r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16807
Expires: Thu, 01 Dec 2022 06:00:30 GMT
Date: Thu, 01 Dec 2022 01:20:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2906
Cache-Control: max-age=122362
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 01:20:23 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:19:45 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2563
Expires: Thu, 01 Dec 2022 02:03:06 GMT
Date: Thu, 01 Dec 2022 01:20:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 01:19:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 38
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fUo0Y6Lv6xVC+mBj40kGW0/V8VMDV/8jOuz/+iZcAtL2AwDdw/OFZyPbUrxQm1Dnnh6bz+gqjGU=
x-amz-request-id: 0ZZ07F6FP8A6CWXJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 00:45:27 GMT
age: 2096
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 01:20:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 01:08:56 GMT
cache-control: public,max-age=3600
age: 688
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
61.14.235.159301 Moved Permanently 0 B URL HTTP/1.1 daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
IP 61.14.235.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Apache
Date: Thu, 01 Dec 2022 01:20:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Cache-Control: max-age=0
Expires: Thu, 01 Dec 2022 01:20:23 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2949
Cache-Control: max-age=117336
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 01:20:24 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:56:00 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zChW2xSKdXkojdt9leMFnQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eIjjSOjhAkxw0l7U3+ZAjCTGIyA=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ef57eb96936d33948d6f903c2cc3a99f
c621432dd607471a80b04cc08543e98ea38b5f43
40ba276a1442e5f710c2f8e6ff86574b29fc615a64c8230a7c43c452ce215374
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40BA276A1442E5F710C2F8E6FF86574B29FC615A64C8230A7C43C452CE215374"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21534
Expires: Thu, 01 Dec 2022 07:19:19 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d0219e6bee2a28f003f396f872eecf0
b3d22d146c6094cb539de40a72b9c5a140802ee5
41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7609
x-amzn-requestid: 1a464872-7c15-42d3-a12a-f344adf99662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PHVUoAMFf4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-3f77f387752222b212d6e2a5;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XUcf5sxPRTQEOS_HWPDW5ioStuq1TPMKvKQSRi2kZI5TbTWEVKFfog==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:42:48 GMT
age: 77857
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1fe6f5b-2658-4434-b276-36d841c8ceee.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1fe6f5b-2658-4434-b276-36d841c8ceee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42c762f71487f8e0285dd2129700f069
ec0fd74a981603e197df26c6fb79ef039f737557
8a40883d87b1e2c6e116e3cf881a8b39c987200a8556b651f78a376b3ddbaa26
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1fe6f5b-2658-4434-b276-36d841c8ceee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8124
x-amzn-requestid: e000c0d5-82d0-41a8-8def-b36970226969
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0UqEd1oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdb7-27efd8c92b8f6e4f257cec3b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1GIxjB2nXfoxuqJHLtkXl4OJT_Po5DJA_w26E2K8WOmm_PZw1qU3IQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:19:35 GMT
etag: "ec0fd74a981603e197df26c6fb79ef039f737557"
content-type: image/jpeg
age: 10850
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37004182402c955f288eb1fa8df7aef4
01a07f9a5725f608fafeced7b3d1ebdbcb776c29
c90c80dd5cadbde3fef20a9c4561b1efa47401e5f6bdf64c91246553c50204f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7957
x-amzn-requestid: 54f43d6b-cf41-4067-b459-6b8d98869354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PGgNIAMF2Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-069ac54c22797a511c69a220;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5et72pBhP9fdm4fNy6V5AJjs7B5N3HUGgaToNJV3LbA59D-0QDAMvw==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:31:51 GMT
age: 78514
etag: "01a07f9a5725f608fafeced7b3d1ebdbcb776c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg
34.120.237.76200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5469e846da1e0f21cfc480f56a656a6
b3eaec75f854d22cd1dcd6aa42e37f6d0df50036
d5701207a8b6b358359ebfd85a6916af7a3abf79acba235bf7d4131b0bc2e9b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2382
