.3.5
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (32033), with CRLF line terminators
Hash 04c84852e9937b142ac73c285b895b85
8fb8a9319055253d085edfc3bb72d20f614ec709
36460e494e4c628443afded40b2743b5ede9a4a76fb4f7b9ef2345cc7e59fd64
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/bootstrap.min.js?ver=3.3.5 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 37051
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-90bb"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/vendor/modernizr-2.8.3.min.js?ver=2.8.3
123.31.24.142200 OK 16 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/vendor/modernizr-2.8.3.min.js?ver=2.8.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type HTML document, ASCII text, with very long lines (14856), with CRLF line terminators
Hash edc6fe2e73a88de4444bb6d3c16998d5
f4d0e123bd8607058f7e744c80fc728f0f7dd1fc
6a40e518311b650b771be1d6fdd1aeceee2b92e1fc40d70913bedf30c65b87b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/vendor/modernizr-2.8.3.min.js?ver=2.8.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 15518
Last-Modified: Thu, 18 Mar 2021 15:09:04 GMT
Connection: keep-alive
ETag: "60536d10-3c9e"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 456275
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:35:48 GMT
expires: Thu, 14 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 456175
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 456275
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 02:02:22 GMT
expires: Sun, 17 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 260181
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:35:48 GMT
expires: Thu, 14 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 456175
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
142.250.74.163200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Hash ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:36:26 GMT
expires: Thu, 14 Sep 2023 19:36:26 GMT
cache-control: public, max-age=31536000
age: 456137
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
142.250.74.163200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5604, version 1.0\012- data
Hash 7cda2cfee99d697daf8c14819d9004eb
76f4002863493c93454a9f17424942f321287cba
0948409a22b5979aa7e1ec20da9e61f12e7d403800b541ece053881bd2542b70
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 20:01:06 GMT
expires: Thu, 14 Sep 2023 20:01:06 GMT
cache-control: public, max-age=31536000
age: 454657
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
142.250.74.163200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://fago.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 06:19:49 GMT
expires: Fri, 15 Sep 2023 06:19:49 GMT
cache-control: public, max-age=31536000
age: 417534
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fago.vn/wp-includes/js/imagesloaded.min.js?ver=3.2.0
123.31.24.142200 OK 8.1 kB URL HTTP/1.1 fago.vn/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (7996), with CRLF line terminators
Hash f8d2169dcdbf5819788f88f82f0dcde9
b37de5a5ebf5debb1dd72a5750c486113f14dc5a
298e42539d34a9114f8496636f1a1128e7b51462cee3c51b1355069d658cead2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 8119
Last-Modified: Thu, 18 Mar 2021 11:15:47 GMT
Connection: keep-alive
ETag: "60533663-1fb7"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/jquery.meanmenu.js?ver=1.0.0
123.31.24.142200 OK 12 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/jquery.meanmenu.js?ver=1.0.0
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash 4bc786ced4e1d6b4051a8576d1dd4c40
7e4637d5a3d079c0a09aa29b5829b1d3b1f74edf
8a6d3aada372b35be4d4c603c33495bfc86ee674fcf83fbeb9f4c5a51c1345f2
GET /wp-content/themes/bravery/assets/js/jquery.meanmenu.js?ver=1.0.0 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 11752
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-2de8"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/isotope.pkgd.min.js?ver=1.0.0
