firefox.settings.services.mozilla.com/v1/
18.165.201.80200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.80:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 10:05:37 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 675c3f96928d591debc37b54f2b16dc2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: nfyt6yjKlUfVOEY16A3UzJdX_zBSL9SsEfnTqfAOkHh10s81NwKHdg==
Age: 2430
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20905
Expires: Sat, 24 Sep 2022 16:34:32 GMT
Date: Sat, 24 Sep 2022 10:46:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.39200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.39:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 ed393405ff603a61a1e63909cf1c1a44.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: VNDRKzaEoFXjIQGlj9vqSydicTIAszwW98oqxMiMTT3Ese1-sJy2Fw==
age: 23584
X-Firefox-Spdy: h2
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
202.191.56.152200 OK 3.8 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (339), with CRLF line terminators
Hash 3c9d5d97846a9bc36f82fa064c998102
2ad666d355141c374774637921408670507df585
68570c66fec1bff3d3af00c2a5060ee785687bb3577caac59ea37d8b8f39f6a5
Analyzer Verdict Alert openphish DGI (French Tax Authority)
fortinet Phishing
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:33 GMT
Content-Type: text/html
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-5036"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 10:46:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js
104.17.25.14200 OK 2.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js
IP 104.17.25.14:0
Hash 25ba6cf71f56fb6f70738a4a73257a10
95b2f9d962ad149cb94f336a69c2627e94f1eb43
907bed0c556e0dd60a67eca19c4d684445a4e3d45af5e78a1320fa35777894da
GET /ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ts.hust.edu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 10:46:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 2306
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-284d"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 129254
expires: Thu, 14 Sep 2023 10:46:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=abxTL8w0zoIiWORid2jZ0Buj78g8%2FDBi1p9ojR3a49FowgIHPnlcu%2FGrXUcrUCkB4wUXek3z52QbOizepCLjmVX6mYgMoYxvFm3bftut0kGzv1Pld0X7Vk06iQnV2YAsJ4Tqug%2BE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74faef3c5d221c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css
202.191.56.152200 OK 3.9 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type ASCII text, with CRLF line terminators
Hash 1b1409e902b0ba224c59f4c590f8e253
10f003e6a5c8de111781212a2eec65217f73def9
738aed6cd4108fd2d26045552a0110d9a25446b8c55e8b2a900cc137c4a755f9
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-44fe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.80200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.80:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 10:20:46 GMT
Expires: Sat, 24 Sep 2022 10:48:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 25bae94046433e736c44a6c37f27c7c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: q5LDh6Sjel6cRF593vQ2V6hDieMmqgXU5a2AVR6Xvf7Oj6SUyhwNfQ==
