POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16983
Expires: Wed, 23 Nov 2022 08:53:30 GMT
Date: Wed, 23 Nov 2022 04:10:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6282
Cache-Control: max-age=115530
Date: Wed, 23 Nov 2022 04:10:27 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:15:57 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12929
Expires: Wed, 23 Nov 2022 07:45:56 GMT
Date: Wed, 23 Nov 2022 04:10:27 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 04:09:27 GMT
cache-control: public,max-age=3600
age: 60
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: SFsb08kqMZSjP4EsyqlXqgIr12EUvnScyXDSUnv0MqFdjZDwz8u4LN/dNd+ZTFNT3vAQd7JzVN0=
x-amz-request-id: H9XS7T5BZX4AH5B8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 03:39:50 GMT
age: 1837
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Wed, 23 Nov 2022 04:10:27 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 112.78.1.150
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Server: nginx
Date: Wed, 23 Nov 2022 04:10:28 GMT
Content-Length: 303
Connection: keep-alive
Location: https://xaydunghoangtu.com/
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 03:11:11 GMT
cache-control: public,max-age=3600
age: 3557
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4549
Cache-Control: max-age=108736
Date: Wed, 23 Nov 2022 04:10:28 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 10:22:44 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "4F14EEC518814EA3182DBB93C0A7FB75A540D96C1AFF0CE8F44D7700274EE9F9"
Last-Modified: Wed, 23 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21526
Expires: Wed, 23 Nov 2022 10:09:14 GMT
Date: Wed, 23 Nov 2022 04:10:28 GMT
Connection: keep-alive
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: w56TVpFZnR9CIxZWatm/QA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
54.200.107.47
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jyu7uyNNTYQw50X9EtCuX5qePyY=
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16802
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 04:10:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16802
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 04:10:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16802
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 04:10:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16802
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 04:10:29 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc29cc891-05a6-43aa-910c-6255241c5cdb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 12244
x-amzn-requestid: a01b2328-438f-4d94-94e2-77d5a44d4d65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jGjGqsoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787ef6-094db925714fac2c71bc2679;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 07:00:06 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: q-ciGssIUXEi_5vn91CqzSGSBlnrszvDBewZYBdFrywPvpWHSWH0lQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 5c35539543902c678280929df206948c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:56:30 GMT
age: 18839
etag: "5404be7e1fff033a5cccc15164d77b7e96a48a81"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02321462-ee42-483c-b25f-8e011f1a5f17.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8128
x-amzn-requestid: 0ba11562-ea07-4058-8d6e-ac079ce63ab0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCNLcEtgoAMFVVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8f15-3079e77022f090b112ae1804;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:10:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ymhH-B1HNHKAFHs6-zOa97ehcX4h1lV0ZLgVMoKNIdWfMpYQzy3g4w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 03:26:08 GMT
age: 2661
etag: "3648297257e246e7ec4541fef1ee549523c04f02"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d582ed2-f829-4647-9113-832d4500a207.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9138
x-amzn-requestid: 524e565e-a9fb-45f9-b786-d64cf26a3cdf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcAAHG8IAMFhwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4066-3689e70e6212e9e77dc134f4;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cwu__NPGaU0zyAG0H1yZhmjGsFzvNmzsGv6Zt9hrF5gwSysEio2MjA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:09:16 GMT
age: 21673
etag: "343a5bfba0f8fec28f9345f276b44f44c6eaf6a6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _j5ykGwKHIQEFLyuJK_OMvs-CsCvkUQhZc_YD8gAtbyOECQ894zvjw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 05:19:29 GMT
age: 82260
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f13f0a4-9e67-4f61-9165-83b87312d9cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8081
x-amzn-requestid: cafd3337-7bb8-4e2d-91d4-a33439a32b80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcAMEwgoAMFl-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4067-6074dcae15d9194513916d48;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0qleUIXFjvOqr3SeTpnFnVnhacI-ps0Fc33zsWp3eynFDhYOasUpPw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:56:48 GMT
age: 22421
etag: "dff12e88a784a954012f257d3689862c52251d01"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb450e2a1-222f-4dfe-850a-f862cd102c3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6910
x-amzn-requestid: 0d4fa715-c66a-4bcb-985c-f2c2ea71b3a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-pvrF-xoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c2330-67041f796d1906cc51e31b73;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 01:17:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mpgJn1_loQQQ8CMtSWPy1hYUI5IyYpb2OdU1ycqP-v6AGNlMq4PG-g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:56:30 GMT
age: 18839
etag: "cda806d600c9e63e50d8ec42549fb107e4915068"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: nginx
date: Wed, 23 Nov 2022 04:10:30 GMT
content-length: 20795
x-powered-by: PHP/7.3.5
x-pingback: https://xaydunghoangtu.com/xmlrpc.php
link: <https://xaydunghoangtu.com/wp-json/>; rel="https://api.w.org/", <https://xaydunghoangtu.com/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://xaydunghoangtu.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /v8TniL3.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
 151.101.84.193
HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 06 Sep 2016 09:27:17 GMT
etag: "4dd8a1adce2e600f1102391c34a0dbac"
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 23 Nov 2022 04:10:31 GMT
age: 4828908
x-served-by: cache-iad-kiad7000082-IAD, cache-bma1628-BMA
x-cache: HIT, HIT
x-cache-hits: 14077, 1
x-timer: S1669176631.299148,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 2847
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.9 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 53907
last-modified: Fri, 25 Sep 2020 03:48:14 GMT
etag: "5f6d687e-d293"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 1920
last-modified: Sun, 20 Dec 2020 03:34:01 GMT
etag: "5fdec629-780"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.11 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 161
x-accel-version: 0.01
last-modified: Mon, 25 May 2020 10:27:08 GMT
etag: "148-5a6766bc55700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/wp-phonering/css/style.css?ver=5.5.9 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 15318
last-modified: Fri, 21 Sep 2018 05:02:54 GMT
etag: "5ba47b7e-3bd6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "ED4AEC411FD30D5459779FC073EAEA80295660F194480496DF7595DF8A3CC8BB"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 23 Nov 2022 10:10:31 GMT
Date: Wed, 23 Nov 2022 04:10:31 GMT
Connection: keep-alive
|
GET /I HTTP/1.1
Host: www.googl-e.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
149.28.250.63
HTTP/2 200 OK
content-type: application/octet-stream
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 17035
last-modified: Wed, 18 Aug 2021 04:41:45 GMT
etag: "611c8f89-428b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/themes/noi-that/style.css?ver=3.0 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 224
x-accel-version: 0.01
last-modified: Fri, 21 Sep 2018 05:02:54 GMT
etag: "12d-5765a8d575b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/contentprotector/js/jquery.watermark.js?ver=5.5.9 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 9332
last-modified: Fri, 21 Sep 2018 05:02:54 GMT
etag: "5ba47b7e-2474"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 14280
last-modified: Sun, 20 Dec 2020 03:34:01 GMT
etag: "5fdec629-37c8"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 1122
last-modified: Fri, 16 Apr 2021 21:52:24 GMT
etag: "607a0718-462"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/logo.png HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 5148
last-modified: Wed, 21 Oct 2020 03:22:52 GMT
etag: "5f8fa98c-141c"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/themes/flatsome/inc/extensions/flatsome-lazy-load/flatsome-lazy-load.js?ver=3.11.3 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 2355
last-modified: Mon, 25 May 2020 10:27:08 GMT
etag: "5ecb9d7c-933"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 96873
last-modified: Sun, 24 May 2020 14:24:14 GMT
etag: "5eca838e-17a69"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-includes/js/wp-embed.min.js?ver=5.5.9 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 1426
last-modified: Fri, 16 Apr 2021 21:52:24 GMT
etag: "607a0718-592"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.9 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 14229
last-modified: Fri, 16 Apr 2021 21:52:24 GMT
etag: "607a0718-3795"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.11.3 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 137381
last-modified: Mon, 25 May 2020 10:27:08 GMT
etag: "5ecb9d7c-218a5"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 1720
Cache-Control: max-age=103745
Date: Wed, 23 Nov 2022 04:10:32 GMT
Etag: "637c88c1-1d7"
Expires: Thu, 24 Nov 2022 08:59:37 GMT
Last-Modified: Tue, 22 Nov 2022 08:30:57 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xaydunghoangtu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 549384
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xaydunghoangtu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:36:26 GMT
expires: Thu, 16 Nov 2023 19:36:26 GMT
cache-control: public, max-age=31536000
age: 549246
last-modified: Wed, 11 May 2022 19:24:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/pattaya/v12/ea8ZadcqV_zkHY-XBdmt9lZE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xaydunghoangtu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 23:23:08 GMT
expires: Sat, 18 Nov 2023 23:23:08 GMT
cache-control: public, max-age=31536000
age: 362844
last-modified: Mon, 09 May 2022 18:41:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/pattaya/v12/ea8ZadcqV_zkHY-XBdet9g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xaydunghoangtu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 17:04:27 GMT
expires: Fri, 17 Nov 2023 17:04:27 GMT
cache-control: public, max-age=31536000
age: 471965
last-modified: Mon, 09 May 2022 18:41:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xaydunghoangtu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:35:48 GMT
expires: Thu, 16 Nov 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 549284
last-modified: Wed, 11 May 2022 19:25:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:10:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 1720
Cache-Control: max-age=103745
Date: Wed, 23 Nov 2022 04:10:32 GMT
Etag: "637c88c1-1d7"
Expires: Thu, 24 Nov 2022 08:59:37 GMT
Last-Modified: Tue, 22 Nov 2022 08:30:57 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xaydunghoangtu.com/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.11
Cookie: HssSb3942757=6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/octet-stream
server: nginx
date: Wed, 23 Nov 2022 04:10:32 GMT
content-length: 6324
last-modified: Mon, 25 May 2020 10:27:08 GMT
etag: "5ecb9d7c-18b4"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /s/pattaya/v12/ea8ZadcqV_zkHY-XBdit9lZE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xaydunghoangtu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13132
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 07:47:37 GMT
expires: Sat, 18 Nov 2023 07:47:37 GMT
cache-control: public, max-age=31536000
age: 418976
last-modified: Mon, 09 May 2022 18:40:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
 157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:19:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: Q4SZcgQTAabjDzD2+gKJKr6ziyQ06wHv6vn8mmXB0+kuQdjy3wTVMUID0BmzHL5OAwJkzyKxHBk01s8b/V0KbA==
content-length: 1657
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 03:18:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: m+BQtPjWNbih3NkPDP8aeJSIVnefnV7FgVfmHv1ottnMxuFQ7O9P70HznPCRDJbEWaZVpMfMOPytg5/OtxyEfQ==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 01:47:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dzRxGBVHgZIJak35Crv6AQ==
x-fb-debug: mYoF2e1P7ghRejAJM02fWCgsd/dKefl60w4VqfDDrjYuscIKYr1aETRoBdkiOe/ue4siFzhXwZHQTDNWyiHklg==
priority: u=3,i
content-length: 8360
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 12 Nov 2023 16:49:53 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cejpO15V8gEAE7CBT0465Q==
x-fb-debug: K+vakdudtTdQF+msD/lkaUE6a2YRi6isCJuPTc0LNd9e9IlBt8LCzbYYbinXlIPe0wHMqStwCkhFMju4cwxNKQ==
content-length: 8748
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:19:38 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 37KShYF/ynsGi6DsmKojkg==
x-fb-debug: 7xJriGHNsmB5/T1Cwg2g4hhrlkKi0N3SIxzE4Uhhymx2s/s5WJwHZaYdliFwpRkCZST+OzT4OECl4om6NStC4w==
priority: u=3,i
content-length: 16262
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/yN/l/0,cross/rpeMW_reP7a.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.200.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 21 Nov 2023 16:56:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: shQ7D8/kml/ss900FNzuvQ==
x-fb-debug: oJH5Z9GK1hwo8ptkgSnLyGB4CPpuZSKkTRzWVNZuqiu96Vv+KxNQ9gGDVeJAnAYkFehVeJVkov93xkZ8ws7LQw==
content-length: 4323
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 10 Nov 2023 14:53:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: Zp1wPiIBW0tAEDCzIG+C15SNLQZuFBAuL7eGPEZ2EcUv1w5gNg/KYnLzpL+Ik9U2mzu8iznakPOFiuJ0CwtpxA==
content-length: 338
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 12 Nov 2023 16:53:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: 9DqJHAPrdMDmypf/NoQ+1HoYyKVzMkLtJvbIXR4QOJOOPFwO/mdx3WsOTc4adiwZRn2JRwyloMqLbifzUc1b+g==
content-length: 23455
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:04:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VxcAtaHo24jV15AHqRC5Yg==
x-fb-debug: NT+M5oXO8pwkIMnEqGwapf+WVRORcDdI9fHky/3paBQ/wwz6CTFWuVr8ViFofTrTwDWDAUG1I14mocRnBu+xzA==
content-length: 7238
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/yw/l/0,cross/_RgpdkW75Wy.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.200.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 18:06:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VRMR0djlrYmjm6nlouL93g==
x-fb-debug: bTysicilASjDDgG1doKr8u0jPc3z4lDl9nIO6R0cT7UX5QriUXaqp4nMZgWvvDiCANaNDvI8qfoc5Qoh6FSyvA==
priority: u=2
content-length: 3699
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/y1/l/0,cross/b9TGs_-VwbF.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.200.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 18:06:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: XV2NRSeeBVmUPW2a97kwtw==
x-fb-debug: X4ROC8NP25Ic54F5XX3l9ytzvy0DfEZ3HrvzLsDaG0UugrnVtP2tuMoB7c+oCpPskpXMRV6rx6gufa1GeFInpQ==
priority: u=2
content-length: 1165
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/fav.png HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 2835
last-modified: Wed, 21 Oct 2020 10:05:26 GMT
etag: "5f9007e6-b13"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: br
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:54:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: XKYCuFqqNH0kZrgnBK9d939R6pWs+fcIzk26id8p6lRkOvr6n2vQtYYz0yMcJoZ8xMvN0Ztyy0Cqwk+0Rwgf4Q==
content-length: 91088
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:10:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/sl1.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 26738
last-modified: Thu, 29 Oct 2020 04:26:47 GMT
etag: "5f9a4487-6872"
accept-ranges: bytes
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 870x321, components 3\012- data
Size: 26738
Md5: 41f08d6539bf24181a0054886abe3eb0
Sha1: 018b5649e61fbe0cffc16b3569ad5eae55a82d0b
Sha256: ef0a0030a21b99bdce44582a005fd94d239e6c4bee89a19a21e6f0e9a22eeb84
|
GET /wp-content/uploads/mong.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 284832
last-modified: Thu, 29 Oct 2020 04:10:51 GMT
etag: "5f9a40cb-458a0"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/img1-1536x1090.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 251515
last-modified: Thu, 29 Oct 2020 04:27:17 GMT
etag: "5f9a44a5-3d67b"
accept-ranges: bytes
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1536x1090, components 3\012- data
Size: 251515
Md5: 5ea5d899fad2f92b2ec09b073f717c7a
Sha1: 99e01a0a550bde6203063aa7647f896dc26c94ba
Sha256: 305ef9385a102f6b60335cb3f5cb67d83fa0cc82f193deb4ded7c3065506eb4d
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3571
Cache-Control: 'max-age=158059'
Date: Wed, 23 Nov 2022 04:10:33 GMT
Etag: "637d0e67-1d7"
Last-Modified: Wed, 23 Nov 2022 03:11:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
GET /wp-content/uploads/ONG-ICH-KHIEM-1536x2048.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 582259
last-modified: Fri, 11 Dec 2020 02:40:15 GMT
etag: "5fd2dc0f-8e273"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/dang-thi-cong-1.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 270558
last-modified: Thu, 29 Oct 2020 04:00:24 GMT
etag: "5f9a3e58-420de"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /wp-content/uploads/NAM-hotel.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 223329
last-modified: Thu, 29 Oct 2020 03:40:10 GMT
etag: "5f9a399a-36861"
accept-ranges: bytes
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 991x1200, components 3\012- data
Size: 223329
Md5: 7455f0490ef9025a66119e9309f05090
Sha1: 6cf4a09d49090d828799a71866f60e826337bd23
Sha256: c12831e0184d37e3cb44bb2a182696f60d02237ca500c24abf0d5735d053f98c
|
GET /wp-content/uploads/img1.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 229306
last-modified: Thu, 29 Oct 2020 04:27:09 GMT
etag: "5f9a449d-37fba"
accept-ranges: bytes
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1919x1362, components 3\012- data
Size: 229306
Md5: 7a1d51c4cb62091145dc16cccff6f6cc
Sha1: ce04bc2b15aacb16db0057be8c7726557435e547
Sha256: e0743be91f0eb52969e92c5d94c81bd8a3f2026b16b1719f68fa3bde26004255
|
GET /v/t39.30808-1/248663389_10158541204178553_8011492100387814626_n.png?stp=cp0_dst-png_p50x50&_nc_cat=103&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=MICSe4lglV8AX85x1Q2&_nc_ht=scontent.ftbs5-2.fna&edm=ANSO7JkEAAAA&oh=00_AfCLMm4vzDjZtvYcK3uWUhWt11rFmzovvMnSlFHs4qNRVg&oe=638272A6 HTTP/1.1
Host: scontent.ftbs5-2.fna.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 213.157.214.17
HTTP/2 200 OK
content-type: image/png
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 28 Oct 2021 21:41:42 GMT
x-haystack-needlechecksum: 2830878616
x-needle-checksum: 109046106
content-digest: adler32=2101318160
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 1861
date: Wed, 23 Nov 2022 04:10:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3571
Cache-Control: 'max-age=158059'
Date: Wed, 23 Nov 2022 04:10:33 GMT
Etag: "637d0e67-1d7"
Last-Modified: Wed, 23 Nov 2022 03:11:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
GET /wp-content/uploads/ONG-ICH-KHIEM.jpg HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6; wordpress_651d65323a405=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Wed, 23 Nov 2022 04:10:33 GMT
content-length: 1349938
last-modified: Fri, 11 Dec 2020 02:40:14 GMT
etag: "5fd2dc0e-149932"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /v/t39.30808-6/314890194_487568293403511_5506635707078463768_n.jpg?stp=dst-jpg_p75x225&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=iX2F7sqBT5wAX8z6Stb&_nc_ht=scontent-arn2-1.xx&oh=00_AfDdKpNUiZqps-xiiQmB2BlvTYR57Ly2B-QuWzYUxr0_Zw&oe=63819618 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.12
HTTP/2 200 OK
content-type: image/jpeg
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 07 Nov 2022 20:37:59 GMT
x-haystack-needlechecksum: 4219831774
x-needle-checksum: 2763380916
content-digest: adler32=2169749691
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 9795
x-fb-trip-id: 2050670934
date: Wed, 23 Nov 2022 04:10:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.30808-6/315756746_493935039433503_1580501792517664426_n.jpg?stp=dst-jpg_p235x350&_nc_cat=103&ccb=1-7&_nc_sid=8024bb&_nc_ohc=r1uN1MCfnD8AX-51F84&_nc_ht=scontent-arn2-1.xx&oh=00_AfA5V4jRWEehQHVv0Ayai73Zvl_fkiprsv-6aoru3GSdGQ&oe=6382BFC0 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.12
HTTP/2 200 OK
content-type: image/jpeg
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 16 Nov 2022 18:57:44 GMT
x-haystack-needlechecksum: 1267590077
x-needle-checksum: 3476616996
content-digest: adler32=3590548135
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 11724
x-fb-trip-id: 2050670934
date: Wed, 23 Nov 2022 04:10:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.30808-6/315601592_492388656254808_6925285830766631534_n.jpg?stp=dst-jpg_p235x350&_nc_cat=104&ccb=1-7&_nc_sid=8024bb&_nc_ohc=wbNrLwWnuq8AX8t4peN&_nc_ht=scontent-arn2-1.xx&oh=00_AfBvXUMp5_v4PQZ9KuFStj6JuZqcMCxG_B0Zj_5UZ3D0MQ&oe=63820AAF HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.12
HTTP/2 200 OK
content-type: image/jpeg
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 14 Nov 2022 17:09:45 GMT
x-haystack-needlechecksum: 2138646377
x-needle-checksum: 3104704882
content-digest: adler32=257247698
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 24954
x-fb-trip-id: 2050670934
date: Wed, 23 Nov 2022 04:10:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t15.5256-10/316608472_1505968503239775_5156894989005011548_n.jpg?stp=dst-jpg_s350x350&_nc_cat=104&ccb=1-7&_nc_sid=08861d&_nc_ohc=n-GsGkYG2I4AX97S33W&_nc_ht=scontent-arn2-1.xx&oh=00_AfDK5U1Y7W3aYPjkSyy0a-cZnW0DC3yN7ztydazSydyWdA&oe=6381BB84 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.12
HTTP/2 200 OK
content-type: image/jpeg
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 22 Nov 2022 15:01:59 GMT
x-haystack-needlechecksum: 3046911788
x-needle-checksum: 810877521
content-digest: adler32=3906005205
content-length: 9806
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 2050670934
date: Wed, 23 Nov 2022 04:10:34 GMT
x-fb-edge-debug: G5iHgZIAAGQrc9IJYgBiq7TZYYtweYkI8iZdN02gnUVcD5RvvtLYbQBufzt7DNoSt1dEFC7TAqRTt05PSfEMvONUsG3fM6l_izlJeRes9kA
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.30808-6/315843460_493080806185593_8217138244123855244_n.jpg?stp=dst-jpg_p173x172&_nc_cat=102&ccb=1-7&_nc_sid=8024bb&_nc_ohc=FuLItmcJRkAAX_3vbZI&_nc_ht=scontent-arn2-1.xx&oh=00_AfCtiBf--4C8IBl2Y_5bYj2C2KI1CstJQZJSOaGL5OsMLQ&oe=63824D19 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.12
HTTP/2 200 OK
content-type: image/jpeg
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 15 Nov 2022 16:59:50 GMT
x-haystack-needlechecksum: 1671115695
x-needle-checksum: 4210007317
content-digest: adler32=188126775
content-length: 7019
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 2050670934
date: Wed, 23 Nov 2022 04:10:34 GMT
x-fb-edge-debug: JleyWsjgadmoaTT7ZVE8Vpx3PqGRzadHJZqVq4_Gqjl7brjHxambZYC9q6ps88hfZSnCVrVUPZXif4ZGmbvcPmEP3rtECgZNUKcCavwNKR4
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.25447-2/316314680_1032596657699583_5113769031817252280_n.mp4?_nc_cat=100&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaTRsaXRlYmFzaWNfNXNlY2dvcF9ocTJfZnJhZ18yX3ZpZGVvIn0%3D&_nc_ohc=qSPBUEmBDSEAX_6WQGy&_nc_ht=video-arn2-2.xx&oh=00_AfBA8XvRn6Rtd3DdX13h6RxcqLzTR4jE9nNSG2F_FtT45A&oe=6383220D&bytestart=0&byteend=838 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.21
HTTP/2 200 OK
content-type: video/mp4
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Tue, 22 Nov 2022 15:01:56 GMT
x-haystack-needlechecksum: 0
x-needle-checksum: 1532965953
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1532965953
content-length: 839
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Wed, 23 Nov 2022 04:10:34 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t42.1790-2/316744112_799849194421586_6998189324204669477_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=bqVdD3XYozMAX9pTZsb&_nc_ht=video-arn2-2.xx&oh=00_AfDwhpRivOJheQ48OwUrNjwMTkNDh2A69fpU6Qv7pEvQCQ&oe=637DC725&bytestart=0&byteend=782 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.21
HTTP/2 200 OK
content-type: video/mp4
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Tue, 22 Nov 2022 15:02:40 GMT
x-haystack-needlechecksum: 0
x-needle-checksum: 272321244
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=272321244
content-length: 783
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Wed, 23 Nov 2022 04:10:34 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t42.1790-2/316744112_799849194421586_6998189324204669477_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=bqVdD3XYozMAX9pTZsb&_nc_ht=video-arn2-2.xx&oh=00_AfDwhpRivOJheQ48OwUrNjwMTkNDh2A69fpU6Qv7pEvQCQ&oe=637DC725&bytestart=783&byteend=1990 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.21
HTTP/2 200 OK
content-type: video/mp4
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Tue, 22 Nov 2022 15:02:40 GMT
x-haystack-needlechecksum: 0
x-needle-checksum: 272321244
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=272321244
content-length: 1208
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Wed, 23 Nov 2022 04:10:34 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.25447-2/316314680_1032596657699583_5113769031817252280_n.mp4?_nc_cat=100&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaTRsaXRlYmFzaWNfNXNlY2dvcF9ocTJfZnJhZ18yX3ZpZGVvIn0%3D&_nc_ohc=qSPBUEmBDSEAX_6WQGy&_nc_ht=video-arn2-2.xx&oh=00_AfBA8XvRn6Rtd3DdX13h6RxcqLzTR4jE9nNSG2F_FtT45A&oe=6383220D&bytestart=839&byteend=1338 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.21
HTTP/2 200 OK
content-type: video/mp4
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Tue, 22 Nov 2022 15:01:56 GMT
x-haystack-needlechecksum: 0
x-needle-checksum: 1532965953
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1532965953
content-length: 500
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Wed, 23 Nov 2022 04:10:34 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t42.1790-2/316744112_799849194421586_6998189324204669477_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=bqVdD3XYozMAX9pTZsb&_nc_ht=video-arn2-2.xx&oh=00_AfDwhpRivOJheQ48OwUrNjwMTkNDh2A69fpU6Qv7pEvQCQ&oe=637DC725&bytestart=1991&byteend=18610 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.21
HTTP/2 200 OK
content-type: video/mp4
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Tue, 22 Nov 2022 15:02:40 GMT
x-haystack-needlechecksum: 0
x-needle-checksum: 272321244
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=272321244
content-length: 16620
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Wed, 23 Nov 2022 04:10:34 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.25447-2/316314680_1032596657699583_5113769031817252280_n.mp4?_nc_cat=100&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaTRsaXRlYmFzaWNfNXNlY2dvcF9ocTJfZnJhZ18yX3ZpZGVvIn0%3D&_nc_ohc=qSPBUEmBDSEAX_6WQGy&_nc_ht=video-arn2-2.xx&oh=00_AfBA8XvRn6Rtd3DdX13h6RxcqLzTR4jE9nNSG2F_FtT45A&oe=6383220D&bytestart=1339&byteend=646623 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.21
HTTP/2 200 OK
content-type: video/mp4
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Tue, 22 Nov 2022 15:01:56 GMT
x-haystack-needlechecksum: 0
x-needle-checksum: 1532965953
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1532965953
content-length: 645285
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Wed, 23 Nov 2022 04:10:34 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /v/t39.2093-6/316540121_810899923318003_8692231635028652731_n.srt?_nc_cat=105&ccb=1-7&_nc_sid=8d539b&_nc_ohc=ASqBybF-hYIAX-3Jb3H&_nc_ht=scontent-arn2-2.xx&oh=00_AfD2kZxHOevef-pezon20hI91lg4-VPoeePmNM7EJ6uI5w&oe=63822FC3 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
157.240.194.27
HTTP/2 200 OK
content-type: text/srt
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 22 Nov 2022 15:01:19 GMT
x-haystack-needlechecksum: 3193521733
x-needle-checksum: 675278387
content-digest: adler32=675278387
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=1209600, no-transform
content-length: 5171
x-fb-trip-id: 1904183273
date: Wed, 23 Nov 2022 04:10:34 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44f9633f-15fe-459e-aebf-06d2b582efa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9766
x-amzn-requestid: ca8b7a9f-3c1a-419d-953e-2944bf820e5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcR_Hd4IAMFWUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d40d9-4ca5e9b2476a47cd199b9cba;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:36:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RZqqB_Aaam7hYpdAB2fbx-i3iQth9M-OgA25IgCB5Uz0swqVi3-bVg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:48:19 GMT
age: 22937
etag: "663cace8681891ad55943dd0273493aa9474d102"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.11.3 HTTP/1.1
Host: xaydunghoangtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Cookie: HssSb3942757=6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Wed, 23 Nov 2022 04:10:31 GMT
content-length: 171232
last-modified: Mon, 25 May 2020 10:27:08 GMT
etag: "5ecb9d7c-29ce0"
accept-ranges: bytes
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /css?family=Roboto%3Aregular%2Cregular%2Cregular%2Cregular%7CPattaya%3Aregular%2Cregular&display=swap&ver=3.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xaydunghoangtu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 04:10:31 GMT
date: Wed, 23 Nov 2022 04:10:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
--- Additional Info ---
|