123.31.24.142200 OK 34 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/isotope.pkgd.min.js?ver=1.0.0
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (32015), with CRLF line terminators
Hash 0bdedb09dd44e92738bc02ffabdd496b
3685a06c04f90825fbe2b434691488a79175c14c
863f343593f092ff4fad6e88b70901ba21dff9ad3f43b85778c57a8ec2cfd06b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/isotope.pkgd.min.js?ver=1.0.0 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 34541
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-86ed"
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Roboto%3A100%2C300%2C400%2C500%2C700%2C900%7CPoppins%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext&ver=5.2.3
216.58.211.10200 OK 44 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C300%2C400%2C500%2C700%2C900%7CPoppins%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext&ver=5.2.3
IP 216.58.211.10:0
Hash c588c7ff1d31da41f34752a498b47e41
be1a46a7d35ac2d724f52e9b94c3a0565e428e5a
14919c2cc65245d4c3658ef89a5b9da941e20fe7d3882a6794c0c37ea0da60fb
GET /css?family=Roboto%3A100%2C300%2C400%2C500%2C700%2C900%7CPoppins%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext&ver=5.2.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fago.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 02:18:41 GMT
date: Tue, 20 Sep 2022 02:18:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fago.vn/wp-content/themes/bravery/assets/js/jquery.scrollUp.js?ver=3.2.4
123.31.24.142200 OK 5.5 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/jquery.scrollUp.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash 689f6b3fbedb8b327dd76c37b9459030
8332c265412f561322ae52a9cdfebdb6599f36d0
cdab9dd76a98d45405dcf304bb2e886153db58ed58abb0f819473eafe23ee27a
GET /wp-content/themes/bravery/assets/js/jquery.scrollUp.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 5500
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-157c"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/jquery.nivo.slider.pack.js?ver=3.2.4
123.31.24.142200 OK 12 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/jquery.nivo.slider.pack.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (11999), with CRLF line terminators
Hash ad9ddb62f81d8308fcd7b1d51817150d
e8155130df24814c5d6d1754b32722769d71cffb
e1684fc4ce4e99adbe5d9f0a4eb19ce2c54116da8b0f9224cdc94d33988aa387
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/jquery.nivo.slider.pack.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: application/javascript
Content-Length: 12210
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-2fb2"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/jquery.nav.js?ver=3.2.4
123.31.24.142200 OK 2.9 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/jquery.nav.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (2496), with CRLF line terminators
Hash 6a3ca7653227cfb9c482d53fb6990737
5528b8bff74f4be6cb0d04303896f2990d32115c
e25e6a3106c9b7db711373e31967830e6381f05db21b96f359edb5584f0fd375
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/jquery.nav.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 2934
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-b76"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/wow.js?ver=3.2.4
123.31.24.142200 OK 7.1 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/wow.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (7052), with CRLF line terminators
Hash b97943d1aa290cf30b0a46f5d450f640
6e686e8163cbffe4b3db652a9075c1b3da51f56e
e32f86f81b06f177e78439f588a7a57382819e6ef19d6b2235748a6b4e98f218
GET /wp-content/themes/bravery/assets/js/wow.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 7083
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-1bab"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/jquery-scrolltofixed-min.js?ver=3.2.4
123.31.24.142200 OK 5.9 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/jquery-scrolltofixed-min.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (5853), with no line terminators
