Overview

URLdaominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
IP 61.14.235.159 (Vietnam)
ASN#45899 VNPT Corp
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 01:20:34 UTC
StatusLoading report..
IDS alerts0
Blocklist alert22
urlquery alerts No alerts detected
Tags None

Domain Summary (11)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 17:12:31 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-11-30 17:19:42 UTC 34.160.144.191
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-11-30 17:26:07 UTC 34.120.237.76
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-30 23:14:41 UTC 142.250.74.168
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-11-30 17:12:17 UTC 54.186.209.73
images.dmca.com (2) 11903 2014-01-02 21:23:16 UTC 2022-11-30 22:14:50 UTC 151.139.128.10
ocsp.pki.goog (2) 175 2017-06-14 07:23:31 UTC 2022-11-30 17:12:14 UTC 142.250.74.131
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-11-30 17:12:16 UTC 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-11-30 20:24:46 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 17:13:24 UTC 34.117.237.239
daominhha.net (36) 0 No data No data 61.14.235.159 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 daominhha.net/wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2 Phishing
2022-12-01 2 daominhha.net/wp-includes/js/jquery/jquery-migrate.min.js Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/hnc-random-code/assets/jquery-validation-1 (...) Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/hnc-random-code/assets/js/main.js Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/contact-form-7/includes/swv/js/index.js Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/contact-form-7/includes/js/index.js Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/ (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/boot (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/main.js Phishing
2022-12-01 2 daominhha.net/wp-includes/js/jquery/jquery.min.js Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/real-time-auto-find-and-replace/assets/js/ (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js Phishing
2022-12-01 2 daominhha.net/wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxs (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-v (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-v (...) Phishing
2022-12-01 2 daominhha.net/wp-content/uploads/ultimatemember/10/profile_photo-100x100.jp (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-v (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/w (...) Phishing
2022-12-01 2 daominhha.net/wp-content/uploads/ultimatemember/11/profile_photo-100x100.pn (...) Phishing
2022-12-01 2 daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/w (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 61.14.235.159
Date UQ / IDS / BL URL IP
2022-12-02 00:28:27 +0000 0 - 0 - 21 daominhha.net/download/?id=1161&sv=dropbox&ur (...) 61.14.235.159
2022-12-01 01:20:34 +0000 0 - 0 - 22 daominhha.net/download/?id=1161&sv=dropbox&ur (...) 61.14.235.159


Last 5 reports on ASN: VNPT Corp
Date UQ / IDS / BL URL IP
2023-01-30 23:41:49 +0000 0 - 0 - 1 14.224.145.235/ 14.224.145.235
2023-01-30 19:13:59 +0000 0 - 0 - 13 europharmas.com/ 123.30.240.55
2023-01-30 18:44:02 +0000 0 - 2 - 0 phankienphat.ddns.net/ 123.21.23.55
2023-01-30 10:44:47 +0000 0 - 1 - 3 kimyen.net/upload/VLTKTanthuTN.exe 103.255.237.239
2023-01-30 10:22:12 +0000 0 - 1 - 3 kimyen.net/upload/VLTKBacdau.exe 103.255.237.239


Last 3 reports on domain: daominhha.net
Date UQ / IDS / BL URL IP
2022-12-02 00:28:27 +0000 0 - 0 - 21 daominhha.net/download/?id=1161&sv=dropbox&ur (...) 61.14.235.159
2022-12-01 01:20:34 +0000 0 - 0 - 22 daominhha.net/download/?id=1161&sv=dropbox&ur (...) 61.14.235.159
2022-10-11 14:43:01 +0000 0 - 0 - 54 daominhha.net/dang-nhap-thanh-vien/ 103.97.124.72


No other reports with similar screenshot

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (61)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16807
Expires: Thu, 01 Dec 2022 06:00:30 GMT
Date: Thu, 01 Dec 2022 01:20:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2906
Cache-Control: max-age=122362
Date: Thu, 01 Dec 2022 01:20:23 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:19:45 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2563
Expires: Thu, 01 Dec 2022 02:03:06 GMT
Date: Thu, 01 Dec 2022 01:20:23 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 01:19:45 GMT
cache-control: public,max-age=3600
age: 38
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: fUo0Y6Lv6xVC+mBj40kGW0/V8VMDV/8jOuz/+iZcAtL2AwDdw/OFZyPbUrxQm1Dnnh6bz+gqjGU=
x-amz-request-id: 0ZZ07F6FP8A6CWXJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 00:45:27 GMT
age: 2096
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 01:20:23 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 01:08:56 GMT
cache-control: public,max-age=3600
age: 688
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         61.14.235.159
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:25 GMT
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Cache-Control: max-age=0
Expires: Thu, 01 Dec 2022 01:20:23 GMT