Age: 1522
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/imp.css
202.191.56.152200 OK 5.2 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/imp.css
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type ASCII text, with CRLF line terminators
Hash 9322a061b1051faa0080c36095ee2472
28d10482e43a63c2b7b6b0851c300d764c93730a
b0c7406fffd368efea139cae5d743f7959b660d0feb772c667eb6f91940cbaf9
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/imp.css HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-919a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/bootstrap-3.3.6.min.css
202.191.56.152200 OK 21 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/bootstrap-3.3.6.min.css
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type ASCII text, with very long lines (391)
Hash b16c347c97c573785f413e7a556ba5c4
669ef88dc6b2c3ab02d9acae233118ef8c940a86
e3a7d66e8012d7d427e1f479c5dccea4fd7abc833c690eddabb562bb13708724
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/bootstrap-3.3.6.min.css HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-2454c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5876
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 10:46:08 GMT
Last-Modified: Sat, 24 Sep 2022 09:08:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js
202.191.56.152200 OK 30 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type ASCII text, with very long lines (32014)
Hash ae9d8d4c0dec623c2576c2fb03a51cea
d48b4b306fd21b80467d5b0913ff06bc5b949bb5
261d0b1ea5b85979c59923aa544fe4bea3743882b2e02a83020befc328c2d696
Analyzer Verdict Alert fortinet Phishing
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/jquery-3.1.0.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: application/javascript
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-1514f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JKvTKVI5bypu7qE4TfGL/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ETpcBAugElJ1wMPPlVAELXJylpY=
ts.hust.edu.vn/templates/js/auth.js
202.191.56.152302 Found 2.6 kB URL HTTP/1.1 ts.hust.edu.vn/templates/js/auth.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
Hash f5a20640f9e3d13928832906c210ef6b
249f8f2f143328773d58c5f61b7cefdc5197b5bb
2f79120fcce22ce65e31a194fba6d91f98eb24fab335e1a4ea2efd1652165f17
GET /templates/js/auth.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/3.jpg
202.191.56.152200 OK 7.0 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/3.jpg
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x45, components 3\012- data
Hash ba40b5bc6558ae28bab303713d66aba3
16a2568e929284211d499d61284165784fe642b4
18663e074265ad94586ebd4160167e55887e265f9e37ce69bb8ea19abab0042d
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/3.jpg HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/jpeg
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-1bc6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/2.gif
202.191.56.152200 OK 2.9 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/2.gif
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type GIF image data, version 89a, 138 x 25\012- data