Hash 763d75fe2b48278dc0933fa1449e00a9
16189fe28176c586a3836e4986af61538b034e90
2a5d6f434ca2a1ee89ea27668f9e6a18d8283ab28e4c987859815d9a2567bd9c
GET /wp-content/themes/bravery/assets/js/jquery-scrolltofixed-min.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 5853
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-16dd"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/venobox/venobox.min.js?ver=3.2.4
123.31.24.142200 OK 9.8 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/venobox/venobox.min.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (9498), with CRLF line terminators
Hash cda9e1bad0d952d4f733e588f7fdbdd7
09d363743a4c1a4efb6c273ad12327dd54602eaf
cc8d589a4b398d06fab6f288ab845789d1bbf2c24101e7c45b75e71ea3352c55
GET /wp-content/themes/bravery/venobox/venobox.min.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 9797
Last-Modified: Thu, 18 Mar 2021 13:23:16 GMT
Connection: keep-alive
ETag: "60535444-2645"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/waypoints.min.js?ver=3.2.4
123.31.24.142200 OK 9.0 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/waypoints.min.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ISO-8859 text, with very long lines (8863), with CRLF line terminators
Hash c1b702d48090e4b93baf2ceca7b7724a
e2d762ef33015d0ce85cba6c42bdf5f94d25be3f
d858966cc0f27a91a83d094cde0e39d4ba7cabd2e9ea0ba0d913ae02cc5d5d62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/waypoints.min.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 9033
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-2349"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/navigation.js?ver=20151215
123.31.24.142200 OK 3.1 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/navigation.js?ver=20151215
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash 05c59609caf3eee24b0d68f988dadd3c
c7fa827c00a3d9b61242d9bfb25f42b36e993650
960deecec99fa9f409481875149b5fc45c818119aea5bad16b1212b9e1bb8b71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/navigation.js?ver=20151215 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 3073
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-c01"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/skip-link-focus-fix.js?ver=20151215
123.31.24.142200 OK 714 B URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/skip-link-focus-fix.js?ver=20151215
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash 961e5e9a667a0344a28587fc4aea0f98
261c7321d7eb81194fbab3f734ab92ab517099fd
ee30de0a826081966aa58bd563d92e80a28a2af7415ad440889ddc1c0a3b5ef5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 714
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-2ca"
Accept-Ranges: bytes
fago.vn/wp-content/themes/bravery/assets/js/theme.js?ver=3.2.4
123.31.24.142200 OK 5.6 kB URL HTTP/1.1 fago.vn/wp-content/themes/bravery/assets/js/theme.js?ver=3.2.4
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with CRLF line terminators
Hash f51ce468dc8d8273cffca1ccca5aeefc
e11e38299756fe227df7b5533fdf7d920e8e4f70
c0c12537bf34d5156ce795bad4ef1755448fb84dbd250e04a71d241408f0135a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bravery/assets/js/theme.js?ver=3.2.4 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 5625
Last-Modified: Thu, 18 Mar 2021 14:31:31 GMT
Connection: keep-alive
ETag: "60536443-15f9"
Accept-Ranges: bytes
fago.vn/wp-includes/js/wp-embed.min.js?ver=5.2.3
123.31.24.142200 OK 1.4 kB URL HTTP/1.1 fago.vn/wp-includes/js/wp-embed.min.js?ver=5.2.3
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type ASCII text, with very long lines (1403), with no line terminators
Hash 2dce40d16f9ff6332d3cbb7ae488a2b9
0a8eca5975f21a9f1bc079d111ca1657009dbe8f
2152557cac69e2bd7d6debef5037a9f554f9209cc305b8141b3329acb10c42b7
GET /wp-includes/js/wp-embed.min.js?ver=5.2.3 HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: application/javascript
Content-Length: 1403
Last-Modified: Thu, 18 Mar 2021 11:15:49 GMT
Connection: keep-alive
ETag: "60533665-57b"
Accept-Ranges: bytes
fago.vn/wp-content/plugins/kingcomposer/assets/css/fonts/fontawesome-webfont.woff
123.31.24.142200 OK 90 kB URL HTTP/1.1 fago.vn/wp-content/plugins/kingcomposer/assets/css/fonts/fontawesome-webfont.woff
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type Web Open Font Format, TrueType, length 90412, version 1.0\012- data
Hash c8ddf1e5e5bf3682bc7bebf30f394148
6d7e6a5fc802b13694d8820fc0138037c0977d2e
adbc4f95eb6d7f2738959cf0ecbc374672fce47e856050a8e9791f457623ac2c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/fonts/fontawesome-webfont.woff HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://fago.vn/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.6.17
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:43 GMT
Content-Type: font/woff
Content-Length: 90412
Last-Modified: Thu, 18 Mar 2021 15:08:59 GMT
Connection: keep-alive
ETag: "60536d0b-1612c"
Accept-Ranges: bytes
fago.vn/wp-content/uploads/2018/01/PNG_TO_01.png
123.31.24.142200 OK 2.6 kB URL HTTP/1.1 fago.vn/wp-content/uploads/2018/01/PNG_TO_01.png
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 60 x 59, 8-bit/color RGBA, non-interlaced\012- data
Hash ca2cd44c70beb1586a966351cb7f578e
995b2476d62d9078baff9f6aca3bb92b7825c70f
889260407061a6e15a17efde4bbcae4e3f3565292f81ffdd3a05068b701f4158
GET /wp-content/uploads/2018/01/PNG_TO_01.png HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: image/png
Content-Length: 2611
Last-Modified: Thu, 18 Mar 2021 13:23:32 GMT
Connection: keep-alive
ETag: "60535454-a33"
Accept-Ranges: bytes
connect.facebook.net/vi_VN/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/vi_VN/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 04f1ce1aa79dce52e1a4a64c8163b73b
191d635fff946b770a47f385e0a0770a59664100
45b4da8fc21793cc40516cd647a8ba19470e16874c6184b23e58d69973f1f989
GET /vi_VN/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: ff320ac0af264e1dd7517f95dae300c6
ETag: "cdd76942d562e78004fd8499eae180a4"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Tue, 20 Sep 2022 02:36:31 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: BPHOGqedzlLhpKZMgWO3Ow==
X-FB-Debug: 6N/HywzC9SjImibubKwnreamPwXP6Js+w0hIEotMjjwr+nivTOHAV5FoiqYkqwKe//MRy+4twErNXo9qPs+fpg==
Priority: u=3,i
X-FB-TRIP-ID: 1679558926
Date: Tue, 20 Sep 2022 02:18:44 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1688
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a16da6a23b1dbb748cfe8380aa2dc387
5548a11aeb8799c7ec396b4f19eaf1e83d42e866
2a44b30143f3c6f1656f3674c3fa53127e25d309b8d0dc9f1a9f4ccb7f618b97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:44 GMT
Last-Modified: Tue, 20 Sep 2022 01:08:26 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a16da6a23b1dbb748cfe8380aa2dc387
5548a11aeb8799c7ec396b4f19eaf1e83d42e866
2a44b30143f3c6f1656f3674c3fa53127e25d309b8d0dc9f1a9f4ccb7f618b97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 02:18:44 GMT
Last-Modified: Tue, 20 Sep 2022 01:08:26 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/vi_VN/sdk.js?hash=c978daef389c03ac8c52fc529173747d
157.240.200.14200 OK 89 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js?hash=c978daef389c03ac8c52fc529173747d
IP 157.240.200.14:0
File type ASCII text, with very long lines (18602)
Hash 752c5019d2524a2f342024bbfce710ea
0e8303895f86df64645aa5685f6189e5d6e8aa99
66329aa0057bb0b68e984ce06748d4949f20104f1817cc6a87a06636170774dd
GET /vi_VN/sdk.js?hash=c978daef389c03ac8c52fc529173747d HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://fago.vn
Connection: keep-alive
Referer: http://fago.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 96774b54a6cce1dc6fa452015d3b716f
etag: "4d8148fff107aa0e1af825f57e96eb21"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 19 Sep 2023 23:16:27 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: dSxQGdJSSi80ICS7/OcQ6g==
x-fb-debug: T7ZgWxurlGdXn1r1qeRFuf6+DJTR4DxNy/IqJvt5eLcMe/v0Ad36REoHdgmliJquaLv4aGh3NNkha3ycxBuK6Q==
content-length: 88876
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:44 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fago.vn/wp-content/uploads/2018/01/cropped-PNG_TO-32x32.png
123.31.24.142200 OK 956 B URL HTTP/1.1 fago.vn/wp-content/uploads/2018/01/cropped-PNG_TO-32x32.png
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5501cecb31a8da1bbfdeca2e8b894d83
e8dc388dff8b5bc96ff81af57a529d152023e18f
6e566da09e4251b6a7fe43f98150753c2335b181162a9236d078731efbe79121
GET /wp-content/uploads/2018/01/cropped-PNG_TO-32x32.png HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: image/png
Content-Length: 956
Last-Modified: Thu, 18 Mar 2021 13:23:32 GMT
Connection: keep-alive
ETag: "60535454-3bc"
Accept-Ranges: bytes
fago.vn/wp-content/uploads/2018/01/cropped-PNG_TO-192x192.png
123.31.24.142200 OK 9.2 kB URL HTTP/1.1 fago.vn/wp-content/uploads/2018/01/cropped-PNG_TO-192x192.png
IP 123.31.24.142:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b491ded000421803cc24773a2f3f30a3
0aed073ad7e340d6c46c5d69a7d968d3364563b5
85ea47d4d928d4d9383c300c1242a0f04e9637bf31a5de0df083e35a7579ef5b
GET /wp-content/uploads/2018/01/cropped-PNG_TO-192x192.png HTTP/1.1
Host: fago.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fago.vn/
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 20 Sep 2022 02:18:44 GMT
Content-Type: image/png
Content-Length: 9175
Last-Modified: Thu, 18 Mar 2021 13:23:32 GMT
Connection: keep-alive
ETag: "60535454-23d7"
Accept-Ranges: bytes
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 06:48:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: BWoKeSty6egwJE1HqSdlEHxWsT8EIfiJaW04/EzvcfYdU5s/Q9jvLxzG++a+AE3+hdDZup53g3KTnC0sS9hV6w==
content-length: 827
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.5/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df28794d598b614c%26domain%3Dfago.vn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffago.vn%252Ff21cdac138430b4%26relation%3Dparent.parent&container_width=0&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ffagovn%2F&locale=vi_VN&sdk=joey&show_facepile=false&show_posts=false&small_header=true&tabs=messages&width=250
157.240.200.35200 OK 20 kB URL HTTP/2 www.facebook.com/v2.5/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df28794d598b614c%26domain%3Dfago.vn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffago.vn%252Ff21cdac138430b4%26relation%3Dparent.parent&container_width=0&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ffagovn%2F&locale=vi_VN&sdk=joey&show_facepile=false&show_posts=false&small_header=true&tabs=messages&width=250
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (19626)
Hash 99cd45af8de889ffd0c051f0230291ad
5d17f24a19f87017598514b89a6105c17e349005
368b278030f4ef023d3f7c6e83b33c08220eba23b30f9acfe1b6f0ae720dcec6
GET /v2.5/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df28794d598b614c%26domain%3Dfago.vn%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ffago.vn%252Ff21cdac138430b4%26relation%3Dparent.parent&container_width=0&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Ffagovn%2F&locale=vi_VN&sdk=joey&show_facepile=false&show_posts=false&small_header=true&tabs=messages&width=250 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fago.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: QVofVDVR8Qy6nCRyzSQ0Y443SVtkXqzWY1BqOLT6opocR7WvjPHkJhuuSnAe+G/edo4If/xyda2eQjb43Aw3kA==
date: Tue, 20 Sep 2022 02:18:45 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18569)
Hash 449a21bbd17f4b28e209b62a520f28c0
b63a99e69f6ed688707a0f4851c0a88fe5cb6faa
dda01b644519466b782011bfbd33c652b8b7a691145ac1dfb314ba14ff86077d
GET /rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:31:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: RJohu9F/SyjiCbYqUg8owA==
x-fb-debug: b/9iM3h/ATaWKSyjpM2mDs84WsCeGkA+2fC9MuFXXf5VbF+0pDM4UQMxrk0nMX8kt+zJVcrKHJQ442C8HlUvIQ==
content-length: 91358
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2052)
Hash 883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612
GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 23:21:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: fhsLl0YjqSJqoV13JDQuIhdo/OX0Rs1cu8RUFdHOyPNKeiRXL+6eELxvTCu8eNpLboXkpb1VNLUfW2D1iOJqLg==
priority: u=3,i
content-length: 1689
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (7367)
Hash 2e6b8fb5c99f65f0290910a108d70b59
259614e8da07b8bb8f9f97145960c80d5a3a8301
d78f36b2062bcb9f609e318cb082657e04ad0d1c89b090d7a88b44d1b390fcd1
GET /rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 23:46:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LmuPtcmfZfApCRChCNcLWQ==
x-fb-debug: LUWwTcUwRS0T4R3+e9WRpk7hAz8LxkkzaXul5TrzabC5TYzcd6sQiJKekMUomHwOzt3g23mG5qj3hKz0XGqBkA==
priority: u=3,i
content-length: 15970
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iWPy4/yA/l/vi_VN/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iWPy4/yA/l/vi_VN/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2973)
Hash 2f4ce6974093e7819e9438d17de7a16f
cafdf45dfc82493bbc62b4a42527732e6bd783bb
556e15fae32e1797f39d9f36129a16fd8a6d18741aec60c073c4830cdef667da
GET /rsrc.php/v3iWPy4/yA/l/vi_VN/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 13:17:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: L0zml0CT54GelDjRfeehbw==
x-fb-debug: ArwpYN9OfPVNYPdLjL23uwrOGAhT5Ri4zgm6YbDYFNl5GYo46YpIhu3UD5dm9rTEUYXDORGZX0zn0pFeqXL+nA==
content-length: 8471
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 9.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9954)
Hash be64cd173090e3a98e38a422d5930c56
5c196fb94edb4d634bad160a99f3918260d23be3
0ffe4a73f2d08fa7dae5286e54d9e1f779422452cedfb44422a90ed24d409617
GET /rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:01:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vmTNFzCQ46mOOKQi1ZMMVg==
x-fb-debug: 7sN2xnZ9tBBcCnVQkthUAh512h2J9yropQsN7AC0enGYxL5jZxiWCYsdlSYO37SfOzlAYVwcgOcKEC6bxpcTPQ==
content-length: 9071
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:11:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: GGZU41/6Z3sSBrvSSR/Xv2Vo3Azq9sdBtvima5pKC2meCDlj6cuqmUZeoWWh6Q1xm0VdAhU2xavV/8mp2X6VZw==
content-length: 338
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iSa94/y_/l/vi_VN/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iSa94/y_/l/vi_VN/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42482)
Hash 40d5fba37c51640c106b9d9958bcb8f3
9e96568ca76c058de854730ca224108612b0c439
6ab146584cf20dbd187acfa45ff9d982f14840e5c9ab9f4e678fc1c04ff5d302
GET /rsrc.php/v3iSa94/y_/l/vi_VN/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 13:06:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: QNX7o3xRZAwQa52ZWLy48w==
x-fb-debug: wzqueC1QkX3Y3ucmHLiUiAx7fHCSo9JgL693907wNdeymuELhZV9QbcmUhO98gSMwY3tkWMCyad9AVvwXXmZkQ==
content-length: 23556
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4129)
Hash 7614efba617e235ae864911e15a63a27
5eb6ee4e1d2db3866ebcbc35b76352c719c36255
3c2783c57f48e1b749c1065ddcdf2f5184582a2bc799b1ee832fdf79c62b9557
GET /rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 01:01:43 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dhTvumF+I1roZJEeFaY6Jw==
x-fb-debug: OoydLzgoCVFNAAphC55+pS2ptG432BfGjzMg+vNj23W3oyMmlVYEtbGv2HcYz9Hst+ZHzroQR+BWc5tiXq9idA==
priority: u=3,i
content-length: 7311
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/xMkABpaNwwg.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/xMkABpaNwwg.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (15889), with no line terminators
Hash a1a15f1dccbde5edb0138ed87797014b
283c247f7f3ee6f9e2caf63ad29e1cca6c111930
64f25c860e5d2fe2cc1cef50a4c14027e71ebfb1be3f5e655ac7871b5e9a8ecd
GET /rsrc.php/v3/yp/l/0,cross/xMkABpaNwwg.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 16:06:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: o6xjOmfRhB/WyDetghST9w==
x-fb-debug: E1nal4YsmtqpZIIRAI5gslCNQ0BJbgYQ9LHwH702cwA+czW50874wyFvhsnbfFq86vHgSHa9i/kReIPzxNyPzw==
content-length: 707
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3i_954/yk/l/vi_VN/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i_954/yk/l/vi_VN/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with no line terminators
Hash 0af0c0cc7a0a831e7faf67fefe9614e5
9015809b6cb385d6e0d1d6fdc845496b773729da
dbddb14086ac02b9d33b3e4dfb326cc0254a6eb4fbe10e0da3ea7bf7feb4b2d1
GET /rsrc.php/v3i_954/yk/l/vi_VN/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 13:17:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: BahQQWcMLS5sSJSDBSlI8w==
x-fb-debug: fjSkTiJO1CzcOQge5zNrQx0NZiQe/ZG2BqD8KnJDTVGeH9+hyBFGorHvSDJXkgQBkrGCr7G+T/se2lS/3iiV6g==
content-length: 8523
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4556)
Hash d162f6af013f19ae6c43e3cfc69a2db4
806a400dc8510158b36d430ac4d2f054da090a83
1a243df2e9541c1c1ab933f2d0bc049426a5de8c8f937e6b53a3093c6d9dea97
GET /rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:49:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0WL2rwE/Ga5sQ+PPxpottA==
x-fb-debug: p6qANsfnBxVgh0brT/W9N8I+JHRCawPq68RMJzW2Y0VNQcri01NUVwacHeE7nlI/dBv4magunmiUYjL2aG/JFg==
priority: u=3,i
content-length: 6691
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (10562)
Hash 9e2bdbe7a93b2f7081ef82b9f0485189
f94f93c1a8edfe7b8d24d38dbef0a252cc9232cb
02eea737d55d4c6031954bce18961d8d5d300835592ca6b3d908f198694d919f
GET /rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:49:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: nivb56k7L3CB74K58EhRiQ==
x-fb-debug: xSOHPjhfS5TVivp/BrFuVJtP/wu9OX5uWEYXUNmjvDoqBIwIr976xDKb7ZIrNBb7slqEf9gYxnKIEZFUbBmAIQ==
content-length: 5319
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3igEl4/y1/l/vi_VN/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 42 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3igEl4/y1/l/vi_VN/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (10866)
Hash 1bffe0c1c4451ce0701e5342fdfc94f4
a5ca2e2bb701bd94715ca0dd8c5180cde15cf4f4
cff0e8df9aa98208b37d6a5f986ee0b160b33f61670c431b26f4ce817988798c
GET /rsrc.php/v3igEl4/y1/l/vi_VN/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 01:55:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: G//gwcRFHOBwHlNC/fyU9A==
x-fb-debug: ZJG6aoyaypHoNTXOCaf6f/ZKC5z0VEWk+zYnzDV3t0dgXJ8k8OZkboLHLVZNtPMPGbovUgdRY3qarXbxmp1kHQ==
priority: u=3,i
content-length: 42428
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yi/r/XtGJdZn8dDD.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 19 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yi/r/XtGJdZn8dDD.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (8678)
Hash 371723bd4d5adcc7d471488047bab03a
5e7a1f68a835d220822ff14dcaad317bb06826f1
98d5085c53568c6a34312c435a25ee89ed103c4740c46cd255b15baf6662de01
GET /rsrc.php/v3/yi/r/XtGJdZn8dDD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:46:55 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NxcjvU1a3MfUcUiAR7qwOg==
x-fb-debug: U/C6vvirqU/3CWQiDB65F3JaGIJsHqoFG9v2mEFkur7m0gV+0HGi2he4LCL6rCWSYJu3XN/SB2FhESYIhNUHPQ==
content-length: 18651
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3id5N4/yr/l/vi_VN/36xuTlE8337.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 586 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3id5N4/yr/l/vi_VN/36xuTlE8337.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1035)
Hash 4396644aaf37e95a747a74ef6b0925fb
da84f66d823ec5524f82156ececdfa8bbd34d327
e03bf7cbb32ad63d3450622df180ed902a565edb068665499ef1a4749352decc
GET /rsrc.php/v3id5N4/yr/l/vi_VN/36xuTlE8337.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 13:12:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Q5ZkSq836Vp0enTvawkl+w==
x-fb-debug: RKx1uxXX/5utruFC2YLtbxY/jiDozpS4VDnAQdhEUkLJ9VcpagU/WUr9/PbPfd+oAWCurlFWiRDUGsSwRVA4Iw==
priority: u=3,i
content-length: 586
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 02:18:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2