x-amzn-requestid: 7279ff68-1e32-4c57-9b9d-f5803a19e8e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJYQuEmEIAMFkeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806d9e-2cf28dc150b53b9f3c60bb4c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:24:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UaUyc03Gw0P7G_7gjAyp-c3XxjIDbllO7lmG_8UWVCuBP4WgEgSydQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 14:26:41 GMT
age: 39224
etag: "b3eaec75f854d22cd1dcd6aa42e37f6d0df50036"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e3a9eb-bc9d-4e50-8738-e978a333d2ae.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e3a9eb-bc9d-4e50-8738-e978a333d2ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80e7af4c2331ee27460e67d6d84f5740
ce0321a9b4ea6b56f8d768796a16f26520654b50
a05bb542d7c711b71a7a9a857130acf888a6400f4eb32ff5df1a506a3f8591ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e3a9eb-bc9d-4e50-8738-e978a333d2ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4542
x-amzn-requestid: 254467ba-82aa-4964-9e3b-04b2d79a43d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJWiqEQhIAMFnJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806add-2ad86b6031c6984c43f2741d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:12:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2J8Dkm4nUOgJfxXf1aXt3_z-mOmxeksWf0TbTp9mQXOjI1skSW7XJg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 02:00:33 GMT
age: 83992
etag: "ce0321a9b4ea6b56f8d768796a16f26520654b50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 22939
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
61.14.235.159200 OK 23 kB URL HTTP/1.1 daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
IP 61.14.235.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47490), with CRLF, LF line terminators
Hash 5b961653c4732f01610d1f2486681721
a5aff4e223aa8da67df784597e0edba5535a44d9
383782ce9e7dd2a11206c537b2ef486204b688c21ace85cc636756f779c98f01
GET /download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:27 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 23436
Connection: keep-alive
Link: <https://daominhha.net/wp-json/>; rel="https://api.w.org/", <https://daominhha.net/wp-json/wp/v2/pages/398>; rel="alternate"; type="application/json", <https://daominhha.net/?p=398>; rel=shortlink
Cache-Control: max-age=0
Expires: Thu, 01 Dec 2022 01:20:25 GMT
Content-Encoding: gzip
images.dmca.com/Badges/DMCABadgeHelper.min.js
151.139.128.10200 OK 395 B URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js
IP 151.139.128.10:0
Hash 365ad8f83802168e7326b29df6a22f4a
a096aa3c7e46525c7b7c54cb6b7987f01559b688
dafd787e6bf2c7ed10cb6c14f36ada4e5e9b7c15ffe7393cd6000acb946ebf13
GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 01:20:26 GMT
content-encoding: gzip
content-length: 395
content-type: application/javascript
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
cache-control: public,max-age=31536000
etag: "26b181f16d28d51:0"
x-powered-by: ASP.NET
x-hw: 1669857626.cds232.sk1.hn,1669857626.cds225.sk1.c
link: <https://www.dmca.com/Badges/DMCABadgeHelper.min.js>; rel="canonical"
access-control-allow-origin: *
X-Firefox-Spdy: h2
images.dmca.com/Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1
151.139.128.10200 OK 2.2 kB URL HTTP/2 images.dmca.com/Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1
IP 151.139.128.10:0
File type PNG image data, 121 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c626298d2bc133121172b17e8ac5cf
7e0d59debd84381b1c5a64136e6ef4c4f24034cc
075535cca15623d527f533d7a54e63ed6f4443eb7113d850447b959569fbc6b3
GET /Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1 HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 01:20:26 GMT
content-length: 2152
content-type: image/png
last-modified: Tue, 04 May 2010 23:19:10 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
cache-control: public,max-age=31536000
etag: "20bc6d33e0ebca1:0"
x-powered-by: ASP.NET
x-hw: 1669857626.cds232.sk1.hn,1669857626.cds227.sk1.c
link: <https://www.dmca.com/Badges/dmca_protected_sml_120m.png>; rel="canonical"
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 01:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-183268939-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-183268939-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 61b003887f823229c70813d5c18c4fb6
d5ffcec408a2ab2671f42b5efc648723d273ca55
44766f7427852e69133ab1ff31842eaaf9991222372bb6f80cb8ea8b59a3d453
GET /gtag/js?id=UA-183268939-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 01:20:26 GMT
expires: Thu, 01 Dec 2022 01:20:26 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43583
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 01:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
daominhha.net/wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css
61.14.235.159200 OK 265 B URL HTTP/1.1 daominhha.net/wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css
IP 61.14.235.159:0
File type ASCII text, with very long lines (548), with no line terminators
Hash 1001c2f945aac59f9108454f005ed5f3
b994e1b01144e3d8395f95400027b8782af03d38
9269300d49b0a255f5e6c7e533f707128927b17c6e5cc8e77a302ad37a61f349
GET /wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 265
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 06 Aug 2022 20:27:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:26 GMT
Content-Encoding: gzip
daominhha.net/wp-includes/css/classic-themes.min.css
61.14.235.159200 OK 189 B URL HTTP/1.1 daominhha.net/wp-includes/css/classic-themes.min.css
IP 61.14.235.159:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 189
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 05 Nov 2022 16:23:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:26 GMT
Content-Encoding: gzip
daominhha.net/wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2
61.14.235.159200 OK 2.3 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2
IP 61.14.235.159:0
File type Web Open Font Format (Version 2), TrueType, length 2348, version 1.0\012- data
Hash 83b6052cdcd55044e06bc99f5e316e28
b82570b3c5b64545f3b92f8e49dbe796ed72e015
df5fb895368d354c17a502e398cee9417d531377fb273443bc60e6fc8e39cb82
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/octet-stream
Content-Length: 2348
Connection: keep-alive
Last-Modified: Sun, 03 Apr 2022 15:38:44 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:27 GMT
ETag: "6249bf84-92c"
Accept-Ranges: bytes
daominhha.net/wp-content/plugins/contact-form-7/includes/css/styles.css
61.14.235.159200 OK 1.1 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 61.14.235.159:0
Hash 6db1125afaa6519d9bc20dcb0b5d8525
4bc6b0c4166f5f12c6ddff2cf572d4a24663fbc9
e9d1d3c3066c13e5ab647b334eac246662670e7897b1d17473cc0f2b7c6dd8b3
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:43:55 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"634fd4eb-aab"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/hnc-random-code/assets/css/main.css
61.14.235.159200 OK 475 B URL HTTP/1.1 daominhha.net/wp-content/plugins/hnc-random-code/assets/css/main.css
IP 61.14.235.159:0
File type ASCII text, with CRLF line terminators
Hash ec9b5bf810f0d4076294415da6374040
13959f0dcf286463c09496bacb662128fdcdc7f0
525de90e3cf1baa4839775439a02349e6068b3e507d49078ceb3078126aff6cd
GET /wp-content/plugins/hnc-random-code/assets/css/main.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 14 Aug 2022 04:58:33 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"62f880f9-429"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/main.css
61.14.235.159200 OK 38 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/main.css
IP 61.14.235.159:0
Hash 9a036285bb8e9612851447dffa5f53ec
ff3192eeccfaf609a7c8e591e8643d61900321cf
44d613aa2e3eb11f475dda7e9159277d518ed642e6b43e1d4c675a944df5e80e
GET /wp-content/themes/hncgamingtheme/main.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 20:11:39 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"6372a0fb-30143"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
61.14.235.159200 OK 39 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
IP 61.14.235.159:0
File type ASCII text, with very long lines (65393)
Hash 5ce24458113496b5cc33cf0ee76bec97
57636ba9709f6d00c79f90cd882ab65e15fefd8b
1782cfe54a3d2a14bfb65c7e410d99962e2c7c4535e64bbf451fc2014c63b3ad
GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 10 Nov 2020 20:51:46 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"5faafd62-2a63a"
Content-Encoding: gzip
daominhha.net/wp-includes/js/jquery/jquery-migrate.min.js
61.14.235.159200 OK 4.6 kB URL HTTP/1.1 daominhha.net/wp-includes/js/jquery/jquery-migrate.min.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (11126)
Hash 422e26f9ab9f155ab245d5e6088f6c02
6ba065476238a262e0a39dac17fae26f26dcf0ad
56316b4015c3af98c42dc7030a4ad4aaa7f02f03783f69d39216312e95a7ce2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"5fb4e3fe-2bd8"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js
61.14.235.159200 OK 9.1 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js
IP 61.14.235.159:0
File type Unicode text, UTF-8 text, with very long lines (24463), with CRLF line terminators
Hash f67495368cfa83893688d984d216a8b5
debb95c211ee8641ce633f45efa3a2f4d213db92
d44b408e25f77d0738135897db7bce636e93fc0fd69fc1c849555ca5710610bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 14 Aug 2022 04:58:33 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"62f880f9-601c"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/hnc-random-code/assets/js/main.js
61.14.235.159200 OK 1.8 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/hnc-random-code/assets/js/main.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (4462), with no line terminators
Hash 287a4bdb51147d9079f11294d71604a1
db68580618a0172ccfabc284436430025b2d4b55
5cc4e61e71571eea9ea7fc693afbd2da9a73a2271e33ef233c8c67998e5a7ab5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hnc-random-code/assets/js/main.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:43:05 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"634db049-116e"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/contact-form-7/includes/swv/js/index.js
61.14.235.159200 OK 3.2 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash b4cd50d8ffc1e897a027898826779665
cdd7fe60cabb564e69beeef92630fa874555cb0e
d818d2722651cd52f284f2faed92cac006d224308cf55f6e359380d1a0e78344
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:43:55 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"634fd4eb-26d1"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/contact-form-7/includes/js/index.js
61.14.235.159200 OK 4.4 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/contact-form-7/includes/js/index.js
IP 61.14.235.159:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1165fae2c38b848eb5e8a2727e1d78c6
1655e8784687bd7d1ed2151e2014201d2a391979
10090ee5c061b78169e7cdccfe4100a05c0ef014ad8207afb38f0da6f809fa19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:43:55 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"634fd4eb-3016"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js
61.14.235.159200 OK 19 B URL HTTP/1.1 daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js
IP 61.14.235.159:0
File type ASCII text, with no line terminators
Hash 8102dc9eee0565de28649497220d8d17
a32963be36656f3dd149892540138913bc88de6c
51ff2b4b46acab057eba32dc5fbd0bcf410f0ad2bb75d7a92b230bc627d930d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 19
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 19 Nov 2022 04:59:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js
61.14.235.159200 OK 19 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (63188)
Hash 897af68c08a8eca17bc00340261300d1
8a73f0f42c94ce0cc43c4d4572c8b58125bbe423
fedd32fa1f95c72beb9a7f396a98049daef016e2265f96e66b01bb9a1eadb678
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 May 2021 20:08:47 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"60b5424f-f7eb"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js
61.14.235.159200 OK 1.5 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (546)
Hash 89878eb67ee0407ca1b93775b3636df8
8d9177e99880de3ecb8f3446b1bfde3ea9f8cdd7
45fba017186171b903a12afb30f5ad79fcc47ab0ab6f45710141ff628781470b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 11 Aug 2022 17:58:41 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"62f54351-cc4"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css
61.14.235.159200 OK 32 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css
IP 61.14.235.159:0
File type ASCII text, with very long lines (65326)
Hash fb6c534ec0c77a30b06549708c327098
2e188a3d35df0046828888ea6200c1eb4258e817
367903fd1e6ef87de0b11a73e5aac81d5fcd6b5ae3e5257b1d9986024f39fae2
GET /wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 May 2021 20:08:46 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"60b5424e-27681"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js
61.14.235.159200 OK 4.3 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js
IP 61.14.235.159:0
Hash 239ae656c1b82787e58ca9d1e6922aec
f019c00f6859e891bb2fa8c5ecadf4527872bca6
b8fd7b6b68579d7342d104f809e398f79718e6bfad1e6a94627bb4795f1f6995
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 26 Dec 2020 18:57:23 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"5fe78793-3816"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/js/main.js
61.14.235.159200 OK 2.6 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/main.js
IP 61.14.235.159:0
File type Unicode text, UTF-8 text, with very long lines (7446), with no line terminators
Hash a99744c29c188123c3eb879b3c949659
5b7a7e6071b086fcea3e0219800671e448cea102
e9bf818f10f48acea84a5c74ee3815baf798d111506472b165f60b7980805fda
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/js/main.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 11 Aug 2022 18:12:46 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"62f5469e-1d1a"
Content-Encoding: gzip
daominhha.net/wp-includes/js/jquery/jquery.min.js
61.14.235.159200 OK 36 kB URL HTTP/1.1 daominhha.net/wp-includes/js/jquery/jquery.min.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (65447)
Hash 3fefa18e3cbe3acddd34a143490f3568
fb58024ffc3f0776f8deb6690930aaa8d0846599
850052eb84c33764aa1ea684fe1448bf6e6eb65d9bb16fa8e30cd472a53fe28c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 16:23:22 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"63668dfa-15e54"
Content-Encoding: gzip
daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js
61.14.235.159200 OK 198 B URL HTTP/1.1 daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js
IP 61.14.235.159:0
File type ASCII text, with no line terminators
Hash a5dc7dead45132519871276f050c6ada
57574eedf40c36431aaa842c194de37c755e92a4
cd90d94d9530cb2213a9f4e34cc1242bae23dbf8505cbfa1d0670380f17d185b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 198
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 19 Nov 2022 04:59:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js
61.14.235.159200 OK 17 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js
IP 61.14.235.159:0
File type Unicode text, UTF-8 text, with very long lines (51065)
Hash db40d8c436a3f7a135753ef664c1d934
aa5a59215d8118292f714d679856d8caaa8200b9
cb7372c56466d35aaf3774444d45c37f75696530f08733eaabf2c70bd1c36720
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Dec 2020 06:49:14 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"5fd3166a-c9b1"
Content-Encoding: gzip
daominhha.net/wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg
61.14.235.159200 OK 26 kB URL HTTP/1.1 daominhha.net/wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg
IP 61.14.235.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 618x715, components 3\012- data
Hash 56761a246f68f2ad2b27d39012be973a
8ea21aafa76a1a5b75869cb39af7dd935128d31f
5c57e9b8bcf1214892f848e2e192e096aa7b512962aeb263704deb80badc4729
GET /wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: image/jpeg
Content-Length: 25647
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:24:15 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
ETag: "61512b4f-642f"
Accept-Ranges: bytes
daominhha.net/wp-content/themes/hncgamingtheme/images/overlay.png
61.14.235.159200 OK 211 B URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/images/overlay.png
IP 61.14.235.159:0
File type PNG image data, 2 x 2, 1-bit colormap, non-interlaced\012- data
Hash 0a3750e6fdb29fcd632e627e2fc34dde
7c046ea4b1669da4eb81acccd7fc58b00201543d
5ddb13e84c10a1b7a773f0580f2997c3b5e91d1c2227fc1313c5991429442657
GET /wp-content/themes/hncgamingtheme/images/overlay.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: image/png
Content-Length: 211
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 26 Dec 2020 19:16:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
daominhha.net/wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js
61.14.235.159200 OK 46 kB URL HTTP/1.1 daominhha.net/wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js
IP 61.14.235.159:0
File type ASCII text, with very long lines (790)
Hash 3106c85d75b898a387c82edcd763bf38
cc87996359e23d9ac6b94d048d4b11c859bf72dd
ccf37ac2850bd4cad04dfc7bf7d14a7e2f0f341eb4680e0d47327838687cdf5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 03 Apr 2022 15:38:45 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"6249bf85-2322f"
Content-Encoding: gzip
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2
61.14.235.159200 OK 43 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2
IP 61.14.235.159:0
File type Web Open Font Format (Version 2), TrueType, length 43236, version 1.0\012- data
Hash a9557eb451f17dcd8e687327ea9383a0
78ad7ac0d04e1c0439c26d47978622b5b75b472a
2e3b1d34ac67763ab50652da19305d4b3694c6b6e6bf35f4b98411ce4af646d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/octet-stream
Content-Length: 43236
Connection: keep-alive
Last-Modified: Fri, 05 Feb 2021 07:41:12 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "601cf698-a8e4"
Accept-Ranges: bytes
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2
61.14.235.159200 OK 45 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2
IP 61.14.235.159:0
File type Web Open Font Format (Version 2), TrueType, length 44988, version 1.0\012- data
Hash 17c283b4e785e073ec09dc72acebafac
42b7e1929f00cdcdc7d84878153338875b4fbb6a
c22fe8c70c36f1d862903b772eaed864d3a8fa849473c9caff224fdb852428e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/octet-stream
Content-Length: 44988
Connection: keep-alive
Last-Modified: Fri, 05 Feb 2021 07:41:12 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "601cf698-afbc"
Accept-Ranges: bytes
daominhha.net/wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1669882825
61.14.235.159200 OK 2.0 kB URL HTTP/1.1 daominhha.net/wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1669882825
IP 61.14.235.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash d14ea1b242d39fd110c6fc9200d3b661
983084e54d135410b486199b45e69f7ab8249aa7
d3418e28eab6356b165e073bbd852bae0986a3163d7951ec5e726fe815489bb9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1669882825 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:33 GMT
Content-Type: image/jpeg
Content-Length: 2022
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:23:38 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:31 GMT
ETag: "61512b2a-7e6"
Accept-Ranges: bytes
daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2
61.14.235.159200 OK 45 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2
IP 61.14.235.159:0
File type Web Open Font Format (Version 2), TrueType, length 44936, version 1.0\012- data
Hash 97593b89e95959c7f41c47cf407d1f63
714db8a8c2f2425dbe450f83ff25c51cefd244d6
486c67592731a0b36a89dba1fd0b97aeb73f236bbf60dbf28d7c6b5723c07989
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/octet-stream
Content-Length: 44936
Connection: keep-alive
Last-Modified: Fri, 05 Feb 2021 07:41:12 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "601cf698-af88"
Accept-Ranges: bytes
daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2
61.14.235.159200 OK 77 kB URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2
IP 61.14.235.159:0
File type Web Open Font Format (Version 2), TrueType, length 76636, version 331.524\012- data
Hash a0f6b35c2b55babc93cb9b15791a1d4c
bd5cea4fa49feb29a336ee8623b46f8eb5c235b3
80c7d8d88a91688aa18a1ce39ec33e15ac5e1cad7c7be1c5fa3c403f34f1b53c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/octet-stream
Content-Length: 76636
Connection: keep-alive
Last-Modified: Tue, 10 Nov 2020 20:51:44 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "5faafd60-12b5c"
Accept-Ranges: bytes
daominhha.net/wp-content/uploads/2021/02/gamer-icon.png
61.14.235.159200 OK 1.6 kB URL HTTP/1.1 daominhha.net/wp-content/uploads/2021/02/gamer-icon.png
IP 61.14.235.159:0
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 4cd45f428d44debef9f0359515da9cc3
46f1598cecdf8241f880d67428ae9d4212b41650
6910b2b234fb246961b984f89dface46b53338dffd9aa235c80e94fee3a0e749
GET /wp-content/uploads/2021/02/gamer-icon.png HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:33 GMT
Content-Type: image/png
Content-Length: 1602
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:40:54 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:31 GMT
ETag: "61512f36-642"
Accept-Ranges: bytes
daominhha.net/wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1669882825
61.14.235.159200 OK 3.9 kB URL HTTP/1.1 daominhha.net/wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1669882825
IP 61.14.235.159:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash c824f088e94b1cbb8e1cb244fd505d39
c77c30f7df3a23591e36837fe2c52a2e43db060a
ded90d728b0677abcd1683b5feee8dc3bca8666f359a81262c081d375eec6507
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1669882825 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:33 GMT
Content-Type: image/png
Content-Length: 3936
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:39:23 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:31 GMT
ETag: "61512edb-f60"
Accept-Ranges: bytes
daominhha.net/wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg
61.14.235.159200 OK 0 B URL HTTP/1.1 daominhha.net/wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg
IP 61.14.235.159:0
GET /wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: image/jpeg
Content-Length: 377533
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 03:36:29 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
ETag: "633a58bd-5c2bd"
Accept-Ranges: bytes
daominhha.net/wp-content/uploads/2022/11/Evil-West-Wallpapers.jpg
61.14.235.159200 OK 0 B URL HTTP/1.1 daominhha.net/wp-content/uploads/2022/11/Evil-West-Wallpapers.jpg
IP 61.14.235.159:0
GET /wp-content/uploads/2022/11/Evil-West-Wallpapers.jpg HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: image/jpeg
Content-Length: 418360
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 03:23:56 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
ETag: "637d924c-66238"
Accept-Ranges: bytes
daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2
61.14.235.159200 OK 0 B URL HTTP/1.1 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2
IP 61.14.235.159:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: daominhha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Type: application/octet-stream
Content-Length: 141600
Connection: keep-alive
Last-Modified: Tue, 10 Nov 2020 20:51:44 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "5faafd60-22920"
Accept-Ranges: bytes