Hash b9363117057844b4d4df68840ac836c5
edacc659123f8f10cc8e1142b32c8eb479a89aca
90c6cafd16686949db04068e896ed28ad5a7d04219184cdeca2c1f0c9954ddf3
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/2.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-b32"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/4.gif
202.191.56.152200 OK 3.2 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/4.gif
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type GIF image data, version 89a, 143 x 45\012- data
Hash b4274999a7ae51e76dc96bd4de359c99
dc4448578af98d4a6d819a24483d77af27b96b30
8b57b82f3b6631bb7f3b5f7c3d595910352ed657ff6deaab020438b6ba5d0f9f
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/4.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-d23"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/5.gif
202.191.56.152200 OK 1.9 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/5.gif
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type GIF image data, version 89a, 118 x 40\012- data
Hash a80f762f2768fa3f5a8e2b432f77d97b
5e39341f051a2c3fc238bf1eba51fe0c76e28ea5
8c6157aeb6b7a3ac5abae2ba8c584a2c4de04f602f79b3c5980a38b958ac5ec8
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/5.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-733"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash d3b4aa01e8f584ae3bd4d94df403375d
190e6c5ee1fbae168a7f1a71b6542d339d634762
0ac37aee4ce0926f33b8429eb70e667bb76d978ac87f0aad5dbd39b8384b6e81
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 10:46:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 06:59:02 GMT
Expires: Fri, 30 Sep 2022 06:59:01 GMT
Etag: "190e6c5ee1fbae168a7f1a71b6542d339d634762"
Cache-Control: max-age=504171,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74faef431fd80b51-OSL
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg
202.191.56.152200 OK 23 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1263)
Hash 0369d85cd8ed14ce5be2744ee2eb52d2
d78644594cb8c29bf7ab61209fcea528b6d1aff7
c608999ad33b3f1e7df1b0e00638b1f821f3002e4ea2d27a6bd9aec400b6756a
Analyzer Verdict Alert fortinet Phishing
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/Logo-Marianne_impots-gouv-fr.svg HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/css/autentification.css
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-13d96"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
cfspart.impots.gouv.fr/templates/images/Cadenas.svg
145.242.11.27404 Not Found 2.9 kB URL HTTP/1.1 cfspart.impots.gouv.fr/templates/images/Cadenas.svg
IP 145.242.11.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Hash 31c8c7c86c2a6814948044e8714acddb
49cf9783f5f57a2a843a141c27bed79f54a5c2aa
8254c9ce56497ac4e9e296b9b8d35cccde8872e5961de17b7b7bb65d8c2cf1db
GET /templates/images/Cadenas.svg HTTP/1.1
Host: cfspart.impots.gouv.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ts.hust.edu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 10:46:09 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Last-Modified: Tue, 19 Mar 2019 06:51:47 GMT
ETag: "23cba-b72-5846cf064161c"
Accept-Ranges: bytes
Content-Length: 2930
Via: dpapusx039
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/1.gif
202.191.56.152200 OK 2.8 kB URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/1.gif
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type GIF image data, version 89a, 124 x 28\012- data
Hash d23a7a551c4f41da8f63558ff800badb
107d8d01b8f1ebeda638eda3f6f9521babe5b136
8a47b98fb782f38188433d8e3ba526d7dcf2c91e30c322219530700ae5b26472
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/1.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: image/gif
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-afc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg
202.191.56.152200 OK 778 B URL HTTP/1.1 ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (340)
Hash 414f563159726d51b4e055bae11a9807
4e1d495ecfc67a5b31d06315211ed72c0cd06ff7
71e61a7480e7cc0cf83c782310bfca6845c0fb5884e5791bd9bbf9a0439657bf
Analyzer Verdict Alert fortinet Phishing
GET /vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/templates/images/fermer.svg HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 28 Jun 2022 23:51:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"62bb940c-6dd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4554
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 10:46:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:25 GMT
age: 46125
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 46664
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 46494
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 46663
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e125802119a2737820b343c4e9ecfb6
30ccc2dd2597b5b720d66c960ee8bd63c7115630
90cce372b2b8c89569fffc55de468bfc7cd4b7454ae7c55c48b7a846506b576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11059
x-amzn-requestid: 65fe1c05-a158-4ac2-8368-f26da119ef68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcDTgGV4oAMF0iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217f49-74fc5c511bee36fd11d6d2eb;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:14:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Hf6b2w52aGxhlEdZTkKW8dXdKXP8uHL5MC85kk2VGI5E_SY3Z6HwQA==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:14:59 GMT
age: 45071
etag: "30ccc2dd2597b5b720d66c960ee8bd63c7115630"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f8ec9ca7c408ca57caff620b84f4966
11f9de5bb99c54c12b0911b02792ac2e53d41f91
1c6461a0f9ee587483424f3ae262a8ee0293f1a9a137ebe6f946936bc69cf100
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6350
x-amzn-requestid: c9024bbf-4ef3-469e-bd6c-d096c1031296
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tCDGq9IAMFswQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2873-6d66c8f11f6142bd30308b06;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _yXYn6UMNBtXtXnbVjONx46T75rZ-Y3W4KiXPLjlgbQH9Tu8uOrAkg==
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:25 GMT
age: 46665
etag: "11f9de5bb99c54c12b0911b02792ac2e53d41f91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ts.hust.edu.vn/templates/js/bootstrap.min.js
202.191.56.152302 Found 3.1 kB URL HTTP/1.1 ts.hust.edu.vn/templates/js/bootstrap.min.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
Hash 23ad93471fd90c42f00c95f10fd92ec2
4100d6220110093de9cec032a3e8500642b4a03f
db474d1bcd618c7c7a2defcde286eed61cbc117cb345bbd7982ce938b3c2ca0c
GET /templates/js/bootstrap.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Cookie: XSRF-TOKEN=eyJpdiI6IlBQa2l6ME4rQThUMWVIdUFKSFNRMnc9PSIsInZhbHVlIjoiYW9yem5zNWl6T3FwU0FTY21KK1dzSk1heXFqSEN1RVVtTmQzSThlUVMwb21QVFgwNGVKRTY4UzA3ZWVBbGxQODlmS3RrRVNMbGZJbHBibVV0QUVuWHc9PSIsIm1hYyI6IjAwNmE1OWFlOTFjMmY3YTQyMTA1NjBmMTA2ZDUzZDhhNWIyMDIwYzE1MzVmMTE4MGU4NzU2MzEyZGQzYjJmMTQifQ%3D%3D; laravel_session=eyJpdiI6Ijk0SjNWWVZ2eVZDZmhZQ1wvS25iR2d3PT0iLCJ2YWx1ZSI6ImpaYUtlakdnYlhcL3FIM2JuZElRbGRGUzVRcGJsZU9sZStyUWt3YXUxdlpGaWc3d3FTbGtSd29ER1E5WXBNXC9zWG5wS3I1WXQ4QXEwVVpjQktXSHJuc2c9PSIsIm1hYyI6ImNjODNkYWMwMjc4NjhkMzhhMDYzZmM0Y2QwM2Y1NjQ3Mzc0YTA0NTZhODE2YWY1MGJkYjZiOWY0Yjc5NmI3NDIifQ%3D%3D
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/templates/js/jquery-1.11.3.min.js
202.191.56.152302 Found 0 B URL HTTP/1.1 ts.hust.edu.vn/templates/js/jquery-1.11.3.min.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /templates/js/jquery-1.11.3.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/404
202.191.56.152200 OK 0 B IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkpJNXNmcFNpMStKbnp0R1ptcElNOGc9PSIsInZhbHVlIjoicmNPMm9pcDhUb3MrZTZQT0Z0OG9QUkpyUE9yRTZsZzJHbGlxV2FZdEZxdDl4d2tFT1luZE43WVdTOTJSeHAzZ1RiVytHRmFvYURTRlNxSGYweVFvOWc9PSIsIm1hYyI6ImYxYWFkZDQ5NGZjY2YwY2Y0NTg5OTRjNjBjN2U0MjkxYTliZDc4MzRlZTViNWZmYTE4N2ZhZWQ1ZDdkMmFiNzQifQ%3D%3D; expires=Mon, 24-Oct-2022 10:46:35 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6Ik1heWFOMXVXbFZYWXRqcWpNcytQSUE9PSIsInZhbHVlIjoiVkUwODJEcUJzRGFVQWRiQVdxdlB3M3lob2duS01OTzBUd3orUHBCS2tMaW9KajBGYXRvUzFNalkwMmZJbHV0RVFvMlQzRmhCYTVKYnFPQzRVc3BpSEE9PSIsIm1hYyI6IjBmNGFmMzhiYzkyNzJkOTU4ODE1YWM3OTI3MGVmMDc1ZGMzYTQ5Njc1MGQ4NWFiZmRlMDZjY2JmMDliZTRlNTAifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/404
202.191.56.152200 OK 0 B IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlBQa2l6ME4rQThUMWVIdUFKSFNRMnc9PSIsInZhbHVlIjoiYW9yem5zNWl6T3FwU0FTY21KK1dzSk1heXFqSEN1RVVtTmQzSThlUVMwb21QVFgwNGVKRTY4UzA3ZWVBbGxQODlmS3RrRVNMbGZJbHBibVV0QUVuWHc9PSIsIm1hYyI6IjAwNmE1OWFlOTFjMmY3YTQyMTA1NjBmMTA2ZDUzZDhhNWIyMDIwYzE1MzVmMTE4MGU4NzU2MzEyZGQzYjJmMTQifQ%3D%3D; expires=Mon, 24-Oct-2022 10:46:35 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6Ijk0SjNWWVZ2eVZDZmhZQ1wvS25iR2d3PT0iLCJ2YWx1ZSI6ImpaYUtlakdnYlhcL3FIM2JuZElRbGRGUzVRcGJsZU9sZStyUWt3YXUxdlpGaWc3d3FTbGtSd29ER1E5WXBNXC9zWG5wS3I1WXQ4QXEwVVpjQktXSHJuc2c9PSIsIm1hYyI6ImNjODNkYWMwMjc4NjhkMzhhMDYzZmM0Y2QwM2Y1NjQ3Mzc0YTA0NTZhODE2YWY1MGJkYjZiOWY0Yjc5NmI3NDIifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/404
202.191.56.152200 OK 0 B IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImRTQjJWMXhBekU4WkZHQnUwQ2ltR2c9PSIsInZhbHVlIjoib3hhWXU3SHA1TE1CRkI5ajhwTTd4QllnRVVcL3VyZTlYVERQMFFJNVphaW1GTDFWSmJYMkJ4QklsMnpuUWZTdTB0VFI2czJsdUlnaGJTdzVmYm9FY1wvdz09IiwibWFjIjoiMGU2M2U5M2EzMTdmNjQwNjE0MTJkNmExYTdkMGI1ZDA3MzZmOTcyMzgyZWFhY2UwZjIwMjE5NGI1Nzg2ZTY2MyJ9; laravel_session=eyJpdiI6IlwvUEU5dXVrQWxJbVo2NWhRcWdNNzZRPT0iLCJ2YWx1ZSI6IjVST1JJYldGOFVvTFZXSlF6VVl1S29zNXFCTnV0ZDU0ekcxRHAwZTNnUmlhU3RNXC9tYWR0OWhEYmtrUFwva1ZoVFY1bnhMZnJXdUorM0tVaHB3V1FxdEE9PSIsIm1hYyI6IjUyODNlZTJiODFhMjBmMzIxNzRjZjA2M2IxMjU2YWZmOWRiNGE1MDlhMjIzMjUxMGU2YWY2ODlkZjVkN2EzZWEifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlpKWnpPXC9MU1wvQldQaGkrQktUWHRvZz09IiwidmFsdWUiOiIyTGx6RnlSOStUZnNIcXFZVUgxMXc5Rlh6aTVvXC81XC9sZ1J0SkVCMFIyQTdwU0RqUmtFMm9UOVg2XC9qNSt3Y1BNSWs5aVJRKzNnRjF2bGp4QzM1UVc2UT09IiwibWFjIjoiYzMwOGZlMDNmZjVhMjE3NzlkMWRlZTYxMGQ3NWI1ODc0OTFlODczY2ViNGM0NTU5Y2YwYmZjODhhNDc0MTZhZiJ9; expires=Mon, 24-Oct-2022 10:46:37 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6IlcrRVpBXC93NDlBOXpQbUx4d3lNRkdBPT0iLCJ2YWx1ZSI6IlN1UUd0SjFrVk1jV25YZ0lxY3M1S095MGgzWmV6alZSME9hQ01aSWcyWXFYVWF1bFlKSFRlQ0hiV1NFSnhhdkhZeU9HQWdzdGU5Q25vRmY1b1wvNGRwZz09IiwibWFjIjoiMmJlMTZkZTAyM2NiY2VjZjVjMTg2ZjBkN2FhNGY5NzAyNTA2YzVmYzQ3NzU2MTUzNzNhMTY2ODQ0NzQ3ZGQ4ZiJ9; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/templates/js/urls.js
202.191.56.152302 Found 0 B URL HTTP/1.1 ts.hust.edu.vn/templates/js/urls.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /templates/js/urls.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/templates/js/bootstrap.min.js
202.191.56.152302 Found 0 B URL HTTP/1.1 ts.hust.edu.vn/templates/js/bootstrap.min.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /templates/js/bootstrap.min.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/templates/images/Miniballs.gif
202.191.56.152302 Found 0 B URL HTTP/1.1 ts.hust.edu.vn/templates/images/Miniballs.gif
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /templates/images/Miniballs.gif HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/404
202.191.56.152200 OK 0 B IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkVTV1pNdlAwbVh5dTM0a2J4YVhFQ3c9PSIsInZhbHVlIjoieEx0R1lLY1FVWXZtQlkrTm5NWTEyWW42M3RyRmhYQU5JSFQxMVY5OWJXUU1SKzd5QXNGazFLVWo3T1gzNSt0TXBRZDVwc0ZxeWVxS3I4ZFM0Vys5Smc9PSIsIm1hYyI6ImRjMTVlNzAxMjYxNjE1YjU4NzBkNzI4MDM3N2Q3ZDk4OTlhNWMzZDcyZGQzNjMzOGI3YzFiN2RjNDk1NTMxNDAifQ%3D%3D; laravel_session=eyJpdiI6ImpIT0lTM2pkdHJKZXZrd2pMRHZFbHc9PSIsInZhbHVlIjoibTRHNnVITm5xTVdGZXVvZGVCVjNYQXlWd2xlY0ZNK2VpUGx6azdBMzNXY2x3XC84eXdFR0hCUnc2SnUyWndhRHh6cExWd2hVYU54TWlcL0J2ZFwvZGhad2c9PSIsIm1hYyI6ImU1YzE4ZGY5NjI0M2Y1N2UyMjY2ZmVkYjU4MjgwMGJmMzhiODdiMGM0Njc1ZTc0ZDQ3OGQ3ZmE3MGY3NjY1ZTcifQ%3D%3D
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImRTQjJWMXhBekU4WkZHQnUwQ2ltR2c9PSIsInZhbHVlIjoib3hhWXU3SHA1TE1CRkI5ajhwTTd4QllnRVVcL3VyZTlYVERQMFFJNVphaW1GTDFWSmJYMkJ4QklsMnpuUWZTdTB0VFI2czJsdUlnaGJTdzVmYm9FY1wvdz09IiwibWFjIjoiMGU2M2U5M2EzMTdmNjQwNjE0MTJkNmExYTdkMGI1ZDA3MzZmOTcyMzgyZWFhY2UwZjIwMjE5NGI1Nzg2ZTY2MyJ9; expires=Mon, 24-Oct-2022 10:46:36 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6IlwvUEU5dXVrQWxJbVo2NWhRcWdNNzZRPT0iLCJ2YWx1ZSI6IjVST1JJYldGOFVvTFZXSlF6VVl1S29zNXFCTnV0ZDU0ekcxRHAwZTNnUmlhU3RNXC9tYWR0OWhEYmtrUFwva1ZoVFY1bnhMZnJXdUorM0tVaHB3V1FxdEE9PSIsIm1hYyI6IjUyODNlZTJiODFhMjBmMzIxNzRjZjA2M2IxMjU2YWZmOWRiNGE1MDlhMjIzMjUxMGU2YWY2ODlkZjVkN2EzZWEifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
ts.hust.edu.vn/templates/js/auth.js
202.191.56.152302 Found 0 B URL HTTP/1.1 ts.hust.edu.vn/templates/js/auth.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /templates/js/auth.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Cookie: XSRF-TOKEN=eyJpdiI6IlpKWnpPXC9MU1wvQldQaGkrQktUWHRvZz09IiwidmFsdWUiOiIyTGx6RnlSOStUZnNIcXFZVUgxMXc5Rlh6aTVvXC81XC9sZ1J0SkVCMFIyQTdwU0RqUmtFMm9UOVg2XC9qNSt3Y1BNSWs5aVJRKzNnRjF2bGp4QzM1UVc2UT09IiwibWFjIjoiYzMwOGZlMDNmZjVhMjE3NzlkMWRlZTYxMGQ3NWI1ODc0OTFlODczY2ViNGM0NTU5Y2YwYmZjODhhNDc0MTZhZiJ9; laravel_session=eyJpdiI6IlcrRVpBXC93NDlBOXpQbUx4d3lNRkdBPT0iLCJ2YWx1ZSI6IlN1UUd0SjFrVk1jV25YZ0lxY3M1S095MGgzWmV6alZSME9hQ01aSWcyWXFYVWF1bFlKSFRlQ0hiV1NFSnhhdkhZeU9HQWdzdGU5Q25vRmY1b1wvNGRwZz09IiwibWFjIjoiMmJlMTZkZTAyM2NiY2VjZjVjMTg2ZjBkN2FhNGY5NzAyNTA2YzVmYzQ3NzU2MTUzNzNhMTY2ODQ0NzQ3ZGQ4ZiJ9
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/templates/js/urls.js
202.191.56.152302 Found 0 B URL HTTP/1.1 ts.hust.edu.vn/templates/js/urls.js
IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /templates/js/urls.js HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Cookie: XSRF-TOKEN=eyJpdiI6IlppUms1eGRzYXd0ZHZranVHeDdYSnc9PSIsInZhbHVlIjoiV2RSekFEeWVsQ2NDZVwvRUxxME83QlpqbEhnWGlnNUpPUTE3Z1dpcTM1T0JVY0lIaXZcLzE0VjAzWUhmVkZUWGdpSkhSS1hrRmZYWnlKaUxuYzRBcnBsUT09IiwibWFjIjoiZjkwOWM0NDI1ZTA2NDk3M2IzMmE3OTMzZWQxY2U2NThiNDFiMmEyMmY1YmJjOWQ3ZDJiMTUzYjY1NTE4MTViMSJ9; laravel_session=eyJpdiI6IlhoRVpOSUVRbE04UkU0K0F5ZCtld1E9PSIsInZhbHVlIjoiSmNKcHBzRStFQmVieXhNRVBmblpxNXBrWlwvM2tXTXpyTzlsa2xNdTNLUjJvT2tqQ3gwUDdSNStZblFBeitGVU80OTZMMjlQUllLYlZldHpkXC9DNmpEZz09IiwibWFjIjoiNjg1ZGMzZjYzZmNmMGRiNTc4ZGMxNTYzYzczNDVkNWU3OTZlOTdlZjVkYTg5MTZkM2RiNTBlOTRkNTYwYmM0MCJ9
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: no-cache, private
Location: http://ts.hust.edu.vn/404
ts.hust.edu.vn/404
202.191.56.152200 OK 0 B IP 202.191.56.152:0
ASN #38727 Ha Noi University of Technology
GET /404 HTTP/1.1
Host: ts.hust.edu.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ts.hust.edu.vn/vendor/jeremeamia/ts/fonction/009874-8575756-7565746-875646001/impot-bnq/f7ccb5cf014b6690e7d5/sms2.html
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 10:46:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkVTV1pNdlAwbVh5dTM0a2J4YVhFQ3c9PSIsInZhbHVlIjoieEx0R1lLY1FVWXZtQlkrTm5NWTEyWW42M3RyRmhYQU5JSFQxMVY5OWJXUU1SKzd5QXNGazFLVWo3T1gzNSt0TXBRZDVwc0ZxeWVxS3I4ZFM0Vys5Smc9PSIsIm1hYyI6ImRjMTVlNzAxMjYxNjE1YjU4NzBkNzI4MDM3N2Q3ZDk4OTlhNWMzZDcyZGQzNjMzOGI3YzFiN2RjNDk1NTMxNDAifQ%3D%3D; expires=Mon, 24-Oct-2022 10:46:35 GMT; Max-Age=2592000; path=/
laravel_session=eyJpdiI6ImpIT0lTM2pkdHJKZXZrd2pMRHZFbHc9PSIsInZhbHVlIjoibTRHNnVITm5xTVdGZXVvZGVCVjNYQXlWd2xlY0ZNK2VpUGx6azdBMzNXY2x3XC84eXdFR0hCUnc2SnUyWndhRHh6cExWd2hVYU54TWlcL0J2ZFwvZGhad2c9PSIsIm1hYyI6ImU1YzE4ZGY5NjI0M2Y1N2UyMjY2ZmVkYjU4MjgwMGJmMzhiODdiMGM0Njc1ZTc0ZDQ3OGQ3ZmE3MGY3NjY1ZTcifQ%3D%3D; path=/; HttpOnly
X-Cache: HIT from Backend
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip