firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 07:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EhJnqBKc5h-rbMCSto44Tolb4ntNbMp_QlL2zsOgMPnvTV8SBAqoVQ==
Age: 3006
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13310
Expires: Mon, 26 Sep 2022 11:47:14 GMT
Date: Mon, 26 Sep 2022 08:05:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vs4f7DdIjAORlvO3-Jd5qjTD6UNVLaJR-VZcVno7A4YH9L5HTevtgg==
age: 12609
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dientuha.com/
112.78.1.150301 Moved Permanently 178 B IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 26 Sep 2022 08:05:24 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://dientuha.com/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 07:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 07:18:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EEFujMOa8ETsTzGZHqstm4UmOAD3wDacaQ_p9H_OykDkzpFPJJVxTA==
Age: 3278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4023
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:05:24 GMT
Last-Modified: Mon, 26 Sep 2022 06:58:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fefc350cdc5cf49dfb235ee6134c5532
d91f529a949136bb3ad07bf1cdb21a94f0c66c43
e535aa4f7b39ec038c6158a2e7ded5c3a0a361df7dcb42b0cc7b58f24343c51d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E535AA4F7B39EC038C6158A2E7DED5C3A0A361DF7DCB42B0CC7B58F24343C51D"
Last-Modified: Sat, 24 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 26 Sep 2022 14:05:25 GMT
Date: Mon, 26 Sep 2022 08:05:25 GMT
Connection: keep-alive
push.services.mozilla.com/
54.149.101.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.101.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5Li7JUWrCYtgYvldItPOow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e3DS2ZteyzCExdTMc9yydVxPdv8=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:05:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-ML0Z26DCF9
142.250.74.72200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-ML0Z26DCF9
IP 142.250.74.72:0
File type ASCII text, with very long lines (17807)
Hash 77aa5b659508181edf8e47a406df8229
0cb9737e850c5e01489b77cf3d6b70ee8984350a
8a2df4a3ab521edd42316b8210169f289cee867c02d7d83ca0ab02e98f6357a4
GET /gtag/js?id=G-ML0Z26DCF9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 08:05:25 GMT
expires: Mon, 26 Sep 2022 08:05:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74495
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:05:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dientuha.com/wp-content/uploads/2020/10/logo.png
112.78.1.150200 OK 5.5 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/logo.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 286 x 75, 8-bit colormap, non-interlaced\012- data
Hash 45f58e02a1aa312c926941d9a8f119ca
8a3867d1ff53b5492d8c041580152bb5d616f7d5
48a1855ba765e73c63a27cda1b74a924d909313432f41636118237de8a8b0203
GET /wp-content/uploads/2020/10/logo.png HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:25 GMT
content-type: image/png
content-length: 5538
last-modified: Sun, 11 Oct 2020 02:58:54 GMT
etag: "5f8274ee-15a2"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/
112.78.1.150200 OK 17 kB IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash cf39c90cbd855a577c1284fe187cffc9
9c9f5ccfcb47edec2e6da0cf5ffd6d9052614b95
24ee7c3c8a4ba03c97cffae836a91aff85336b9d0751c5324db6ad31412e6cff
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.5
cache-control: no-cache
content-encoding: gzip
wpo-cache-status: cached
last-modified: Sun, 25 Sep 2022 12:25:08 GMT
X-Firefox-Spdy: h2
dientuha.com/wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-header-ec944601.min.css
112.78.1.150200 OK 76 kB URL HTTP/2 dientuha.com/wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-header-ec944601.min.css
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash 68b88d39b437b695b9b821370ee3887f
2306a1116994f9298205d5e5adba2d82a84923d4
9dee1d133239274ca70128960b410d1abe96f86456b86fdd8795ab76fb4b0f87
GET /wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-header-ec944601.min.css HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:25 GMT
content-type: text/css
last-modified: Fri, 25 Dec 2020 03:05:29 GMT
vary: Accept-Encoding
etag: W/"5fe556f9-60e56"
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16586
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 08:05:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16586
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 08:05:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16586
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 08:05:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbad0bb4-9ab3-47a9-80fd-6567993349dd.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbad0bb4-9ab3-47a9-80fd-6567993349dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65e3b72afc2f13978ee80cc87dc289f1
78a82653eb0e5aa4f1355c13b665da44a3412024
9f3a89f268fca25f5a6c7319b1f8412a193cd73bc9c8f4c5a9d294582df3a57b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbad0bb4-9ab3-47a9-80fd-6567993349dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9352
x-amzn-requestid: efae9f72-8dce-4899-9dc8-c6cc9b4b2540
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvwFwWoAMFmig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-744ade88393a83467fea2b97;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NOu92heW0-RynLU34xGoSq36WGjOu75Ukkd8IA3IoQ2FMHFUMlkJrA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 36930
etag: "78a82653eb0e5aa4f1355c13b665da44a3412024"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dientuha.com/wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-header-84e60a2d.min.js
112.78.1.150200 OK 101 kB URL HTTP/2 dientuha.com/wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-header-84e60a2d.min.js
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (65451)
Size 101 kB (100721 bytes)
Hash 6aa4a5dd0d8284f665ff9d010ae8a699
1fcf57908fff920a164287eb18ffc29ac73053b3
7c62a731eb1fd603aab053a50dd4feb8075b40c21a9b19e4bc6c9b6f738132a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-header-84e60a2d.min.js HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:25 GMT
content-type: application/javascript
content-length: 100721
last-modified: Fri, 25 Dec 2020 03:05:29 GMT
etag: "5fe556f9-18971"
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGRBCfCtZkeYhbTpaE18IpIgUtOHyttE-0hRk8fWVB9sJS2rSbP22g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
age: 35994
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647364db-b398-41d7-8705-de1b74b7b110.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647364db-b398-41d7-8705-de1b74b7b110.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3db75e6241f57400010012f889a43d5
3a71ab6dac65dede3b07a5a5ee926ee964904541
6fff314d72ce18cf560dec61ea1c286b00777d6ec1bd30a31752bcf994c970e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647364db-b398-41d7-8705-de1b74b7b110.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: c03f3f22-9132-455b-adc9-d38565307a9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTEnFySIAMF-5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbb6-62f8e2e817e7ab530a359eaf;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XvqnZqJNcxT9Nh9_pM3VbzSeIHIsxqzwrTofWW9M1Vv3Jce1F3fKbA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:19:14 GMT
age: 35172
etag: "3a71ab6dac65dede3b07a5a5ee926ee964904541"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1ce3e1066be88e2c4eae317c55136f5
9f4dd2376e00073510cbd4e36d10a5a3f1746e35
a7ae3c3b24666cb35db7a95bd98840e96e306d6e2fdbb05c68c98ff7deaa5459
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6797
x-amzn-requestid: 2caf2fb8-650f-4f19-806b-3252a0ba360a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhG0FIAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-0b5beafd57d22f245df61815;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nhtcKQJlI8biPpgjMg2s6wgZNkarsBB2Rnxj69_5Y361Pw9FR4frrg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:11:07 GMT
age: 35659
etag: "9f4dd2376e00073510cbd4e36d10a5a3f1746e35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 37687
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 36930
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5509
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:05:26 GMT
Last-Modified: Mon, 26 Sep 2022 06:33:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
dientuha.com/wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-footer-74425c86.min.js
112.78.1.150200 OK 262 kB URL HTTP/2 dientuha.com/wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-footer-74425c86.min.js
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (19155)
Size 262 kB (261691 bytes)
Hash 3bb363ae8d5d9906f85f8d651ed60f73
196bafc2fd87da5324dba7c8cfe2d10ac8715b6f
0482d89ef173f8e6f2b242dfc8d00359c91877b18fb27424ade02239a0d0b719
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpo-minify/1608865508/assets/wpo-minify-footer-74425c86.min.js HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:25 GMT
content-type: application/javascript
content-length: 261691
last-modified: Fri, 25 Dec 2020 03:05:29 GMT
etag: "5fe556f9-3fe3b"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2018/06/bg.jpg
112.78.1.150200 OK 34 kB URL HTTP/2 dientuha.com/wp-content/uploads/2018/06/bg.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 250x250, components 3\012- data
Hash 5fad8e1f21aee729bcfe21e678ef6dd9
63e3d1d60d45fc6a027f4386d00c1828d61db887
b85e1cf7c33085b40ee65a121098539306ace3abb7c7ad87a22ae906c71e9871
GET /wp-content/uploads/2018/06/bg.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:26 GMT
content-type: image/jpeg
content-length: 33788
last-modified: Sun, 11 Oct 2020 03:43:08 GMT
etag: "5f827f4c-83fc"
accept-ranges: bytes
X-Firefox-Spdy: h2
connect.facebook.net/vi_VN/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 223116bd8dfe76ac64b161f84ccfbb93
4501138bbd9dbcbe2c71a5126dc8c775b14aa9d0
d7d7b7b6fbc9c66372d58d518ee0ce0a9e800ec283d1e85650708c0bce5cc693
GET /vi_VN/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dientuha.com
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9e89fffe882ce27e8426aea2763748bc
etag: "57969a00a11ccce9400d3f42f25abb39"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 26 Sep 2022 08:17:31 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: IjEWvY3+dqxksWH4TM+7kw==
x-fb-debug: XQlgGQYd4XTVcUWzO+bjUxGqGKhJu0dTxiyn1YPjxYWB09O8ptcpcc+r5cFRe//QdBIfIV6H+QsRt3bVhf5Aog==
content-length: 1687
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:26 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5509
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 08:05:26 GMT
Last-Modified: Mon, 26 Sep 2022 06:33:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 06:48:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: BWoKeSty6egwJE1HqSdlEHxWsT8EIfiJaW04/EzvcfYdU5s/Q9jvLxzG++a+AE3+hdDZup53g3KTnC0sS9hV6w==
content-length: 827
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/l/0,cross/fscearqb1ih.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/l/0,cross/fscearqb1ih.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash e286de17f644c76c8bf71e1dfe162f27
f9e2b36aaa38006a8fb571ba552ac4ce12b0ccbb
dc685191e989069babfa7fd7c0a4d9babf026a014029823b197a8ac786f2ab1f
GET /rsrc.php/v3/yU/l/0,cross/fscearqb1ih.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 25 Sep 2023 16:58:22 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4obeF/ZEx2yL9x4d/hYvJw==
x-fb-debug: Xwysq2hN7s0qoCTzOtGSCxVmMtDPFncfn8eELVXmyaKC/DV5MemU+abnHYi2MOZg1HT+FY/LK5bKQ2VFXtr6+w==
content-length: 5598
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/cxHz95P-Blt.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/cxHz95P-Blt.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18569)
Hash 64e679c03d42412a8a16d9dd5d312513
f73a48a0816c11b4e94a708c5757c640cee2270e
ed8552fab9845a545a7667a3af4b48e5de7e48618c1c5c36cca03fc0a96dcb46
GET /rsrc.php/v3/yv/r/cxHz95P-Blt.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 12:20:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZOZ5wD1CQSqKFtndXTElEw==
x-fb-debug: GxR3GsopuLgBUx7PF6FME4dIiCqemFTOeUTRe5Kh6XqCisuSSI5pFyDbwqm7NuPkhw5FHK/zhe39Myul+Cih3w==
content-length: 91359
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2052)
Hash 883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612
GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 23:21:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: fhsLl0YjqSJqoV13JDQuIhdo/OX0Rs1cu8RUFdHOyPNKeiRXL+6eELxvTCu8eNpLboXkpb1VNLUfW2D1iOJqLg==
priority: u=3,i
content-length: 1689
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fdientuha&tabs=timeline&width=340&height=500&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=948110208640186
157.240.200.35200 OK 16 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fdientuha&tabs=timeline&width=340&height=500&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=948110208640186
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23270)
Hash fc5c948d39219020b6ac68bf24f98a9a
edf60f7ce6d8b85205fc06bb2c5281f70e2b1a23
6f564bd8a8547c386eec4dfbc3166f5283060ff7194494f12d9b4147061a03fe
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fdientuha&tabs=timeline&width=340&height=500&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=948110208640186 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: aMFETZhAvXSnyZ+uAb9DdA5P0DBnp1l5C77rPue5ZaQtJFL9KvUYbDdJ3w/KIh19CkuawrlxERbvUR2aiRCd3g==
date: Mon, 26 Sep 2022 08:05:26 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/cPcKznvPj72.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y3/r/cPcKznvPj72.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4129)
Hash d9b4301abe1b60a35b4d2ceff6a63f38
cbd680fb7b1618610b5c82a54ecf9bc328ed4cef
8613497153ce25fae5e92250807b1526f10adb670fb7ea13c2dad89cbe375f18
GET /rsrc.php/v3/y3/r/cPcKznvPj72.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 23:21:55 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2bQwGr4bYKNbTSzv9qY/OA==
x-fb-debug: ZIZn8j4cOxmb1c8zR83am1yJViOJv/B3jx7OYiiNFZoaYgGY+hoptXGndpRm9qYbTIycg7+uz6ZkuQNsE9/N8A==
content-length: 7308
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yr/l/en_US/eSSgSlla1PA.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yr/l/en_US/eSSgSlla1PA.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2973)
Hash 5310cf1cab1de32598c3d6fc3e3bd7b6
7c07c5ee282b9d0a1b2f8496049361cf4382d1c5
b3b168243a1626be322a725d17171ccc2ae3736b2e3b342e3d7366848e35502d
GET /rsrc.php/v3iLl54/yr/l/en_US/eSSgSlla1PA.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 16:43:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: UxDPHKsd4yWYw9b8PjvXtg==
x-fb-debug: zEBfPCMfY/qJcMLhaXk6ddrrGbgqq+KHPpOq67asB1zNHDgEfmZK4O0QZx9ERro3FhVZbkAZ1p7AVrcjJN4ozw==
priority: u=3,i
content-length: 8450
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/dDpAXJI8zbJ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 9.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/dDpAXJI8zbJ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9954)
Hash 36d797d9616ae40e8554001ba0cdc03b
3d6a5feaf1a10e224fc44fd6358ae7f9a92e5f0b
f1c50af0b17dccab12ba237d3b484b6d228e40481e86bb3cf24dc9d37c2b05b4
GET /rsrc.php/v3/yF/r/dDpAXJI8zbJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 05:25:24 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NteX2WFq5A6FVAAboM3AOw==
x-fb-debug: z1hpUSGtFHkI40ujJZB34Jpa3i0npuTzbNlq2aodZrmlHSZ/g5A4f3HNFVbEOWVdxRkzkCfydAkLEaVdm15ErQ==
priority: u=3,i
content-length: 9075
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yE/r/Ziq3FOqCAZf.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yE/r/Ziq3FOqCAZf.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (8218)
Hash 286c471d2e4575a6f0a862df74febea7
62fe316f9fc667e8dae068f29bee3564469f90dd
0ea96d9efc6ee8cad64272d263bcf723c79adb292153430f69d90c0326ff53c9
GET /rsrc.php/v3/yE/r/Ziq3FOqCAZf.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 23 Sep 2023 17:37:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KGxHHS5FdabwqGLfdP6+pw==
x-fb-debug: 3U5F0ejhIvsE0CjJfPOWYf0+UtJnO21UoeIWInfBvm2OsKKN8/DyB20Yfx5mTl/0C+udIx45/QK3DICNL7+ZnA==
content-length: 16237
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/cropped-logo-vuong-1-192x192.png
112.78.1.150200 OK 8.0 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/cropped-logo-vuong-1-192x192.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 39a88fa0a50c19ec37f35fae3101003a
a1fca8c99689bbcdd9e05b4f08d81bd019889975
c5d62c1d8ac3f0f7d0e097ecdfd4755ffb9af5dea53fb9f7b6d5a3aa66072415
GET /wp-content/uploads/2020/10/cropped-logo-vuong-1-192x192.png HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/png
content-length: 8003
last-modified: Sun, 11 Oct 2020 04:07:09 GMT
etag: "5f8284ed-1f43"
accept-ranges: bytes
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42045)
Hash 0d15ae898adcd82bf30fc62fa941911d
eb3af610a1cf31f92e790c8bd08a79e2f0b011d1
98e9d40a3c4e19022b61436d7cbf5dca6bebaa3d5b4dbd0fa455f467ee1935f5
GET /rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 05:28:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DRWuiYrc2CvzD8YvqUGRHQ==
x-fb-debug: 01ChkMvQurqnxdXE2GcRD9Ae39DtR2aJmEpx88kBDArUhbvAIu9bBC95SDYOwj3nliv4aJYNdEryUQy3595dmg==
content-length: 23379
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-uno-r3-smd-ch340-atmega328p-au-pinout-dien-tu-ha-247x296.jpg
112.78.1.150200 OK 16 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-uno-r3-smd-ch340-atmega328p-au-pinout-dien-tu-ha-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x296, components 3\012- data
Hash e6ff7c2f128c5399038d329d25230cf4
7de15459d9691481b8ebd45053f294eb49e0dfaa
bf032595376999fd027e5df9eb344241ac485e63dc18d7933e3fc260c4f6faf7
GET /wp-content/uploads/2020/10/arduino-uno-r3-smd-ch340-atmega328p-au-pinout-dien-tu-ha-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 16364
last-modified: Thu, 15 Oct 2020 09:54:14 GMT
etag: "5f881c46-3fec"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/12/module-motor-shield-l293-arduino-dien-tu-ha-da-nang-top-247x296.jpg
112.78.1.150200 OK 15 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/12/module-motor-shield-l293-arduino-dien-tu-ha-da-nang-top-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x296, components 3\012- data
Hash 06cbafdc4807d816a30fd67e05222f16
b4479ac5f88301432e410cc95419295a51d151ef
5ba8f1788fec6f9eca6cde5d0bf8aff2a9de90d9df5a6daf75f2e26e263f24ac
GET /wp-content/uploads/2020/12/module-motor-shield-l293-arduino-dien-tu-ha-da-nang-top-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 14631
last-modified: Tue, 29 Dec 2020 03:34:58 GMT
etag: "5feaa3e2-3927"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-lilypad-atmega328p-pinout-dien-tu-ha-247x296.jpg
112.78.1.150200 OK 10 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-lilypad-atmega328p-pinout-dien-tu-ha-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x296, components 3\012- data
Hash b582ead3319ba8a311f6cbdf7296f6dc
f7d04e7df0808f49b5eecd169ab4fa26aad60b51
f1cda14f69451f1ca11166de5ce075f153fc71bae5f626cf7725d523f2f8c2ce
GET /wp-content/uploads/2020/10/arduino-lilypad-atmega328p-pinout-dien-tu-ha-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 10472
last-modified: Thu, 15 Oct 2020 09:33:26 GMT
etag: "5f881766-28e8"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/kit-arduino-wifi-esp8266-nodemcu-lua-wemos-d1-r2-pinout-dien-tu-ha-247x296.jpg
112.78.1.150200 OK 15 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/kit-arduino-wifi-esp8266-nodemcu-lua-wemos-d1-r2-pinout-dien-tu-ha-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x296, components 3\012- data
Hash 816e13e34e0e32d4f6e1c60e6aade536
fb3147c309fa992c7d8c420e636abc3c01dba536
3a101f596bf437513d95893bacff74e98884d5831bc7cdeee48be75f24649b5b
GET /wp-content/uploads/2020/10/kit-arduino-wifi-esp8266-nodemcu-lua-wemos-d1-r2-pinout-dien-tu-ha-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 14783
last-modified: Thu, 15 Oct 2020 09:53:51 GMT
etag: "5f881c2f-39bf"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-attiny85-usb-digispark-pinout-dien-tu-ha-247x296.jpg
112.78.1.150200 OK 13 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-attiny85-usb-digispark-pinout-dien-tu-ha-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x296, components 3\012- data
Hash 48608909a0c5cdb157076f3028a8ffbf
6945d3be6baaada0325015868e0541c963fdf735
42c1d5437a2bf409dc9875df931f250069e7d8cdbeb142aa29ee85b4fa1e9c94
GET /wp-content/uploads/2020/10/arduino-attiny85-usb-digispark-pinout-dien-tu-ha-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 13246
last-modified: Thu, 15 Oct 2020 09:23:21 GMT
etag: "5f881509-33be"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-joystick-shield-dien-tu-ha-pinout-247x296.jpg
112.78.1.150200 OK 11 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-joystick-shield-dien-tu-ha-pinout-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 247x296, components 3\012- data
Hash 4c0311134089f8182a9a0bb1059ede0a
6728d9eaf658309914a9f0c969386ce28c6d3635
136c25c566cdbc500e20379a3966e72a1907259907d99c0050f09ecb34651235
GET /wp-content/uploads/2020/10/arduino-joystick-shield-dien-tu-ha-pinout-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 10964
last-modified: Thu, 15 Oct 2020 09:00:44 GMT
etag: "5f880fbc-2ad4"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/top1.jpg
112.78.1.150200 OK 35 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/top1.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 400x151, components 3\012- data
Hash a7ff25708f8fd7b2e2524f8ade3a4fb4
eff9994fbec622ca7a285df3f2b138ede7a4cd9c
061abc268ceff4f66deb2cc704c78b3c95c59d39b0594e8438460505e23e051e
GET /wp-content/uploads/2020/10/top1.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 34572
last-modified: Sun, 11 Oct 2020 02:58:26 GMT
etag: "5f8274d2-870c"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-can-bus-shield-mcp2515-pinout-dien-tu-ha-247x296.jpg
112.78.1.150200 OK 9.5 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-can-bus-shield-mcp2515-pinout-dien-tu-ha-247x296.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 247x296, components 3\012- data
Hash ebfa837010c2e062bcd3e6cee82d3dcc
9103dd0da9dc9554e0013c287b814ca38e538fac
0d368ed571e1372c55f83122010e0d44efcac8225967634f2db1fde80b10bcd9
GET /wp-content/uploads/2020/10/arduino-can-bus-shield-mcp2515-pinout-dien-tu-ha-247x296.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 9535
last-modified: Thu, 15 Oct 2020 03:34:43 GMT
etag: "5f87c353-253f"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/top2.jpg
112.78.1.150200 OK 34 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/top2.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 400x151, components 3\012- data
Hash 3792eea78e943123a4fd6032c11fe1a9
5b4a5849684cb9a1e95ce433fec4481f3394b3fb
4cc8c1eca13dcc379eee8c507cd99b2cc33c5c748d11cdaf45797826708bc63e
GET /wp-content/uploads/2020/10/top2.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 34507
last-modified: Sun, 11 Oct 2020 02:58:18 GMT
etag: "5f8274ca-86cb"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/nha-thong-minh-tuya.jpg
112.78.1.150200 OK 9.5 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/nha-thong-minh-tuya.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x151, components 3\012- data
Hash 63e85797dbbc4203e6e1da0a5110744b
6f50209cc89d803e3c0f21935e5f62ff789acdc6
53df868985345a3d1376e5f6dbbf5c5110bd9874d162835b357bf03a012afda3
GET /wp-content/uploads/2020/10/nha-thong-minh-tuya.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 9515
last-modified: Sun, 11 Oct 2020 03:56:51 GMT
etag: "5f828283-252b"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-uno-r3-smd-ch340-atmega328p-au-dien-tu-ha.jpg
112.78.1.150200 OK 34 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-uno-r3-smd-ch340-atmega328p-au-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 990374c9c75822067cfeb0847bd4ff9f
979c99ff3a52558902f7043ae6c03390db22a2d7
ca2bc906c2d24eebfd8e563561c5feb73c1d73850ac73191f470135a46163c27
GET /wp-content/uploads/2020/10/arduino-uno-r3-smd-ch340-atmega328p-au-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 34012
last-modified: Thu, 15 Oct 2020 09:53:56 GMT
etag: "5f881c34-84dc"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/12/module-motor-shield-l293-arduino-dien-tu-ha-da-nang.jpg
112.78.1.150200 OK 45 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/12/module-motor-shield-l293-arduino-dien-tu-ha-da-nang.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash f917e5b568c5fb667016015307168c42
aa70fec7fc43a7e305cc0b890c45ffc52a467a9b
a6894c61b8e4e1e80e15f2805ae45a3701a371623e02f85f7c1ec04e7ac184b5
GET /wp-content/uploads/2020/12/module-motor-shield-l293-arduino-dien-tu-ha-da-nang.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 45007
last-modified: Tue, 29 Dec 2020 03:34:22 GMT
etag: "5feaa3be-afcf"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-esp8266-wifi-shield-dien-tu-ha.jpg
112.78.1.150200 OK 38 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-esp8266-wifi-shield-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 48e64b090f4a963a06e1436c4cc872dd
22e724884f8e516f959ae090050aba67f7a37e57
7d6f9876ebab1e9a59b46d3a2207d0b63c128df81c775ec0e79aaf896b6f7eba
GET /wp-content/uploads/2020/10/arduino-esp8266-wifi-shield-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 38156
last-modified: Thu, 15 Oct 2020 09:43:07 GMT
etag: "5f8819ab-950c"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/kit-arduino-wifi-esp8266-nodemcu-lua-wemos-d1-r2-dien-tu-ha.jpg
112.78.1.150200 OK 42 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/kit-arduino-wifi-esp8266-nodemcu-lua-wemos-d1-r2-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash eca6c827db858539e5e88d79a0c069ed
aa543e069ef2a16a158dcdfe7d8753c8b5750f15
8c2178e1e3d3a8fa47e9179ee85f2ab5b271621b27788a9182208007e64b4a1e
GET /wp-content/uploads/2020/10/kit-arduino-wifi-esp8266-nodemcu-lua-wemos-d1-r2-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 41719
last-modified: Thu, 15 Oct 2020 09:53:32 GMT
etag: "5f881c1c-a2f7"
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-ML0Z26DCF9>m=2oe9l0&_p=16293739&cid=865521208.1664179525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664179525&sct=1&seg=0&dl=https%3A%2F%2Fdientuha.com%2F&dt=%C4%90i%E1%BB%87n%20t%E1%BB%AD%20%C4%90%C3%A0%20N%E1%BA%B5ng%20-%20Linh%20ki%E1%BB%87n%20%C4%91i%E1%BB%87n%20t%E1%BB%AD%20-%20H%C6%B0%E1%BB%9Bng%20d%E1%BA%ABn%20l%E1%BA%ADp%20tr%C3%ACnh%20-%20Linh%20ki%E1%BB%87n%20%C4%91i%E1%BB%87n%20t%E1%BB%AD%20HA%20-%20%C4%90%C3%A0%20N%E1%BA%B5ng&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-ML0Z26DCF9>m=2oe9l0&_p=16293739&cid=865521208.1664179525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664179525&sct=1&seg=0&dl=https%3A%2F%2Fdientuha.com%2F&dt=%C4%90i%E1%BB%87n%20t%E1%BB%AD%20%C4%90%C3%A0%20N%E1%BA%B5ng%20-%20Linh%20ki%E1%BB%87n%20%C4%91i%E1%BB%87n%20t%E1%BB%AD%20-%20H%C6%B0%E1%BB%9Bng%20d%E1%BA%ABn%20l%E1%BA%ADp%20tr%C3%ACnh%20-%20Linh%20ki%E1%BB%87n%20%C4%91i%E1%BB%87n%20t%E1%BB%AD%20HA%20-%20%C4%90%C3%A0%20N%E1%BA%B5ng&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-ML0Z26DCF9>m=2oe9l0&_p=16293739&cid=865521208.1664179525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664179525&sct=1&seg=0&dl=https%3A%2F%2Fdientuha.com%2F&dt=%C4%90i%E1%BB%87n%20t%E1%BB%AD%20%C4%90%C3%A0%20N%E1%BA%B5ng%20-%20Linh%20ki%E1%BB%87n%20%C4%91i%E1%BB%87n%20t%E1%BB%AD%20-%20H%C6%B0%E1%BB%9Bng%20d%E1%BA%ABn%20l%E1%BA%ADp%20tr%C3%ACnh%20-%20Linh%20ki%E1%BB%87n%20%C4%91i%E1%BB%87n%20t%E1%BB%AD%20HA%20-%20%C4%90%C3%A0%20N%E1%BA%B5ng&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dientuha.com
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://dientuha.com
date: Mon, 26 Sep 2022 08:05:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-attiny85-usb-digispark-dien-tu-ha.jpg
112.78.1.150200 OK 29 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-attiny85-usb-digispark-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash c0e4dba1d4fe5771b593981655e5c9fa
f29c602dbbd4dcaeef163da4577de8271644489b
49f2757f7adaf53719913a2bae49ae5cdd8987a309f494e634023e66d469a19e
GET /wp-content/uploads/2020/10/arduino-attiny85-usb-digispark-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 28551
last-modified: Thu, 15 Oct 2020 09:23:03 GMT
etag: "5f8814f7-6f87"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-lilypad-atmega328p-dien-tu-ha.jpg
112.78.1.150200 OK 41 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-lilypad-atmega328p-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 4caa89aa00bc5240cc9aceeebd7d61aa
abf43a30de9d88a755a9f4747a62d3a59419d6e2
8fdeb40a94ad5f7f39b6024195feefb11e01881eedd8b794014950f37076626c
GET /wp-content/uploads/2020/10/arduino-lilypad-atmega328p-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 40959
last-modified: Thu, 15 Oct 2020 09:33:07 GMT
etag: "5f881753-9fff"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-motor-shield-l298-dien-tu-ha.jpg
112.78.1.150200 OK 38 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-motor-shield-l298-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 00d38b5226cba3e25800965e9eb6f93f
0c94896c517d0944925cb186001ca7c14f75ada4
ca748eb1a24bcc780db2765ca1ecd6d37d0f08bdb6db34689f535fea12996fe1
GET /wp-content/uploads/2020/10/arduino-motor-shield-l298-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 38342
last-modified: Thu, 15 Oct 2020 09:12:13 GMT
etag: "5f88126d-95c6"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-joystick-shield-dien-tu-ha.jpg
112.78.1.150200 OK 24 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-joystick-shield-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 20107a450f01ad2a4fb5cb7850eee665
b23fd766c24d15c463ee52083d37d239c1fae3a8
a0dbb191a4aa3c0aa3f3b730d9f1cd0a0199e9df1741261f1457df3eaab45927
GET /wp-content/uploads/2020/10/arduino-joystick-shield-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 23489
last-modified: Thu, 15 Oct 2020 09:00:25 GMT
etag: "5f880fa9-5bc1"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-can-bus-shield-mcp2515-dien-tu-ha.jpg
112.78.1.150200 OK 38 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-can-bus-shield-mcp2515-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 49a9a63939734fe94eaf53ab85d95d24
63b9695c5b7e1f70e163595f09c1d22932900e09
8eae8b1189bcd48f0bb77cd0e0f7a5255396996c286994bf7def66cf3978c8df
GET /wp-content/uploads/2020/10/arduino-can-bus-shield-mcp2515-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 38014
last-modified: Thu, 15 Oct 2020 03:34:27 GMT
etag: "5f87c343-947e"
accept-ranges: bytes
X-Firefox-Spdy: h2
dientuha.com/wp-content/uploads/2020/10/arduino-mp3-shield-vs1053-dien-tu-ha.jpg
112.78.1.150200 OK 36 kB URL HTTP/2 dientuha.com/wp-content/uploads/2020/10/arduino-mp3-shield-vs1053-dien-tu-ha.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x800, components 3\012- data
Hash 10777364f6f5aab3679076c1db6fbee9
839a132ba7a2a220c41ca6e3fc813048e2672b36
959c73cc31eda033ed6866acce6071d9e0f4a46b6ff6aa7a4f546d8318d22add
GET /wp-content/uploads/2020/10/arduino-mp3-shield-vs1053-dien-tu-ha.jpg HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:27 GMT
content-type: image/jpeg
content-length: 35603
last-modified: Thu, 15 Oct 2020 03:24:01 GMT
etag: "5f87c0d1-8b13"
accept-ranges: bytes
X-Firefox-Spdy: h2
connect.facebook.net/vi_VN/sdk.js?hash=9de2f1d30682578843a445f20ad2de8a
157.240.200.14200 OK 89 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js?hash=9de2f1d30682578843a445f20ad2de8a
IP 157.240.200.14:0
File type ASCII text, with very long lines (18598)
Hash 09a3d55e5fae4badfb41dabb614bf266
40bc3691c51ecab342160a7e770d28775e983a2f
d879330b0e3adc7c3001b00bccd5ebc6b68683ace4c9d988f9c53143188e968e
GET /vi_VN/sdk.js?hash=9de2f1d30682578843a445f20ad2de8a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dientuha.com
Connection: keep-alive
Referer: https://dientuha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: a8e469962b64274c609cccc99c5feffa
etag: "0eaf4b0639898fab1da989a75ccc6e42"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 26 Sep 2023 06:44:50 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: CaPVXl+uS637Qdq7YUvyZg==
x-fb-debug: mo1/MJxf0G65ZNI00mf/5QUDJIhIlIpj2PjFE+oRVyN5RcqhdQ3kU4KhmcBJYDRhmwlG14JxRHwZlFwQK31ObA==
content-length: 88927
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dientuha.com/?wc-ajax=get_refreshed_fragments
112.78.1.150200 OK 0 B URL HTTP/2 dientuha.com/?wc-ajax=get_refreshed_fragments
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: dientuha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://dientuha.com
Connection: keep-alive
Referer: https://dientuha.com/
Cookie: _ga_ML0Z26DCF9=GS1.1.1664179525.1.0.1664179525.0.0.0; _ga=GA1.1.865521208.1664179525
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 08:05:29 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.3.5
wpo-cache-status: not cached
wpo-cache-message: The request method was not GET (POST), In the settings, caching is disabled for matches for one of the current request's GET parameters
access-control-allow-origin: https://dientuha.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/BjeESKDbisI.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y3/r/BjeESKDbisI.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
GET /rsrc.php/v3/y3/r/BjeESKDbisI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 03:25:44 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: tYf9DPIuceEAuT8HoNUU/A==
x-fb-debug: GCpArXMKYlRdg1v2NzW0p5YExoImzQ7kkrqklht1OFjRYMaEpV155E7E+B/cXsYT1D7rBeHtO4u32FC0HKgyDA==
content-length: 12294
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 08:05:27 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2