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2949
Cache-Control: max-age=117336
Date: Thu, 01 Dec 2022 01:20:24 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:56:00 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zChW2xSKdXkojdt9leMFnQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.186.209.73
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eIjjSOjhAkxw0l7U3+ZAjCTGIyA=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "40BA276A1442E5F710C2F8E6FF86574B29FC615A64C8230A7C43C452CE215374"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21534
Expires: Thu, 01 Dec 2022 07:19:19 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11453
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 01:20:25 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7609
x-amzn-requestid: 1a464872-7c15-42d3-a12a-f344adf99662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PHVUoAMFf4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-3f77f387752222b212d6e2a5;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XUcf5sxPRTQEOS_HWPDW5ioStuq1TPMKvKQSRi2kZI5TbTWEVKFfog==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:42:48 GMT
age: 77857
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7609
Md5:    0d0219e6bee2a28f003f396f872eecf0
Sha1:   b3d22d146c6094cb539de40a72b9c5a140802ee5
Sha256: 41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1fe6f5b-2658-4434-b276-36d841c8ceee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8124
x-amzn-requestid: e000c0d5-82d0-41a8-8def-b36970226969
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0UqEd1oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdb7-27efd8c92b8f6e4f257cec3b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1GIxjB2nXfoxuqJHLtkXl4OJT_Po5DJA_w26E2K8WOmm_PZw1qU3IQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:19:35 GMT
etag: "ec0fd74a981603e197df26c6fb79ef039f737557"
age: 10850
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8124
Md5:    42c762f71487f8e0285dd2129700f069
Sha1:   ec0fd74a981603e197df26c6fb79ef039f737557
Sha256: 8a40883d87b1e2c6e116e3cf881a8b39c987200a8556b651f78a376b3ddbaa26
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7957
x-amzn-requestid: 54f43d6b-cf41-4067-b459-6b8d98869354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PGgNIAMF2Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-069ac54c22797a511c69a220;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5et72pBhP9fdm4fNy6V5AJjs7B5N3HUGgaToNJV3LbA59D-0QDAMvw==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 03:31:51 GMT
age: 78514
etag: "01a07f9a5725f608fafeced7b3d1ebdbcb776c29"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7957
Md5:    37004182402c955f288eb1fa8df7aef4
Sha1:   01a07f9a5725f608fafeced7b3d1ebdbcb776c29
Sha256: c90c80dd5cadbde3fef20a9c4561b1efa47401e5f6bdf64c91246553c50204f0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2382
x-amzn-requestid: 7279ff68-1e32-4c57-9b9d-f5803a19e8e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJYQuEmEIAMFkeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806d9e-2cf28dc150b53b9f3c60bb4c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:24:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UaUyc03Gw0P7G_7gjAyp-c3XxjIDbllO7lmG_8UWVCuBP4WgEgSydQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 14:26:41 GMT
age: 39224
etag: "b3eaec75f854d22cd1dcd6aa42e37f6d0df50036"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2382
Md5:    f5469e846da1e0f21cfc480f56a656a6
Sha1:   b3eaec75f854d22cd1dcd6aa42e37f6d0df50036
Sha256: d5701207a8b6b358359ebfd85a6916af7a3abf79acba235bf7d4131b0bc2e9b5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9e3a9eb-bc9d-4e50-8738-e978a333d2ae.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4542
x-amzn-requestid: 254467ba-82aa-4964-9e3b-04b2d79a43d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJWiqEQhIAMFnJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63806add-2ad86b6031c6984c43f2741d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 07:12:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2J8Dkm4nUOgJfxXf1aXt3_z-mOmxeksWf0TbTp9mQXOjI1skSW7XJg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 02:00:33 GMT
age: 83992
etag: "ce0321a9b4ea6b56f8d768796a16f26520654b50"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4542
Md5:    80e7af4c2331ee27460e67d6d84f5740
Sha1:   ce0321a9b4ea6b56f8d768796a16f26520654b50
Sha256: a05bb542d7c711b71a7a9a857130acf888a6400f4eb32ff5df1a506a3f8591ce
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 22939
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8740
Md5:    26d6dffbf400da4803a2e76e2a8ef2f8
Sha1:   2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
Sha256: 04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
                                        
                                            GET /download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:27 GMT
Content-Length: 23436
Connection: keep-alive
Link: <https://daominhha.net/wp-json/>; rel="https://api.w.org/", <https://daominhha.net/wp-json/wp/v2/pages/398>; rel="alternate"; type="application/json", <https://daominhha.net/?p=398>; rel=shortlink
Cache-Control: max-age=0
Expires: Thu, 01 Dec 2022 01:20:25 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47490), with CRLF, LF line terminators
Size:   23436
Md5:    5b961653c4732f01610d1f2486681721
Sha1:   a5aff4e223aa8da67df784597e0edba5535a44d9
Sha256: 383782ce9e7dd2a11206c537b2ef486204b688c21ace85cc636756f779c98f01
                                        
                                            GET /Badges/DMCABadgeHelper.min.js HTTP/1.1 
Host: images.dmca.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.139.128.10
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Dec 2022 01:20:26 GMT
content-encoding: gzip
content-length: 395
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
cache-control: public,max-age=31536000
etag: "26b181f16d28d51:0"
x-powered-by: ASP.NET
x-hw: 1669857626.cds232.sk1.hn,1669857626.cds225.sk1.c
link: <https://www.dmca.com/Badges/DMCABadgeHelper.min.js>; rel="canonical"
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   395
Md5:    365ad8f83802168e7326b29df6a22f4a
Sha1:   a096aa3c7e46525c7b7c54cb6b7987f01559b688
Sha256: dafd787e6bf2c7ed10cb6c14f36ada4e5e9b7c15ffe7393cd6000acb946ebf13
                                        
                                            GET /Badges/dmca_protected_sml_120m.png?ID=24a57ac6-5162-4281-9e98-782a8d402fb1 HTTP/1.1 
Host: images.dmca.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.139.128.10
HTTP/2 200 OK
content-type: image/png
                                        
date: Thu, 01 Dec 2022 01:20:26 GMT
content-length: 2152
last-modified: Tue, 04 May 2010 23:19:10 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
cache-control: public,max-age=31536000
etag: "20bc6d33e0ebca1:0"
x-powered-by: ASP.NET
x-hw: 1669857626.cds232.sk1.hn,1669857626.cds227.sk1.c
link: <https://www.dmca.com/Badges/dmca_protected_sml_120m.png>; rel="canonical"
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 121 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   2152
Md5:    b6c626298d2bc133121172b17e8ac5cf
Sha1:   7e0d59debd84381b1c5a64136e6ef4c4f24034cc
Sha256: 075535cca15623d527f533d7a54e63ed6f4443eb7113d850447b959569fbc6b3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-183268939-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 01:20:26 GMT
expires: Thu, 01 Dec 2022 01:20:26 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43583
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43583
Md5:    61b003887f823229c70813d5c18c4fb6
Sha1:   d5ffcec408a2ab2671f42b5efc648723d273ca55
Sha256: 44766f7427852e69133ab1ff31842eaaf9991222372bb6f80cb8ea8b59a3d453
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/skaut-google-drive-gallery/frontend/css/block.min.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Content-Length: 265
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 06 Aug 2022 20:27:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:26 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (548), with no line terminators
Size:   265
Md5:    1001c2f945aac59f9108454f005ed5f3
Sha1:   b994e1b01144e3d8395f95400027b8782af03d38
Sha256: 9269300d49b0a255f5e6c7e533f707128927b17c6e5cc8e77a302ad37a61f349
                                        
                                            GET /wp-includes/css/classic-themes.min.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Content-Length: 189
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 05 Nov 2022 16:23:22 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:26 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   189
Md5:    5a18e16eb01cbaa862eb32e6b77bedb2
Sha1:   3abf9b913cc9f558f02cba7c9b822f8d1812cb96
Sha256: d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
                                        
                                            GET /wp-content/plugins/ajax-search-pro/css/fonts/icons/icons2.woff2 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Length: 2348
Connection: keep-alive
Last-Modified: Sun, 03 Apr 2022 15:38:44 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:27 GMT
ETag: "6249bf84-92c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 2348, version 1.0\012- data
Size:   2348
Md5:    83b6052cdcd55044e06bc99f5e316e28
Sha1:   b82570b3c5b64545f3b92f8e49dbe796ed72e015
Sha256: df5fb895368d354c17a502e398cee9417d531377fb273443bc60e6fc8e39cb82

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:43:55 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"634fd4eb-aab"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1051
Md5:    6db1125afaa6519d9bc20dcb0b5d8525
Sha1:   4bc6b0c4166f5f12c6ddff2cf572d4a24663fbc9
Sha256: e9d1d3c3066c13e5ab647b334eac246662670e7897b1d17473cc0f2b7c6dd8b3
                                        
                                            GET /wp-content/plugins/hnc-random-code/assets/css/main.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 14 Aug 2022 04:58:33 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"62f880f9-429"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   475
Md5:    ec9b5bf810f0d4076294415da6374040
Sha1:   13959f0dcf286463c09496bacb662128fdcdc7f0
Sha256: 525de90e3cf1baa4839775439a02349e6068b3e507d49078ceb3078126aff6cd
                                        
                                            GET /wp-content/themes/hncgamingtheme/main.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 20:11:39 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"6372a0fb-30143"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   38382
Md5:    9a036285bb8e9612851447dffa5f53ec
Sha1:   ff3192eeccfaf609a7c8e591e8643d61900321cf
Sha256: 44d613aa2e3eb11f475dda7e9159277d518ed642e6b43e1d4c675a944df5e80e
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 10 Nov 2020 20:51:46 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"5faafd62-2a63a"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65393)
Size:   39085
Md5:    5ce24458113496b5cc33cf0ee76bec97
Sha1:   57636ba9709f6d00c79f90cd882ab65e15fefd8b
Sha256: 1782cfe54a3d2a14bfb65c7e410d99962e2c7c4535e64bbf451fc2014c63b3ad
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"5fb4e3fe-2bd8"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4565
Md5:    422e26f9ab9f155ab245d5e6088f6c02
Sha1:   6ba065476238a262e0a39dac17fae26f26dcf0ad
Sha256: 56316b4015c3af98c42dc7030a4ad4aaa7f02f03783f69d39216312e95a7ce2f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/hnc-random-code/assets/jquery-validation-1195/dist/jquery.validate.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 14 Aug 2022 04:58:33 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"62f880f9-601c"
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (24463), with CRLF line terminators
Size:   9143
Md5:    f67495368cfa83893688d984d216a8b5
Sha1:   debb95c211ee8641ce633f45efa3a2f4d213db92
Sha256: d44b408e25f77d0738135897db7bce636e93fc0fd69fc1c849555ca5710610bb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/hnc-random-code/assets/js/main.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 19:43:05 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"634db049-116e"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (4462), with no line terminators
Size:   1847
Md5:    287a4bdb51147d9079f11294d71604a1
Sha1:   db68580618a0172ccfabc284436430025b2d4b55
Sha256: 5cc4e61e71571eea9ea7fc693afbd2da9a73a2271e33ef233c8c67998e5a7ab5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:43:55 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"634fd4eb-26d1"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (9937), with no line terminators
Size:   3232
Md5:    b4cd50d8ffc1e897a027898826779665
Sha1:   cdd7fe60cabb564e69beeef92630fa874555cb0e
Sha256: d818d2722651cd52f284f2faed92cac006d224308cf55f6e359380d1a0e78344

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:43:55 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"634fd4eb-3016"
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (12310), with no line terminators
Size:   4404
Md5:    1165fae2c38b848eb5e8a2727e1d78c6
Sha1:   1655e8784687bd7d1ed2151e2014201d2a391979
Sha256: 10090ee5c061b78169e7cdccfe4100a05c0ef014ad8207afb38f0da6f809fa19

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.local.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Content-Length: 19
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 19 Nov 2022 04:59:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   19
Md5:    8102dc9eee0565de28649497220d8d17
Sha1:   a32963be36656f3dd149892540138913bc88de6c
Sha256: 51ff2b4b46acab057eba32dc5fbd0bcf410f0ad2bb75d7a92b230bc627d930d6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/bootstrap-460/js/bootstrap.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 May 2021 20:08:47 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"60b5424f-f7eb"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (63188)
Size:   18991
Md5:    897af68c08a8eca17bc00340261300d1
Sha1:   8a73f0f42c94ce0cc43c4d4572c8b58125bbe423
Sha256: fedd32fa1f95c72beb9a7f396a98049daef016e2265f96e66b01bb9a1eadb678

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/sticky-kit/sticky-kit.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 11 Aug 2022 17:58:41 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"62f54351-cc4"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (546)
Size:   1474
Md5:    89878eb67ee0407ca1b93775b3636df8
Sha1:   8d9177e99880de3ecb8f3446b1bfde3ea9f8cdd7
Sha256: 45fba017186171b903a12afb30f5ad79fcc47ab0ab6f45710141ff628781470b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/bootstrap-460/css/bootstrap.min.css HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 May 2021 20:08:46 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"60b5424e-27681"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65326)
Size:   32065
Md5:    fb6c534ec0c77a30b06549708c327098
Sha1:   2e188a3d35df0046828888ea6200c1eb4258e817
Sha256: 367903fd1e6ef87de0b11a73e5aac81d5fcd6b5ae3e5257b1d9986024f39fae2
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/js/jquery.superslides.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 26 Dec 2020 18:57:23 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"5fe78793-3816"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   4314
Md5:    239ae656c1b82787e58ca9d1e6922aec
Sha1:   f019c00f6859e891bb2fa8c5ecadf4527872bca6
Sha256: b8fd7b6b68579d7342d104f809e398f79718e6bfad1e6a94627bb4795f1f6995

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/js/main.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 11 Aug 2022 18:12:46 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"62f5469e-1d1a"
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (7446), with no line terminators
Size:   2638
Md5:    a99744c29c188123c3eb879b3c949659
Sha1:   5b7a7e6071b086fcea3e0219800671e448cea102
Sha256: e9bf818f10f48acea84a5c74ee3815baf798d111506472b165f60b7980805fda

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 16:23:22 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:27 GMT
ETag: W/"63668dfa-15e54"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   36096
Md5:    3fefa18e3cbe3acddd34a143490f3568
Sha1:   fb58024ffc3f0776f8deb6690930aaa8d0846599
Sha256: 850052eb84c33764aa1ea684fe1448bf6e6eb65d9bb16fa8e30cd472a53fe28c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/real-time-auto-find-and-replace/assets/js/rtafar.app.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 198
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 19 Nov 2022 04:59:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   198
Md5:    a5dc7dead45132519871276f050c6ada
Sha1:   57574eedf40c36431aaa842c194de37c755e92a4
Sha256: cd90d94d9530cb2213a9f4e34cc1242bae23dbf8505cbfa1d0670380f17d185b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/js/goodgames.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Dec 2020 06:49:14 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"5fd3166a-c9b1"
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (51065)
Size:   16971
Md5:    db40d8c436a3f7a135753ef664c1d934
Sha1:   aa5a59215d8118292f714d679856d8caaa8200b9
Sha256: cb7372c56466d35aaf3774444d45c37f75696530f08733eaabf2c70bd1c36720

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/05/DONATE-MOMO-DAOMINHHA.jpg HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 25647
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:24:15 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
ETag: "61512b4f-642f"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 618x715, components 3\012- data
Size:   25647
Md5:    56761a246f68f2ad2b27d39012be973a
Sha1:   8ea21aafa76a1a5b75869cb39af7dd935128d31f
Sha256: 5c57e9b8bcf1214892f848e2e192e096aa7b512962aeb263704deb80badc4729
                                        
                                            GET /wp-content/themes/hncgamingtheme/images/overlay.png HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 211
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 26 Dec 2020 19:16:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT


--- Additional Info ---
Magic:  PNG image data, 2 x 2, 1-bit colormap, non-interlaced\012- data
Size:   211
Md5:    0a3750e6fdb29fcd632e627e2fc34dde
Sha1:   7c046ea4b1669da4eb81acccd7fc58b00201543d
Sha256: 5ddb13e84c10a1b7a773f0580f2997c3b5e91d1c2227fc1313c5991429442657
                                        
                                            GET /wp-content/plugins/ajax-search-pro/js/legacy/min/jquery.ajaxsearchpro-sb.min.js HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 03 Apr 2022 15:38:45 GMT
Cache-Control: max-age=31536000, public
Expires: Fri, 01 Dec 2023 01:20:28 GMT
ETag: W/"6249bf85-2322f"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (790)
Size:   45700
Md5:    3106c85d75b898a387c82edcd763bf38
Sha1:   cc87996359e23d9ac6b94d048d4b11c859bf72dd
Sha256: ccf37ac2850bd4cad04dfc7bf7d14a7e2f0f341eb4680e0d47327838687cdf5a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-regular.woff2 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 43236
Connection: keep-alive
Last-Modified: Fri, 05 Feb 2021 07:41:12 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "601cf698-a8e4"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 43236, version 1.0\012- data
Size:   43236
Md5:    a9557eb451f17dcd8e687327ea9383a0
Sha1:   78ad7ac0d04e1c0439c26d47978622b5b75b472a
Sha256: 2e3b1d34ac67763ab50652da19305d4b3694c6b6e6bf35f4b98411ce4af646d2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-700.woff2 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 44988
Connection: keep-alive
Last-Modified: Fri, 05 Feb 2021 07:41:12 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "601cf698-afbc"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44988, version 1.0\012- data
Size:   44988
Md5:    17c283b4e785e073ec09dc72acebafac
Sha1:   42b7e1929f00cdcdc7d84878153338875b4fbb6a
Sha256: c22fe8c70c36f1d862903b772eaed864d3a8fa849473c9caff224fdb852428e4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/ultimatemember/10/profile_photo-100x100.jpg?1669882825 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:33 GMT
Content-Length: 2022
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:23:38 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:31 GMT
ETag: "61512b2a-7e6"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size:   2022
Md5:    d14ea1b242d39fd110c6fc9200d3b661
Sha1:   983084e54d135410b486199b45e69f7ab8249aa7
Sha256: d3418e28eab6356b165e073bbd852bae0986a3163d7951ec5e726fe815489bb9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/fonts/open-sans-v18-vietnamese_latin-ext_latin-600.woff2 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 44936
Connection: keep-alive
Last-Modified: Fri, 05 Feb 2021 07:41:12 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "601cf698-af88"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44936, version 1.0\012- data
Size:   44936
Md5:    97593b89e95959c7f41c47cf407d1f63
Sha1:   714db8a8c2f2425dbe450f83ff25c51cefd244d6
Sha256: 486c67592731a0b36a89dba1fd0b97aeb73f236bbf60dbf28d7c6b5723c07989

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 76636
Connection: keep-alive
Last-Modified: Tue, 10 Nov 2020 20:51:44 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "5faafd60-12b5c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76636, version 331.524\012- data
Size:   76636
Md5:    a0f6b35c2b55babc93cb9b15791a1d4c
Sha1:   bd5cea4fa49feb29a336ee8623b46f8eb5c235b3
Sha256: 80c7d8d88a91688aa18a1ce39ec33e15ac5e1cad7c7be1c5fa3c403f34f1b53c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/02/gamer-icon.png HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:33 GMT
Content-Length: 1602
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:40:54 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:31 GMT
ETag: "61512f36-642"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size:   1602
Md5:    4cd45f428d44debef9f0359515da9cc3
Sha1:   46f1598cecdf8241f880d67428ae9d4212b41650
Sha256: 6910b2b234fb246961b984f89dface46b53338dffd9aa235c80e94fee3a0e749
                                        
                                            GET /wp-content/uploads/ultimatemember/11/profile_photo-100x100.png?1669882825 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:33 GMT
Content-Length: 3936
Connection: keep-alive
Last-Modified: Mon, 27 Sep 2021 02:39:23 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:31 GMT
ETag: "61512edb-f60"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Size:   3936
Md5:    c824f088e94b1cbb8e1cb244fd505d39
Sha1:   c77c30f7df3a23591e36837fe2c52a2e43db060a
Sha256: ded90d728b0677abcd1683b5feee8dc3bca8666f359a81262c081d375eec6507

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/10/Miles-Morales-HD-Wallpaper.jpg HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 377533
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 03:36:29 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
ETag: "633a58bd-5c2bd"
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/11/Evil-West-Wallpapers.jpg HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://daominhha.net/download/?id=1161&sv=dropbox&url=1583408321.daominhha.com.devil.may.cry.5.vergil.vh.part01.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 418360
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 03:23:56 GMT
Cache-Control: max-age=10368000, public
Expires: Fri, 31 Mar 2023 01:20:29 GMT
ETag: "637d924c-66238"
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: daominhha.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://daominhha.net/wp-content/themes/hncgamingtheme/assets/fontawesomepro-5130/css/all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         61.14.235.159
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: Apache
Date: Thu, 01 Dec 2022 01:20:30 GMT
Content-Length: 141600
Connection: keep-alive
Last-Modified: Tue, 10 Nov 2020 20:51:44 GMT
Cache-Control: max-age=2592000
Expires: Sat, 31 Dec 2022 01:20:29 GMT
ETag: "5faafd60-22920"
Accept-Ranges: bytes


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing