firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vdmm9Y5EPrL6P67CpFdQPskhzoDit_BdCjXX3kj_KlYUfn7qpdWsWA==
Age: 22150
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2618
Expires: Wed, 05 Oct 2022 22:40:06 GMT
Date: Wed, 05 Oct 2022 21:56:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3771
Expires: Wed, 05 Oct 2022 22:59:19 GMT
Date: Wed, 05 Oct 2022 21:56:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mxpeJBizf/mJ2uu41TfglT26v9ZQbXLIPx65UD9tdsyBgTX+nElFsKhuxI0qXcPoQ+GgXXAA+W0=
x-amz-request-id: 2XS3TY8H6FFNM4NW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 21:30:29 GMT
age: 1559
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 21:56:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 21:55:50 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 21:49:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TR79847nvfk9Cj6uDntQKzWq6N3Gf0-S6kIhRRAatSM_C9iJ17aW-A==
Age: 1616
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6402
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:29 GMT
Last-Modified: Wed, 05 Oct 2022 20:09:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RGHegwrjyR19m+5uD/DK7g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sTEvJE4FvYFs3VhKNQ5uVaRFDr4=
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
104.18.10.207200 OK 5.6 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (21822)
Hash 2a9b54896302ff2ce4806602f8c8070a
80d01e2a99b7ef5e936f7880cd0d6928da73ff3e
24cc470b747da172a228538dfac58550d16463b81813157445abbbdce046cd0c
GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:30 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: SE
CDN-EdgeStorageId: 601, 718, 718
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-04-23 05:21:01
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 247af5253dedb1b0bd0d1e5b53c5e898
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 13117293
Server: cloudflare
CF-RAY: 7559685b2fe4b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apphotlive.biz/
172.67.148.212200 OK 17 kB IP 172.67.148.212:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2204), with CRLF, LF line terminators
Hash 5cb9e0a6e9ce4a18ef8ca75f039bdd88
f1f83804fbd21d6a437279ab1c1dc0b9bf020c7a
1dde0e0091e391cbf43cdd1dc312919bda2fa6acf7e6e9c5abc7c39454034e2d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Link: <http://apphotlive.biz/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Access-Control-Allow-Origin: *
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRQ9%2FgasMWgDXypiRbXlnNYXUSc7LzmrtqVVD6ZVL3cXUWIeQBqRIkBySDxWca%2BothwAiawy20%2FVcFFfUMACRqYik0htfQJoNStWSnPHnoLbCqT32szB6lpiv5Rqh%2FgUtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559684f7d50b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:400,500,700,300|Roboto+Condensed:400,700&subset=latin,vietnamese
142.250.74.10200 OK 877 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,500,700,300|Roboto+Condensed:400,700&subset=latin,vietnamese
IP 142.250.74.10:0
Hash 1baa210c1e4dffc02724dd1314a7961e
552de994f17c610cc437e21f570b9e0539a56c5f
cc225e0833ea227d07e7a920ce361bf880b30418ab1c1009eaf71349f495c0de
GET /css?family=Roboto:400,500,700,300|Roboto+Condensed:400,700&subset=latin,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 21:56:30 GMT
date: Wed, 05 Oct 2022 21:56:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1165
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 1165
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23e10c01392e4958e4a4f19573290da9
59ab1c451c388f7b57da52bf518eff15e0c584ff
ece0b872f33166fcc2816595fdf1348664d985131bc943cd4a543524dede0274
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12752
x-amzn-requestid: 3c32a029-08d0-4f98-a0e0-48a7e05242b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sHXXIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-176be5177b67ddc068060b19;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: nMQQhuMBlGVUc4XeG1S-BJ2_6QQQkcfjctV4xTXW8VENcNE0sVQ1rA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1165
etag: "59ab1c451c388f7b57da52bf518eff15e0c584ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5a5ee14d41747f46e71f04782e1a3d3
b0205176a58913f57056b91674097bfb58046e97
b3bae0b56b50374cb85fc7fe4c9b551383d1969bf31e7adccb867e3467c59269
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7385
x-amzn-requestid: 7ada8e43-9cb5-4793-9289-e308e9565e7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZoF7aIAMF43A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-73da01595d32809e08b93a83;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 14qQi5wDI-_EgyghHCMjRtdZliSj3L6veSqIeBoEjCTfdZfrKb-UzA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "b0205176a58913f57056b91674097bfb58046e97"
content-type: image/jpeg
age: 1165
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 64222
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c37f49b9fb5eeb70a244a759a4ce0d
f2f4664206335b080db6a5608b463945e89de346
cbb8e24144c2118f3e2f2f9db09f2b4d582bca01da68fc2fb29b4d8a6df4dab5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8192
x-amzn-requestid: b61498b4-22cd-4860-98e0-c7aad18a4d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sGTXoAMFZpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-23d0f24731d3bfab253f2677;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: oRlpmDZZ8uLu-tcn-j2H5XMAxfUCtHkm_xq9jUlROKsPgth0Gu-ugg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1165
etag: "f2f4664206335b080db6a5608b463945e89de346"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apphotlive.biz/noi-dung/themes/rdt039b/css/module.scss.css
172.67.148.212200 OK 6.2 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/css/module.scss.css
IP 172.67.148.212:0
File type assembler source, ASCII text
Hash eb3c2c4ac9ab3a68988e76d86f8ab505
b55af99642f8001edf60b27e9efeb64774414541
fe4451c7ae11043d72c226f32b76cc190a46ac9e7103ba160855ecc98332f30d
GET /noi-dung/themes/rdt039b/css/module.scss.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:14:31 GMT
Vary: Accept-Encoding
ETag: W/"625fdd07-8a14"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdJlqEdTmfcef8ZnTugVi50XhMhY11l1NX0F5dJW9AQg5WthVR2MCACcTLTAAIQcqhDSbpKd26VvqGP1mGAPRGc2vL9ksZTXrTsOhjjnKqmVqXhl2S%2FrDx9nRI%2BHHyVgpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b38c1b51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/css/font-awesome.min.css
172.67.148.212404 Not Found 115 B URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/css/font-awesome.min.css
IP 172.67.148.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c79273e9b9de357e24b445594f31d7f8
e27e10e96ca7708dbad2cd41a416ffcab6a94600
941433f5957dd44b3ec474726aadfc556c41e94c1a6969d8fef8a931414f6baf
GET /noi-dung/themes/rdt039b/css/font-awesome.min.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 404 Not Found
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2t5C%2Fkx%2FvQcG%2FvNQQFPjuVyDb7S3DU7J6p36qV22dUNll7AOkZD4rzP8e9aYGqBqu406O5RFox%2BrpWmYUh%2B3zoBzZrOQHwZwmVFMqmB4HLJQNaME91DDRiqSntTjRqXTEw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b2d25b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/css/responsive.scss.css
172.67.148.212200 OK 4.5 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/css/responsive.scss.css
IP 172.67.148.212:0
File type Unicode text, UTF-8 (with BOM) text
Hash 9babb208dda710004d95b0c83258cfb1
52e98a26550284c476d83824aefedb15037c7dfd
6590210fd610c6297efc07f22da2ddfc8a9a5567db93cc1a4a1d3f0de14e8140
GET /noi-dung/themes/rdt039b/css/responsive.scss.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:12:38 GMT
Vary: Accept-Encoding
ETag: W/"625fdc96-6324"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZA5F4JdN3LxiyPZqUmngrrAu9zyP2kdNKNDAOYLn4NFHZPkq5NRpAWxjOunPZH3bZPOuNSL59tgL26DG0buVyVf33VXOcxliggINKwTfEu5UJn1oB63KphiyQAj2tVlQmA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685c2bc8b512-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/css/base.scss.css
172.67.148.212200 OK 17 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/css/base.scss.css
IP 172.67.148.212:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1bf6d7f5e29555be1b65617fe3e0aad6
7eabc149fed1737d8549533a4b32180bdb2fcf46
31dd15363a3aea1f2156152a3a068c828c0040a1c8bff86e2243b09ac56c2ea3
GET /noi-dung/themes/rdt039b/css/base.scss.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:15:59 GMT
Vary: Accept-Encoding
ETag: W/"5e145a5f-12501"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XzF0OqA67hehoeQf3boZAOYx%2FiwWwapb016Aah3W%2BxoICmwTgTSAJRiQ45HvgNunP5mChhCaVs6vDWNubABmY%2F3%2FxmLeuhbqLeyFmvM0V9dzRxkMcyr1Nnh5s106MijayQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b2f0fb4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/css/style.scss.css
172.67.148.212200 OK 24 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/css/style.scss.css
IP 172.67.148.212:0
File type assembler source, ASCII text, with CRLF line terminators
Hash a5e1928985a0651f93aa59059ddf5874
73b1c369c160e360d88cbcfe5a6b40abaf001c8f
7bc6b688cfc106895ee9d993b6568f72264fa51aa993ff98e94a4b86ebd0aab2
GET /noi-dung/themes/rdt039b/css/style.scss.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:16:00 GMT
Vary: Accept-Encoding
ETag: W/"625fdd60-1dffc"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kse%2BwQKUk27M6wO5vOku%2F425SaHHzMr2T%2BDa76tTqLTuhg%2FML%2BUF5hqAXp9221lYvP9DP1HN6wrqg5YNFA61ulut0BgaX%2BBULaSmMUAXILg45WmiFWG8Ums5asX3dqri3g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b38740b06-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/apphotlive-net/2022/04/iphone-tx-1.png
172.67.147.119200 OK 17 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/iphone-tx-1.png
IP 172.67.147.119:0
File type PNG image data, 820 x 288, 8-bit colormap, non-interlaced\012- data
Hash aa20f8f057d2d4b7d1a40121da611f5b
a6eb278ae30e3122729a198e6bc890ada76d0c37
f0d7fe7649bd59d7a27f3792813ca5972cb53287a6fcbf29f8c999b729d46336
GET /photos/apphotlive-net/2022/04/iphone-tx-1.png HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/png
content-length: 17390
last-modified: Tue, 19 Apr 2022 02:20:16 GMT
etag: "625e1c60-43ee"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f7axE3oYfuMDg%2F0Z7IXZWHOzXny3fR9wNw%2BLLP8t9iEqNYe%2FL%2BZ9ZmQQrwfQ0ZSl6n%2Fcpn8zSb79I%2BgrDHUBEZt4g92p76Hl4RUyXSt48F0haYUYD31%2Fojn%2FlZDqehIbjVvH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbf0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/apphotlive-net/2022/04/android-tx-1.png
172.67.147.119200 OK 15 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/android-tx-1.png
IP 172.67.147.119:0
File type PNG image data, 820 x 288, 8-bit colormap, non-interlaced\012- data
Hash 64a19a017eb6cd83435b8726b2c1cd1f
c7225dbd151766c809808897436578bef7b3ee76
0f2a24d750f9125bae7940db150400a0a31a8b620f6803a84b7cb2b87cb543df
GET /photos/apphotlive-net/2022/04/android-tx-1.png HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/png
content-length: 15034
last-modified: Tue, 19 Apr 2022 02:20:16 GMT
etag: "625e1c60-3aba"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ht4LaMKt0geYQhN%2BnY7905o%2FqoDvpRftrRae69C3LQM6mJulDRLDt2c2WJLqmEFtPkepfAx1Ay62NTIEJw64Yz5tTZUadnXc3XzZZlwq2njRGej2NRBiWpHQ0L8tRg3VuqIc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbe0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/plugins/google-language-translator/css/style.css?ver=4.4.2
172.67.148.212200 OK 7.4 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/google-language-translator/css/style.css?ver=4.4.2
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash 1eab7e9881402c6c6c19c22d5a7caf7f
9602f0d583dd3ea768ec50a431605e2d89e61e61
b262e9670b715bc9d138f7da42f4cd56ed58d05a90d9dee3fa44cf79a03e1d53
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/google-language-translator/css/style.css?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:01:24 GMT
Vary: Accept-Encoding
ETag: W/"58ceab54-13472"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R93zn70Og%2Fy%2BlCExTfkHm6ILhdPHIXjNxJpVA1QX0qEZxSxIkVUiiqGgsx%2F4%2BgTI81HpXGcCK104sxoq8Gf4UWOunJ9sc72jsnxbeqV%2B0FTulo7Kh0%2BzF%2B%2B3DGOMmD3wzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685eed11b51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/blue-multi/blue-multi.css?999&ver=4.4.2
172.67.148.212200 OK 3.3 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/blue-multi.css?999&ver=4.4.2
IP 172.67.148.212:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash a21a2224a5c24218b7413c71f0dd008f
29888cf908fc60c259bb0b57135db8980f00b4cc
7a9b7c283489cbc81ae783c9fac8b54dc1c313b03d4ecea6f0bf4da336580d7e
GET /noi-dung/plugins/blue-multi/blue-multi.css?999&ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Dec 2021 16:27:57 GMT
Vary: Accept-Encoding
ETag: W/"61c3520d-292a"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XUZmBcKF3uFKiDaElfk8zrAdaUyfcNo%2FsS8HZsFES%2BBm0wTGKFUfyAe6oY8TosvYgcLXQyWPiOX97oCJ%2Bgpet1nfLC8vs7uOuIffFhclI3NMadBOHhlPWVfoGyjfRGM2Hw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685f1940b506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/css/plugin.scss.css
172.67.148.212200 OK 26 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/css/plugin.scss.css
IP 172.67.148.212:0
File type ASCII text, with very long lines (65371)
Hash 99dc5c678fe01448c22821853fd2133b
3e3cd1125338ceaa35150a723f4fb3175a516a8f
02ab9aafc1d93685ae087e9f7a5c028ef47e16ea805f4782528d69b3aec6b3d3
GET /noi-dung/themes/rdt039b/css/plugin.scss.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:16:01 GMT
Vary: Accept-Encoding
ETag: W/"5e145a61-1e896"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4POHlglBktNpDlzHivBal1TLYHNzOKgSFCsmbcJfh8lVMMwCgEuzXcgc90PoL2s%2FWDMEhJNWnz0u1Tgam%2F%2BGWcTuHQleGcT9%2BJGSOMCNgCYFLfSHK6vGeNawNT2Dx7oIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b2d20b4f7-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/blue-multi/cat-in-autopost.css?ver=4.4.2
172.67.148.212200 OK 774 B URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/cat-in-autopost.css?ver=4.4.2
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash 72818c9d063b2d5615b090336b70e5c5
62f01b1a93c1b2bc97eb9890b5e7ccd77e06dffd
2e4de98885c44ddd959f455247de22f06853f3b48a22b7d894f4c19d3b03b342
GET /noi-dung/plugins/blue-multi/cat-in-autopost.css?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Sep 2021 02:35:18 GMT
Vary: Accept-Encoding
ETag: W/"6136cfe6-808"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wBsmj6lKnhTPxqrFrJQzCvpVD6IbjAy4sDCyWYMR9qwrSTiS5DnPAGAhgy556GgFemkN3DX2hP0Y%2B5cxqcZaiVAQTv8pLUj9%2FDHz1%2B1uDe0pU0vSWapipOBQ1%2FIbH9A5vw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685fef85b512-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/apphotlive-net/2022/04/8as.jpg
172.67.147.119200 OK 169 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/8as.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 169 kB (169032 bytes)
Hash b25929179b6a6f9944f799c206481b08
53e573945aa60fdd4d5d93a473462101323a3182
6f26c5ae21fc6f7394bb195b5882902185baadb59f4c5bdf9408a51f41426d0a
GET /photos/apphotlive-net/2022/04/8as.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 169032
last-modified: Sat, 23 Apr 2022 05:01:25 GMT
etag: "62638825-29448"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RHEKRrN8eK3ydk8S6EwrmKRnv%2BWwn%2BCnpVCSo5W%2FLWJowmkHrrcfX%2FWa7TvH%2Bg4m2%2FMboy3uCZ6%2B4mqQjIpA4fg0f5tS5dUGFzItJpylFS9yZGq09Yf1ufbUninTRtaqco8S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfc00b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/apphotlive-net/2022/04/huongdantaivacadat.jpg
172.67.147.119200 OK 173 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/huongdantaivacadat.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 173 kB (172780 bytes)
Hash 31c21ddebc4a4407c74198d8e672b40a
25390a6df8c8603bd6271e902d03c516f5b1d8a0
79855f69bb1bf823f311b509364538ed6b3f3d49dc6d20d126d41b5052ca031e
GET /photos/apphotlive-net/2022/04/huongdantaivacadat.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 172780
last-modified: Tue, 19 Apr 2022 09:25:56 GMT
etag: "625e8024-2a2ec"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHesJnVNAl9dAgFsQVsn2q3HXJupC8TAo2Y7eiPkn9UQE4GAozj1PU7WC4t6devqqiSXVXY0uUhQX8KRvX8Bx3lLZgXgAG9ciosC%2BOa97kmJytdwK2%2FtJEgPJkbk9uAdVFYG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bcfcc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/apphotlive-net/2022/04/5AS.jpg
172.67.147.119200 OK 159 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/5AS.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 159 kB (158825 bytes)
Hash c49eec4ab6782effc8efc6c5e81ad856
d98abd71a7a3f628d2d053fda565d05e673f1614
9f0e5da4176f3de8083342bf927c9bbdb9b59be794577343723d75b0ad8f4731
GET /photos/apphotlive-net/2022/04/5AS.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 158825
last-modified: Tue, 19 Apr 2022 08:17:50 GMT
etag: "625e702e-26c69"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qf%2BOBNivNvWLJUQy6GjaQhZrQzirKZqduZ44N1jdBJHaa2k8xer%2FMzDWEBEHIp0argH0Zuro7hP32bWhF6LunPahvyLm3vOYrm1PDoPJOYfJ0CRGmmeSJlcGh8%2BSEQij3BTX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bcfcf0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/apphotlive-net/2022/04/4AS.jpg
172.67.147.119200 OK 174 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/4AS.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 174 kB (174108 bytes)
Hash 278cd7c18925f146311a2d5a3920280b
64c612c97401802f113996c964290be5b9f0e5f6
848c9ce41595bf88396cb13e5977b28d114907c670c03f25a7dbb33dc87d56f4
GET /photos/apphotlive-net/2022/04/4AS.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 174108
last-modified: Tue, 19 Apr 2022 07:17:53 GMT
etag: "625e6221-2a81c"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6U7x2WP%2BUY5Wtl1iI8ZTrYBFdoj9OF4lM5SGE9Tms6rtgUPCVeIwNFycBqHpT10MwGIkS2wGKIqQL8gCA%2FqiuHbqJAlbEKE6jbRjJAk2IkAt5w9zqJN7b0w7698VqYckIQUx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bdfdc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/css/jquery-ui-1.9.1.custom.css?ver=4.4.2
172.67.148.212200 OK 7.5 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/css/jquery-ui-1.9.1.custom.css?ver=4.4.2
IP 172.67.148.212:0
File type ASCII text, with very long lines (1403), with CRLF line terminators
Hash a8a0908a026a918900afee7068239c51
f51bce405f3db7aa0509fdc65048975a8525f816
094befa6a1f003daa669dd114e4f65d1a5e1daf27fd53de80bb219399b3c09c5
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/wp-user-frontend-pro/assets/css/jquery-ui-1.9.1.custom.css?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:52 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0c8-7fb3"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GmMCuCdTb%2BvpeYJRR8BaXUoKy36iI41iwQxlT36LNrI9p17SYOxPiHr5En6hSazjnDH%2B%2Beq7oRAis%2F90OOoELBogd%2BfgdjOxSiQXt3NZSdcducmeuXNWb4czUuJiUO5yoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596860ccccb4f9-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/apphotlive-net/2022/04/9as.jpg
172.67.147.119200 OK 170 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/9as.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 170 kB (170531 bytes)
Hash 055ba7abd332e150422e7b08ad51f4a3
4c4db5ff2f068faa9b791614664b91d31fce200b
daf1f271abc44a461f6d0d1f265c3bd98f616c51767f96a96487b854409ecf6d
GET /photos/apphotlive-net/2022/04/9as.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 170531
last-modified: Sat, 23 Apr 2022 04:55:27 GMT
etag: "626386bf-29a23"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CON4eZ2wmglmqc%2Bf%2Bu3zItDpG0Y1j%2F35bx6KV5cvB0xrheyNPU8YBS7xAujTSGzGPPAztRlfHexZa5zjm%2BryFMJIo6kaqHFjYrm4pMN%2BqTgHKvqeFpzgr3dYG8yHzF33jW%2Bs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfc10b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4
172.67.148.212200 OK 1.3 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash b736268fdb4a7df5557c097dc806b307
2a1c7382430131975f71ff6d6e9e71c12168c7bd
5787cecf32955bca1827ce6395d946e1c7ad6524722e058be70141a3244c95da
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:02:20 GMT
Vary: Accept-Encoding
ETag: W/"58ceab8c-d4b"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LpCGpC842%2Ba5p3CZlGA1GxzPDgxz64Xr3oh9QREED14RCkXNrlSvX04Y5YVGzVJttQlKT37RL4ZgQeBn03zvEmQ08%2FGluAVTPBExonObp2S7uzGg%2FWVh9oEvz8aseD9z8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968612dd00b06-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/apphotlive-net/2022/04/3as.jpg
172.67.147.119200 OK 209 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/3as.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 209 kB (208576 bytes)
Hash 64be36c0dbe130ce18c5519e35e30762
e73d1cf98045fca78d3d73a47c2e508a9013e70e
82e1ace2a982653932d67a1e1e61a93ee62d76fd9c08088443b9934a224e6a1e
GET /photos/apphotlive-net/2022/04/3as.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 208576
last-modified: Wed, 20 Apr 2022 09:25:26 GMT
etag: "625fd186-32ec0"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfVpGxijPB6MEIRDUQv8Gj6Wrhu1CdM1dehavabsLSv7meIv3so%2B2CkM8%2B1JnXecHq1TjO%2FFFEnkQf2Au3zjtcNUlTmEwcUxBvqm8hwj98eMWLtncaCCrwbm2ANuakC5s0cG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bdfdf0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/apphotlive-net/2022/04/2as_1.jpg
172.67.147.119200 OK 166 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/2as_1.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 166 kB (165981 bytes)
Hash 8042a1d76952f2cd4d017b8e58e9d96f
a698ebfa85359495d21788e35279610ed3c62456
3b69a2fbdbd60d4aa7e13c4d5a352959881568bce8028e5a7d610e0e56999013
GET /photos/apphotlive-net/2022/04/2as_1.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 165981
last-modified: Wed, 20 Apr 2022 09:20:37 GMT
etag: "625fd065-2885d"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K6y2%2FGWGbgsjTv%2BSzlLiIVSpMX6eYHn7Fwkv7dqOSwi1bLm7iEHacZ7fLtQzQdLZqlx3LRJ0t7Fbz2cT5xnbQKz5ErjBtZBwfa0L7bEhByBvgNDvrt4zoT3d8qqxLx1semFx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bdfe00b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/apphotlive-net/2022/04/lisablackpink_hotlive.jpg
172.67.147.119200 OK 148 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/lisablackpink_hotlive.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:20 16:14:59], baseline, precision 8, 612x434, components 3\012- data
Size 148 kB (148170 bytes)
Hash 760d41049de41612cab51782d8611881
a26e28ffdd71501c52f13d3571b451517fc63fee
4305495b7ba05571cbe092ef785429cd2d8dd2098ff48249346810650c2982cd
GET /photos/apphotlive-net/2022/04/lisablackpink_hotlive.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 148170
last-modified: Wed, 20 Apr 2022 09:15:25 GMT
etag: "625fcf2d-242ca"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pyurbib20XKkkEvyoQoqaXSwE1iSbvit5CX%2B6JjyELVhJo%2B776gY3SpGJ58bLbmo%2BzP1u8plmg1rQrljT4aXnVYty8%2B0gLhdcQlOzN%2BxAqhzIFYRpKHY0IOfgAxH97374lcA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upanh.redeptot.vn/photos/sannyko-vn/2020/04/icon_chat_Zalo.png
139.180.138.253200 OK 64 kB URL HTTP/2 upanh.redeptot.vn/photos/sannyko-vn/2020/04/icon_chat_Zalo.png
IP 139.180.138.253:0
File type GIF image data, version 89a, 1000 x 1000\012- data
Hash 169609751514a2e8040eb4c5b1560619
d7533a39f6753de7ecca29620737692cd2572a02
54eabb9a005b1a0ce0579aba5806b61a30b0c54899850f3b40c934abe8d545b2
GET /photos/sannyko-vn/2020/04/icon_chat_Zalo.png HTTP/1.1
Host: upanh.redeptot.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/png
content-length: 63708
last-modified: Wed, 16 Jun 2021 09:25:39 GMT
etag: "60c9c393-f8dc"
expires: Fri, 04 Nov 2022 21:56:31 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/themes/rdt039b/style.css?ver=4.4.2
172.67.148.212200 OK 1.2 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/style.css?ver=4.4.2
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash 71bac27efeb157e6d94052350e837774
0825d4785cd168cbffac6ef347fb44447084941f
24da6d0a0313e26d850953231580f2869315d791b738685e95d7fe5f37d4d14a
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/themes/rdt039b/style.css?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:16:54 GMT
Vary: Accept-Encoding
ETag: W/"625fdd96-af1"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7rfKSQaScPJQhRjD4igwqVWywJEUE2iA8VYLbxgvqVicdL43xXkGWI3cfLrgq4Mmqzli9qoaGX%2Bcr55koHuooqWXaaR6p3Rgigv5PmdfUg2m66woU1n55B%2FNrMXWOYzQSw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968628901b51d-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/apphotlive-net/2022/04/1a2.jpg
172.67.147.119200 OK 558 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/1a2.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:19 09:17:57], baseline, precision 8, 1920x896, components 3\012- data
Size 558 kB (557626 bytes)
Hash 93b9b65d45ca0c8dbc6d690ecb1b4d63
5cd91709c9822dba04cddc29ae19ff0b77591450
b4abecfac89ff394eb84e51783881b3ed8ebc042179738eb70217b2ae2a0edc5
GET /photos/apphotlive-net/2022/04/1a2.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 557626
last-modified: Tue, 19 Apr 2022 02:18:40 GMT
etag: "625e1c00-8823a"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CO%2BSaAMkoZ407GCAaGHKTkWRgAYPX8XD17%2FEeub5a%2Fa2pkqcI5yIh6gQhr2S8w3dvbzHUr4ToZsRmnjFuSPXb%2BDLXcFfkGEOlonQjFWQE6zjO1Cf1WFoj8kXv6BN3Tzu5ZfQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfb80b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apphotlive.biz/inc/js/jquery/jquery-migrate.js?ver=1.2.1
172.67.148.212200 OK 6.6 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/jquery-migrate.js?ver=1.2.1
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash 945394399a3aa773d73225f1df0d64ab
a79751c709abe4ebe43dc8e985bd660fe876cde0
e93f7a929e8aeaf8522fa5aad563410f92ec26716de60f384c050db78825684c
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/jquery-migrate.js?ver=1.2.1 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-42f6"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0ucjEPjsn1kwzHZSIb5GMjx6KFNLoQgkAIRjxBf8VRBqFCPrSrq8cVafsvtFz7clKzF8g3MQZoj5XvW1exXkAlrVuteaOT0o8wHhcrGnqNKMbLf4ZCxMylyY8Bn77ZThA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596862bcf0b4f7-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/hotliveapp-vipvn-net/2022/06/320-100.gif
172.67.147.119200 OK 164 kB URL HTTP/2 upload.vipvn.net/photos/hotliveapp-vipvn-net/2022/06/320-100.gif
IP 172.67.147.119:0
File type GIF image data, version 89a, 320 x 100\012- data
Size 164 kB (163476 bytes)
Hash 2e949443cf42a634333fc5cf6ebff2b6
df1c21a72e4563f51d5da1960d0f7cb1a239ae05
021d744fddc9969d0c8d3368da75d9b37ff7b9ec589889bb930ffc70f8dec8d7
GET /photos/hotliveapp-vipvn-net/2022/06/320-100.gif HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:32 GMT
content-type: image/gif
content-length: 163476
last-modified: Mon, 27 Jun 2022 09:07:51 GMT
etag: "62b97367-27e94"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tr1WGk4lqlvV1mh0T4e3QDbLgRJQdkDJN8ACUUMy43cbjlRHSNqBk4e0T%2FKpJWi4mqwTFDlw9uRbQ7SpimrCHpH4%2BD9J9GblW6EtbKnydGRS3GyNvlay1pVYqFpzkyVE52Vb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbd0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/plugins/google-language-translator/js/flags.js?ver=4.4.2
172.67.148.212200 OK 634 B URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/google-language-translator/js/flags.js?ver=4.4.2
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash 2cb58a05f9361f7ac924b911c37e2733
d601ee76d6a4ca26a9631f704724d376e8d00458
b63457f788c382e5c4b47c80825abc84dd2ea310d7112ba9a872693dfdd903d8
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/google-language-translator/js/flags.js?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:01:24 GMT
Vary: Accept-Encoding
ETag: W/"58ceab54-5c9"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZOWtmKjdSqkG2%2BTiBCkyRNSqvtrYlS3IpyjO%2FIBWJYN8iE%2FVNpFHsrHN9luESeS8qyE71lBC1j6xcW0pq6uCijOdeA8qvlRaAxeG4sGTfSzF%2FPputnjdLgsTDuydsDX2dw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968638b3bb512-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/core.min.js?ver=1.11.4
172.67.148.212200 OK 1.9 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/core.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (3772)
Hash fccfc4beb89e926a7834e430c6728544
db6ee901de3b2258f2f535b86871ead2331fe683
1823779acdc846eb880b977a0b83eff3dca834e881527a59d4088234e6ab3622
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-f9d"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7zsDsihf6ISoPa1hWEa7B%2F3aa9WHpEb%2Bxciu4xURYelYka7k6FZo4SnhErly6rncs3YWmI7zS%2FzhrPrnkijRp%2FxdkI5od70MYmAufCUczbHR0EbzMs7s1H6V3XaieiLJ8w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968648921b4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/jquery.js?ver=1.11.3
172.67.148.212200 OK 39 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/jquery.js?ver=1.11.3
IP 172.67.148.212:0
File type ASCII text, with very long lines (32038)
Hash cfde5f41049de31b443df820b4b8093d
f95d0a32b6d0faa53e884436ee0460f82b425351
0eaa7f41d8156e6b068c5c2c9be7ad3199951c0d356113ff99ed0192fa50b4bf
GET /inc/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-176e9"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hqcKpNuyuckNFQfnnBXwqyXbNpHGor0vqTAGfFJ211GBZHscvBDZvjfQBnauaigbIUk0Cr5836%2FdgflHW7hG%2FkF3mJINi7aMmD9aPnjHtueM4ng5CvSDsauZuE7AmXlHNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596862ad6db506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/datepicker.min.js?ver=1.11.4
172.67.148.212200 OK 13 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (32047)
Hash 59978d1223a7f6d66ebf5dee823fb3dd
2d393c28de253e62b4837908cc999846fdbd2b22
4e59a632b47f5102bd7524def3d13c301dae378862f77eab44b27f5be5344f17
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-8eb6"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WEQOB1JNdXCWKDpM1re3%2Bey7U5jo0WdcvB7dLhG%2F4OshusAW9wcToOb4Py88gXybNc%2FOIiRe16lborKLbGHQvM4bT0ikQXXpq6KLRiI6ngNDCPjptcn4fJ026wW7dlbSMg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596864f94f0b06-OSL
alt-svc: h2=":443"; ma=60
upload.vipvn.net/photos/apphotlive-net/2022/04/7as.jpg
172.67.147.119200 OK 182 kB URL HTTP/2 upload.vipvn.net/photos/apphotlive-net/2022/04/7as.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size 182 kB (182095 bytes)
Hash 15d68e5b217bb1fb14e53b7e54ab7572
2e6c8d2500f453c641bc466e676070639f8fb058
8e296c17b78463aadb41546f2db10d43214eeb7548e0dfdc8c3c9a64c45464b0
GET /photos/apphotlive-net/2022/04/7as.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:31 GMT
content-type: image/jpeg
content-length: 182095
last-modified: Wed, 20 Apr 2022 09:11:29 GMT
etag: "625fce41-2c74f"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fefxVOLXO3tiQjzwqX%2FqYql8BXcP08wYkdbLYQKQf19aDr6RwPHzNw%2FR8a9YWysG35dmZqTXCANf2aQFug%2FfCJtkf8GD8VLu2mVYIGhq9kG%2BFKJg8tUJlmDV3%2FYguS1YsaQA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfc20b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upload.vipvn.net/photos/taiappmienphi-net/2022/02/1A.jpg
172.67.147.119200 OK 639 kB URL HTTP/2 upload.vipvn.net/photos/taiappmienphi-net/2022/02/1A.jpg
IP 172.67.147.119:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:02:18 16:27:03], progressive, precision 8, 1920x896, components 3\012- data
Size 639 kB (639040 bytes)
Hash 83b1e48053d5e63ba1d0f5ac0bce494d
929639b488a314798d6fd1d408b785e7619b8bdf
44353c67ba1bfdbe8d4fcf7c587718765f4f509b762b41bca12ad164757f0692
GET /photos/taiappmienphi-net/2022/02/1A.jpg HTTP/1.1
Host: upload.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 05 Oct 2022 21:56:32 GMT
content-type: image/jpeg
content-length: 639040
last-modified: Fri, 18 Feb 2022 09:28:55 GMT
etag: "620f66d7-9c040"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gfcz9bXKOBT0JzYRxNBM3zd5fP5UOEXl35X%2BzLe1Ls858hdApo1AiNoV4ysh7iiZzZouUlg7zQxvppP0esJWRVjtkyxKf7WwIfywA7FJXQ0oIoMuB3%2FUNe4xK%2BlahrY0KLeZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbb0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apphotlive.biz/inc/js/plupload/handlers.js?ver=4.4.2
172.67.148.212200 OK 5.7 kB URL HTTP/1.1 apphotlive.biz/inc/js/plupload/handlers.js?ver=4.4.2
IP 172.67.148.212:0
Hash f60903316c08ab1d61d0c49952977997
05f4d3b54d21e5aa23527e3e0107a10241436181
3359edc9442fedf6d9846670ae202caa95e281cabe74152f9a47b182395f4e29
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/plupload/handlers.js?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:46 GMT
Vary: Accept-Encoding
ETag: W/"5783bfa2-3e60"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Azim3%2BAwQQwxPZYclfraZzDuWlXWMuLkwXlfa4MYcGkaJlOnmelzOvCvLGtYcjhgBJC%2B4WZjPax%2FBDZrzk8YSMcnBsfW%2FOdHzc4gtcgw0OqqaDa%2BPog8CxYDxDO8X9YQ7w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686698b6b4f7-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.148.212200 OK 655 B URL HTTP/1.1 apphotlive.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.148.212:0
File type HTML document, ASCII text, with very long lines (1238)
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 15:38:08 GMT
ETag: W/"633c5360-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l0cCg4VK1MUzXJ2Iju5XNjSyEC97DOm%2F9gIhh2fj6Kamg%2BY61HbWkrMG3zMVT%2FPb7GOcTtARcP4BDsuIFqTblgqcDtIvmbItyBIE2MW4ZgHESQ5p0z5AM6X7vSLdzw3cZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559686a4cc6b4f7-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 07 Oct 2022 21:56:33 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/upload.js?ver=4.4.2
172.67.148.212200 OK 1.9 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/upload.js?ver=4.4.2
IP 172.67.148.212:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash bac48ee8e328b5e3a54bd4d6e99e3ad2
319b976bcfecf2ef8b6c4fde24a659234094325e
5787cb62cdb3f3627422172d7f9a97b36b449501bb49d9400e9a48d739f8267d
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/wp-user-frontend-pro/assets/js/upload.js?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:56 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0cc-161d"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sE8J0bP27N8N0uWyLvbEa76%2FiBgEq8TC%2B5L5SruaAHDH7us0gr3Qzx0IesBiA9Ea0PFIs7OJ3qJ7vrtH3WI64uQB1dgcYk8kwS9ZXFacOAqw7hrVYFHoL2afbkHbpxFXng%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968681cceb4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/js/option-selectors.js
172.67.148.212200 OK 2.5 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/js/option-selectors.js
IP 172.67.148.212:0
File type ASCII text, with very long lines (6464), with no line terminators
Hash e867bf3345a2fe657bce39bebca07ec4
b1b90bccfaed08a1f64921b22f548211d0586f0f
b95a17db0bf87d1fc47da6983a08f778eb89198f255909f952f039f5860ea7d0
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/themes/rdt039b/js/option-selectors.js HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:41 GMT
Vary: Accept-Encoding
ETag: W/"5e145a11-1940"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AjNbG15gwIyiNM62%2F0ziG0HzNQTB10w3oet164F9YnD4%2BrOi5PY9NcyrV07e7%2F5spZ5Jdx%2B8lfrdqgaPlvljUocmseQ7gSMzZ%2FgToGPpH9VLTjBi%2BBL%2BVrVu%2FdUJJiNPHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968681bc8b506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/plupload/plupload.full.min.js?ver=2.1.8
172.67.148.212200 OK 43 kB URL HTTP/1.1 apphotlive.biz/inc/js/plupload/plupload.full.min.js?ver=2.1.8
IP 172.67.148.212:0
File type ASCII text, with very long lines (32015)
Hash 09fd26a4cc2130f640c1b7ec972451d4
43fd93b2189213ca9ea237ae0145914df6fee7b8
cc5b6351f0ceadc1cc8ec7d2eaeb99370f9d2cf4301cdcb00f14819a342a51aa
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/plupload/plupload.full.min.js?ver=2.1.8 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:46 GMT
Vary: Accept-Encoding
ETag: W/"5783bfa2-1b9b9"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NKpGep6k9T82L3orGK%2BHFuxNSrMdXzPg29t1Ov2AihrSUc%2Fb0v4iDVVd1GLDGYuNppq%2FnAzFNr%2BxjTa%2BJptsoESzI%2BUbPTvvGHjCXKsCZv5%2FvyXPY8fkwk571yVr4MNtPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968665d17b51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/js/api.jquery.js?4
172.67.148.212200 OK 2.6 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/js/api.jquery.js?4
IP 172.67.148.212:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3c6041efaedee1b44944b64a39226c27
b58060cd79e3b281c52af8d165e52d79d7a7a41c
1926ae2790e4d1d6d3cd052ab72d3758fd292d837e7be34863ef0f2cbdf90b97
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/themes/rdt039b/js/api.jquery.js?4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:39 GMT
Vary: Accept-Encoding
ETag: W/"5e145a0f-2463"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vf326aD8Vur4lnI04npkA%2F1pzGpgNQSdGG0l3NS0BHbyli1KLW00Yx9io2qLZWAdA607l%2Fw25cFsXYUFiYhUlLmi6rA4oJC058tf0T0o6HmzfFrFgSdCJHzxH2bv5GR8zw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968689c730b06-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/jquery-ui-timepicker-addon.js?ver=4.4.2
172.67.148.212200 OK 20 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/jquery-ui-timepicker-addon.js?ver=4.4.2
IP 172.67.148.212:0
File type Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Hash 2a208c36ca0b83c83d177cd36eece3c5
6523046305aa366228906c466d014257d01e90c4
9fbf78d68c656f932f3b1e128f685b2ba9213d7fe129917a70549d850dde7b17
GET /noi-dung/plugins/wp-user-frontend-pro/assets/js/jquery-ui-timepicker-addon.js?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:56 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0cc-10438"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qt0EcbhN5%2Fo7%2B7StjjBXc0UxusYnCrIRWw9tMajxNL5fZl2O%2Fn3vikCh8fOrGQNpG27c3WAXgC0yk5sqbg2of1qQ18WcofbJ%2Bvpc7UCRBMEPvC3uhFrHLx%2Fcmvd31y2GXw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596867580bb512-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
216.58.207.195200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Hash ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:36:26 GMT
expires: Thu, 05 Oct 2023 19:36:26 GMT
cache-control: public, max-age=31536000
age: 8407
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:50:35 GMT
expires: Thu, 05 Oct 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 7558
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 8545
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 8545
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:35:48 GMT
expires: Thu, 05 Oct 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 8445
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
216.58.207.195200 OK 5.5 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 5548, version 1.0\012- data
Hash cdaab83619fcacd4027a77c99dd51e69
9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:33:30 GMT
expires: Thu, 05 Oct 2023 21:33:30 GMT
cache-control: public, max-age=31536000
age: 1383
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apphotlive.biz/noi-dung/themes/rdt039b/js/main.js
172.67.148.212200 OK 3.6 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/js/main.js
IP 172.67.148.212:0
Hash e373b4cc3571e9782a8ca9f1cbaeb40d
79291e48c34aa5a78abb1b0e2c4e285ea332ec62
9d37079cb1bfdc46260720cc31d45bc591689705e6bb4efb7c073054e2fdb4c6
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/themes/rdt039b/js/main.js HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:28 GMT
Vary: Accept-Encoding
ETag: W/"5e145a04-2d8b"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nv8AJJCGWFGGpcas1yUZlSm4KEnUgup2TeInZqjkZztq%2FlENLOMItWVtaq2rX9SHz2S3gf%2BGhS3JxwfGQUBvg7OvfV20VXJNxAsd6bFcyF1KVKM4vJ%2FlfqExSW70sfgbxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686b9fd9b4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/js/quickview.js
172.67.148.212200 OK 6.2 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/js/quickview.js
IP 172.67.148.212:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 77bbaef6b9268fe74cd2f72bfcfc7f85
8f757bf3793ae42385494e83f12c40713ec69e62
62ebeae01c68f62bca9bf19173645bdeae7ccf8ee4aa938746d67004815281d6
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/themes/rdt039b/js/quickview.js HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2020 19:33:26 GMT
Vary: Accept-Encoding
ETag: W/"5e275206-5888"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BQVJQq56uf1%2FEw0hlO5XxLnBvpHQwWDqMcJEftFeGVVqVMuvfG3oBRzr00wNQOoA1%2B1K%2BduUyOlyJC5tuODUoqYuUDfq7L%2FFwBT2OH%2B4ACWbTXANiPFJ8oQ2Z4nVp%2Bv3%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686bff84b506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/themes/rdt039b/js/plugin.js
172.67.148.212200 OK 26 kB URL HTTP/1.1 apphotlive.biz/noi-dung/themes/rdt039b/js/plugin.js
IP 172.67.148.212:0
File type ASCII text, with very long lines (32045)
Hash 5ad07daadef316b37f56d8deeaf40b56
be774dac55c001b34722e706c2487b97c9176461
0db7ecae767da6f1d7dd021d8329d4e26abbd02469ceb62319a0153f07e2ab3e
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/themes/rdt039b/js/plugin.js HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:36 GMT
Vary: Accept-Encoding
ETag: W/"5e145a0c-13e69"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HhLT3nJSwIiUCUkpmuy7kcLZ3W0lzliw00wWB0wZcAddNP5IFGozagqCkGcfF9Rukz89lBsU%2BvS1cCuOtj5320yMex4btopazBiI9bgaJCY%2B8FxJNaSyNpFevr9IilpnlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686a5ccbb4f7-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/blue-multi/alo.css
172.67.148.212200 OK 7.8 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/alo.css
IP 172.67.148.212:0
File type ASCII text, with very long lines (53660), with CRLF line terminators
Hash 3d18ddaa3454375af65408c6f16ea5d1
9cfe4d3593cad9c53be555e27e56aa25d3882349
1525fa3bba82d4da7101f7d8029c64c164c256f42ac5406a750be1038ec66e12
GET /noi-dung/plugins/blue-multi/alo.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Oct 2017 15:49:39 GMT
Vary: Accept-Encoding
ETag: W/"59f20413-efde"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KjdoP%2FaKD3cAcamdj3NMiFNXksTwIZK%2Bvhix8KxfQioUybFjDuxbS2wspkVhmDJtAWZfs2soIkx4JDAHYYJr5Ua9Qc9v%2FrhoWxH1iOgEYeOtLzPEF8QR6sjKi5ApwIwdqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686bfb36b51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/blue-multi/jquery.fancybox-1.3.8.min.css
172.67.148.212200 OK 1.2 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/jquery.fancybox-1.3.8.min.css
IP 172.67.148.212:0
File type ASCII text, with very long lines (3871)
Hash 0b962a32685db18663ab6b92e0b26597
b9e45b9e0d3b651a45478dad7916f2a638ed7187
17505e88bb76fc2f0446fb34c6d25573c6b08fd6aa8a9f06016e76eeefcb8198
GET /noi-dung/plugins/blue-multi/jquery.fancybox-1.3.8.min.css HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Oct 2017 10:50:18 GMT
Vary: Accept-Encoding
ETag: W/"59f06c6a-f20"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gns3WUHYn7qVOS4aQu0Ns4i2wbYejxOZnrr6XM4xvjQzZ05WRHaMi7xlyHZpj1nTxSedOGLYPhZ8KID9oq8lT8TdcI%2FISh2zHsYb7khWd%2BpSCY0vcQkLZwwJspCM4NRvCA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686c2fda0b06-OSL
alt-svc: h2=":443"; ma=60
bongdatructiep.vipvn.net/noi-dung/uploads/sites/81/2021/07/telegram.gif
104.21.55.103301 Moved Permanently 0 B URL HTTP/1.1 bongdatructiep.vipvn.net/noi-dung/uploads/sites/81/2021/07/telegram.gif
IP 104.21.55.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /noi-dung/uploads/sites/81/2021/07/telegram.gif HTTP/1.1
Host: bongdatructiep.vipvn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 301 Moved Permanently
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 05 Oct 2022 22:56:33 GMT
Location: https://bongdatructiep.vipvn.net/noi-dung/uploads/sites/81/2021/07/telegram.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UtIzQR9YsCQaxZt1Tkoon8LoTQ%2F%2FX9FvgE92H6rdiEScE3MmbrioQJymHj8%2BHOmXus%2Fg8vbNXIQLWfN9i7G4%2BTpDFiabqRKYc0fG1bz8yWen%2BeuzwdLIZ6sBIWrMChjEkRbG6UlNGNVRxmc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559686fea2e0b3d-OSL
alt-svc: h2=":443"; ma=60
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0
104.18.10.207200 OK 66 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0
IP 104.18.10.207:0
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
GET /font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: font/woff
Content-Length: 65452
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "d95d6f5d5ab7cfefd09651800b69bd54"
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 08/20/2022 02:30:41
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: c297f94a89ae6990e2e12422a359207b
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559686feab8b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
apphotlive.biz/noi-dung/plugins/blue-multi/blue-multi.js?ver=2204
172.67.148.212200 OK 330 B URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/blue-multi.js?ver=2204
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash a0ebcd19f818d5f1a3ebbe2d9396627a
a510e7fd9b60c4f17e7e666615a29c9e15e9d361
937bb20f864a9f7cfc0f367a4b12cb2526fe5af84c73fbee095b0fd846938dc6
GET /noi-dung/plugins/blue-multi/blue-multi.js?ver=2204 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Mar 2019 04:01:53 GMT
Vary: Accept-Encoding
ETag: W/"5c9852b1-2a3"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kawd3TH7z4NqhBWA2CUky%2Fj1PLjQtk3nEjxEnyVwi2pRct3UK7591WoZOViAnl%2BiJ%2BXHZ80yE2qXXK1NhmU6FcoNMhWTT1RlkBkNtQv%2BuDQ25NEJCPF8kCCUx%2BKumbyQew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686cbda3b512-OSL
alt-svc: h2=":443"; ma=60
translate.googleapis.com/translate_static/css/translateelement.css
216.58.207.234200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 216.58.207.234:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:18:21 GMT
expires: Wed, 05 Oct 2022 22:18:21 GMT
cache-control: public, max-age=3600
age: 2293
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/plugins/blue-multi/rating.js?ver=22042061
172.67.148.212200 OK 1.5 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/rating.js?ver=22042061
IP 172.67.148.212:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 1c6384fb429c94e2f40b801dd39457a9
64b81e1e2eb4249c0a545f38adb1936725c8bdf5
e33fb790abb4bfaf91f02fb721b608675062262e7004afd7c73625fbe2e4c07e
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/blue-multi/rating.js?ver=22042061 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 01 Dec 2017 19:42:54 GMT
Vary: Accept-Encoding
ETag: W/"5a21b0be-1577"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F3pXw%2FjizUQWC0Zap60jEQW1MiKWDhAJp9%2BTGSaZgJ2ObjLmxQYzI0dLI3EKRtXeAA0kuZeWxQxBspTuBsQEjwSvfl%2BOegd6jnBfLIOZ6umMtGM9dXqpbDRy3Ju%2BQVDdjA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686f4c07b4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/position.min.js?ver=1.11.4
172.67.148.212200 OK 2.7 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/position.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (6306)
Hash 0eec2eefee6ba96f1f8dfc42c1b1b07f
6f299b8515258075311fb324fb2eaf25071b66c9
ab705874586906f0663f14a1c79e155379b53bb3d1dc9f76a610df78d13d53f0
GET /inc/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-197f"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byQ%2FThlShOklJQI8w62W9M5D8QcAefzWac9WDS7Opmdy871goG%2FgwRSwEvRV%2BY%2B6J%2FtoCrsUaA3flQJtSufyGputJDVLMoq7wjB%2BWpZri8lhY1YLBSsFLlRpdBlD0Eh3nA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686fdfd0b51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/menu.min.js?ver=1.11.4
172.67.148.212200 OK 3.2 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/menu.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (9387)
Hash 1c6344025bfa108969e67f2923805f4f
db387f34b03f35749c87b1498441e7d0dba38033
1c5d60e35ff318cacedd4702027e2607462e896bb3e67c60c5b49736ea177013
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/ui/menu.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-2580"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aNVlA5HKaYi1T5ymyJ%2Bq32%2FyrISD2n8dXdNOsP1Cblu7eOOZ1Jz7743qzgW6lllork7Cxs57HNplTvnikuSRENziKt5eYvYgXEpH3Gr30fBnkKUThZWI7uGy%2BqwgU1WwAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686febf10b06-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/widget.min.js?ver=1.11.4
172.67.148.212200 OK 2.8 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/widget.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (6689)
Hash 073d903bc6a4580c025184bb4f9e666d
faa59457d8592c18b1509291de4ff9eacab69487
5d027c9ace2661d4e08f4c2ea7edf9059cf5c9382da44ad52f3cf3beb193a6a4
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-1b01"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g37Vkyj4IoLcJEhl7Y%2FiuUJNwiKoJZPJiENc7biAmk7QLIXFzgNUwvt4seDxYkY3DyWz4hmuf%2BwxQE3obxBOR66bDIEC%2FsyhecqcRcF74AeFA%2FoyhmCeShhfUlhpHHAIIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686fda99b4f7-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/subscriptions.js?ver=4.4.2
172.67.148.212200 OK 2.0 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/subscriptions.js?ver=4.4.2
IP 172.67.148.212:0
File type ASCII text, with CRLF line terminators
Hash a6cc73e546d759799a1559a7a3290b26
6cc57489d87abbe03819694c52b0d63fe0294b27
e8971f50a3d6cb93a31396231ee10fad8a5423274ea54aef34f7c91de8c231b2
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/wp-user-frontend-pro/assets/js/subscriptions.js?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:56 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0cc-1e64"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=79kWNQeqSvbOzlzAGTqOLWB5ag9aQ5OeylT68irh4oM1BZGW4j41tIOBqEuTv294CpdgXRmtfbMLypnxih5%2BwU%2BlXuDN0gVHalNsT3oJGYZwRmtXlLbW%2Fh5wu2EnHgAf6g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686fcbd7b506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/autocomplete.min.js?ver=1.11.4
172.67.148.212200 OK 3.2 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/autocomplete.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (8061)
Hash 55804831adf824afd41273da1b1f56d5
3a7b32095c8624c8b23f393b52d00216b0ffe309
f7367327c302314f2a940e1e10f94b6436dd2238ffb1c07dea61c4387db5aa65
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/ui/autocomplete.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-2062"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SwmWBSuYIKDQb0LjEaYMMrUt5XNPHf1XOAcEXeM0kLW2KUxyVJG71csI%2FYoXaQPzJWQ5AFv1bYx%2BWf4m%2FVmG5RqeKo0cWGdjwK3wgcmGRFysHSsZadha2B%2Fs1k6VbcZwNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968705aa3b512-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/suggest.js?ver=1.1-20110113
172.67.148.212200 OK 2.7 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/suggest.js?ver=1.1-20110113
IP 172.67.148.212:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash 8131fa3f4fad962281315e499abb860d
85aac13710376adc93eaf2ef1e031a50b72f2ec4
d91876c0b16f71102712ccd992bc336f29e0e69f4101b79e208f2e0e469782d4
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/suggest.js?ver=1.1-20110113 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-1b40"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMWdo12mn86n2Yspsz1m8QR6St2fAoFDV3zwJLi9hXdThdYrFPqk1loBc4MWjq%2F2nglMkW3EDJ4H1kLfUXIpArCTU%2F81lGOqCDLjjPX5NCHfvLZQRqsUkol7HLKfZeThuw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596872dfb3b4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/mouse.min.js?ver=1.11.4
172.67.148.212200 OK 1.1 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (2936)
Hash 6cc48ec42d18759fb6925463361a893e
da7008bed6a90c32a8671c3ab0bb819bbc3bb29a
97a2aad24266b36e167017dcfd756fb25116f17108dc8d86c344804a47e77efc
GET /inc/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-c4f"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wE7L%2FusM%2BoScgt%2Fg43VVcikE6G9b2tAiHxPRa0PX3zXQ9%2Fx8k2CcwCJ%2FaoKSuDiBUInKr4YiY0QlNNOsNKfF7%2BGwGGjgSNi3j%2FeoLQ3xglCotMnnEt0d9MmeBkZz%2FgtbKw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968735baab51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/wp-embed.js?ver=4.4.2
172.67.148.212200 OK 1.3 kB URL HTTP/1.1 apphotlive.biz/inc/js/wp-embed.js?ver=4.4.2
IP 172.67.148.212:0
Hash b28ae11ef84e8cc6c5dd86c7630773bb
a9d3a15591aa2b323d7a9713c9a50c0e0acfe4fc
5e6a6a5d8fd9a68ece914192a176b3152013ec7ff67a29828b2512d55950afbf
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/wp-embed.js?ver=4.4.2 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:26 GMT
Vary: Accept-Encoding
ETag: W/"5783bf8e-cfd"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FOJBiGRhB7MoO0h9xnavJmBIZqweHEJFE5nyo7FoarqYOtcenIdvsaXP980uTxdyG%2BhBMwC3bEWSN0zeBuZzYVVCJZQilptvINU0d%2Bu3MipiJHX%2FiQ1q9q104My9EyJ4bw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596873a8f6b506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1
172.67.148.212200 OK 8.2 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1
IP 172.67.148.212:0
File type HTML document, ASCII text, with very long lines (446), with CRLF line terminators
Hash f6c37bccfe9da84854ad298a6d57411b
c8e05bf487e5fe662e161207e3382fdafd119039
4feba56234446fdc575c3c95bb8f97fc52e3fd256a42a305ea27f9655b0f082f
Analyzer Verdict Alert fortinet Phishing
GET /noi-dung/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:02:16 GMT
Vary: Accept-Encoding
ETag: W/"58ceab88-6b99"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aGbFI%2FWFXJOqj2Ny2eGp2xMtKv4ODwGcjLpHMtlTgxwxGNvnK2W5rWF8h77XPK3paeDtjJFZH0bKwBYmSCSgDxh1x6hTl6sitVVa3e6sOG5OpB4UV5ZTgQGzd2ME9IIcDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968739f70b4f7-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/inc/js/jquery/ui/slider.min.js?ver=1.11.4
172.67.148.212200 OK 3.6 kB URL HTTP/1.1 apphotlive.biz/inc/js/jquery/ui/slider.min.js?ver=1.11.4
IP 172.67.148.212:0
File type ASCII text, with very long lines (10774)
Hash 4f7f353fec984204512179b41d7c09ac
dfbd6acc4ea4e061897a900edf5fe82eefc0e3b1
1ad88a2ee57f507283f8fef3ff16b10c66ee1839f8c911595dfffbeb57f2f91b
Analyzer Verdict Alert fortinet Phishing
GET /inc/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-2aef"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F%2FgNr7rJdbWYKDtzKT1TEHSjAkJ5CY4O0N3xddn7XTsjeVm%2FLcxswzoPa4Khur%2By2SFmzQxWcG38xSdKiX4Z0jmK6Tk%2FpZupzD7i4r%2BPmwQtVZTllQyA47Go70h1t%2FkX1A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559687388630b06-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 28143
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:35:48 GMT
expires: Thu, 05 Oct 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 8447
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/plugins/blue-multi/envelope.png
172.67.148.212200 OK 912 B URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/envelope.png
IP 172.67.148.212:0
File type PNG image data, 35 x 27, 8-bit colormap, non-interlaced\012- data
Hash 371e519f19d22a5249fe4b0d447f4dc1
63df9b90ab0f6013dabcfd20edeee1d7282766c7
1f0e80b3ecb12a7f59b90be483358eebf90a993c9669636291027cf06e886658
GET /noi-dung/plugins/blue-multi/envelope.png HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: image/png
Content-Length: 912
Connection: keep-alive
Last-Modified: Sun, 09 Apr 2017 18:34:37 GMT
ETag: "58ea7ebd-390"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0FpH8Ep305qXkhYO5YtL20uxuG4wl%2BX6CsWfLi0GquzEtIv7gdVBErdmkibb6yhlgN2rfy8dqn%2FcuxbEv5L8A9ssYHDyJWPB5gF581WWw0SlKUQG7js7ytOkMqBw0YN32w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755968773fc2b51d-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/google-language-translator/images/flags.png
172.67.148.212200 OK 49 kB URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/google-language-translator/images/flags.png
IP 172.67.148.212:0
File type PNG image data, 169 x 460, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cc13756196f2680b4e0965458316117
019c150a1ca215594bc162d0f847e77c04f3c18c
ac29e2b4b627694ca58e97341e587ff7058acd3fe12cc1b614a6c07ea61dac73
GET /noi-dung/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/noi-dung/plugins/google-language-translator/css/style.css?ver=4.4.2
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: image/png
Content-Length: 49260
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:01:24 GMT
ETag: "58ceab54-c06c"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s8qv4014zad0ZfazJG7QJi6bMn9%2F4r2hw7SZWLN5W16umLjAq%2B%2F9w2Dj75NHaEEc%2B0DUxuXaBw7sUooV%2BtZLS7yGZQw0iV3P0KkoF6JuBOt3AnuBLHCRGKkkn7EiT08%2Bsg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75596873ef41b512-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/plugins/blue-multi/ajax-loader.gif
172.67.148.212200 OK 847 B URL HTTP/1.1 apphotlive.biz/noi-dung/plugins/blue-multi/ajax-loader.gif
IP 172.67.148.212:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash af962b37779a443a77ab836b3b7a93f5
cad7feb11183c71b87470e11e022b16ecdcc7ac9
65b72e15d975f67fbd1cb126d57772c06c21fa016e5651b6ce213b26ce0e6877
GET /noi-dung/plugins/blue-multi/ajax-loader.gif HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Type: image/gif
Content-Length: 847
Connection: keep-alive
Last-Modified: Sun, 09 Apr 2017 18:34:56 GMT
ETag: "58ea7ed0-34f"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8g8jjNFuSFUNj1NSde6EetHTyB7y1bjeDMo4kb%2FSXLlA2%2Ff2uqZJjqMdPvaVg%2FbGHou58ob5lmLIPOnwY9uKmxAsMpss%2BDAknCyPkpVbWjMX69L6bYe6V%2Fb%2BOci94YPvCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755968776d29b506-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6506
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:35 GMT
Last-Modified: Wed, 05 Oct 2022 20:08:09 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
31.13.72.12200 OK 91 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (18722)
Hash 25029bc77d3a1f7dcb699fceb7e7a195
3b084fe6ce05586b53b153f73d698a1d795d0dfa
a017668dabeeaaced8d2c276f673a994bc27be905f32ed2ce1f00e7eebcbe87d
GET /vi_VN/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: e1a1f2f354b9c6eaf799ffb026d25369
etag: "e3f3d2253c9eaf4f1f5fb7a17e61c1d9"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 05 Oct 2022 22:10:48 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: JQKbx306H33LaZ/Ot+ehlQ==
x-fb-debug: rB9awwwBHsON6b5KzeMh/rAHdh/2MhuSi0v5QvBWttNGqoLoS6SLjCO+C+ODJaRqTeliiuzg9qZTELh9eJ32Bw==
priority: u=3,i
content-length: 91079
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 21:56:35 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6506
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 21:56:35 GMT
Last-Modified: Wed, 05 Oct 2022 20:08:09 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:55:23 GMT
expires: Thu, 05 Oct 2023 21:55:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 73
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.163200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:42 GMT
expires: Thu, 05 Oct 2023 19:34:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 8514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
142.250.74.163200 OK 910 B URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP 142.250.74.163:0
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 07:47:20 GMT
expires: Thu, 05 Oct 2023 07:47:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 50956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apphotlive.biz/noi-dung/uploads/sites/133/2022/04/cropped-cropped-Untitled-1-1-1.png
172.67.148.212200 OK 62 kB URL HTTP/1.1 apphotlive.biz/noi-dung/uploads/sites/133/2022/04/cropped-cropped-Untitled-1-1-1.png
IP 172.67.148.212:0
File type PNG image data, 1000 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 612072bba3253684ca9a5d92b43826bf
c545b6caecdc03652a3bfdbe90ce394f876666a4
c4b4150c7276cd11b7d19ca7ed76150ddc5642462eed663f460005ee8d65e77a
GET /noi-dung/uploads/sites/133/2022/04/cropped-cropped-Untitled-1-1-1.png HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:36 GMT
Content-Type: image/png
Content-Length: 62257
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:44:48 GMT
ETag: "62665170-f331"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65l7Hmz1FEu6yf8behaeNQsaPqMlfQhLHn7ciez6gLTl39qRkkOWBoLXwuA2fZSTXfQNi0Fz2ykVSBNoLeQZ1kCRLRjzD8%2FaYCfr5uboeIgxcbWf%2BkUmsZ59AynR1hMQwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755968769b8eb4f9-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-32x32.png
172.67.148.212200 OK 1.7 kB URL HTTP/1.1 apphotlive.biz/noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-32x32.png
IP 172.67.148.212:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3fd6306d29bd8d32d043ee7a9e5f3cd9
a20d137b87027ef0e9a8a0a534f2e3fe697f4c3e
3588c4824cbb99d9dd42082909a605759cad4902f3ff92719a2d2d3ac538c98c
GET /noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-32x32.png HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:36 GMT
Content-Type: image/png
Content-Length: 1697
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:44:09 GMT
ETag: "62665149-6a1"
Expires: Fri, 04 Nov 2022 21:56:31 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fBq5i1FKYYQ67EOcNXNgGWAlWqYWR8XfDmbiVBnY6TpfDfzvyPgMMGQx%2B4qRyEb%2FyZZI%2FdlxRLKT2Iy2jtpF3bWps8MtcV6Whtu6JpX%2FPWbtJjVovKaugHMxU60v0hKRVw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559687bc9b2b506-OSL
alt-svc: h2=":443"; ma=60
apphotlive.biz/noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-192x192.png
172.67.148.212200 OK 49 kB URL HTTP/1.1 apphotlive.biz/noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-192x192.png
IP 172.67.148.212:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash de579e2cc18fdc1be2ce91eddee93556
eb9d1a9c42205af517369f7996d4f4618c2a0a8a
6743c02029ae13189bc94c49b3a2f66c26389f62cb050c2b1cfe42669a956b19
GET /noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-192x192.png HTTP/1.1
Host: apphotlive.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 21:56:36 GMT
Content-Type: image/png
Content-Length: 48965
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:44:09 GMT
ETag: "62665149-bf45"
Expires: Fri, 04 Nov 2022 21:56:31 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=irJ86FfYKOICaH1NOgfBBVriU0qopeHUSBC9wL5vYzqVXuiAMvnJWp%2Bh6SDOT4HWJ4YgVUumKxUA%2Bxi%2BfQOut7tsGOOlfDq%2BkzvpA2FYS9CQ9W4THoKMldtlW5Ks6qqpDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559687bcba8b51d-OSL
alt-svc: h2=":443"; ma=60
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
142.250.74.46200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP 142.250.74.46:0
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://apphotlive.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 05 Oct 2022 21:56:31 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+685; expires=Fri, 04-Oct-2024 21:56:31 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%7CRoboto+Condensed%3A400%2C700&subset=latin%2Clatin-ext%2Cvietnamese&ver=4.5.4
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%7CRoboto+Condensed%3A400%2C700&subset=latin%2Clatin-ext%2Cvietnamese&ver=4.5.4
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A400%2C700%7CRoboto+Condensed%3A400%2C700&subset=latin%2Clatin-ext%2Cvietnamese&ver=4.5.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 21:56:30 GMT
date: Wed, 05 Oct 2022 21:56:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2