Overview

URL apphotlive.biz/
IP172.67.148.212
ASNCLOUDFLARENET
Location United States
Report completed2022-10-05 21:56:39 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-05 2 apphotlive.biz/ Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/google-language-translator/css/style.css?ve (...) Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/css/jquery-ui-1 (...) Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4 Phishing
2022-10-05 2 apphotlive.biz/noi-dung/themes/rdt039b/style.css?ver=4.4.2 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/jquery-migrate.js?ver=1.2.1 Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/google-language-translator/js/flags.js?ver=4.4.2 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/ui/core.min.js?ver=1.11.4 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/ui/datepicker.min.js?ver=1.11.4 Phishing
2022-10-05 2 apphotlive.biz/inc/js/plupload/handlers.js?ver=4.4.2 Phishing
2022-10-05 2 apphotlive.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/upload.js?ve (...) Phishing
2022-10-05 2 apphotlive.biz/noi-dung/themes/rdt039b/js/option-selectors.js Phishing
2022-10-05 2 apphotlive.biz/inc/js/plupload/plupload.full.min.js?ver=2.1.8 Phishing
2022-10-05 2 apphotlive.biz/noi-dung/themes/rdt039b/js/api.jquery.js?4 Phishing
2022-10-05 2 apphotlive.biz/noi-dung/themes/rdt039b/js/main.js Phishing
2022-10-05 2 apphotlive.biz/noi-dung/themes/rdt039b/js/quickview.js Phishing
2022-10-05 2 apphotlive.biz/noi-dung/themes/rdt039b/js/plugin.js Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/blue-multi/rating.js?ver=22042061 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/ui/menu.min.js?ver=1.11.4 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/ui/widget.min.js?ver=1.11.4 Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/wp-user-frontend-pro/assets/js/subscription (...) Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/ui/autocomplete.min.js?ver=1.11.4 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/suggest.js?ver=1.1-20110113 Phishing
2022-10-05 2 apphotlive.biz/inc/js/wp-embed.js?ver=4.4.2 Phishing
2022-10-05 2 apphotlive.biz/noi-dung/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 Phishing
2022-10-05 2 apphotlive.biz/inc/js/jquery/ui/slider.min.js?ver=1.11.4 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-05 05:01:05 UTC 34.117.237.239
mnemonic passive DNS maxcdn.bootstrapcdn.com (2) 724 2014-06-18 00:37:31 UTC 2022-10-05 11:39:27 UTC 104.18.10.207
mnemonic passive DNS upload.vipvn.net (14) 0 No data No data 172.67.147.119 Unknown ranking
mnemonic passive DNS upanh.redeptot.vn (1) 0 2020-02-01 15:49:13 UTC 2022-09-20 11:24:03 UTC 139.180.138.253 Unknown ranking
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-10-05 08:04:56 UTC 31.13.72.12
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-05 14:02:21 UTC 54.230.111.7
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-10-05 16:07:29 UTC 93.184.220.29
mnemonic passive DNS apphotlive.biz (48) 0 2022-04-25 07:03:47 UTC 2022-10-05 21:56:24 UTC 172.67.148.212 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-05 12:33:02 UTC 34.120.237.76
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-05 06:03:19 UTC 34.160.144.191
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-05 09:14:56 UTC 34.208.34.131
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-10-05 17:39:00 UTC 142.250.74.10
mnemonic passive DNS translate.googleapis.com (1) 1005 2014-07-21 13:19:59 UTC 2022-10-05 21:07:54 UTC 216.58.207.234
mnemonic passive DNS www.gstatic.com (3) 0 2016-07-26 09:37:06 UTC 2022-10-05 10:37:57 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-10-05 07:13:38 UTC 23.36.77.32
mnemonic passive DNS ocsp.pki.goog (10) 175 2017-06-14 07:23:31 UTC 2022-10-05 06:59:18 UTC 142.250.74.3
mnemonic passive DNS fonts.gstatic.com (8) 0 2014-08-29 13:43:22 UTC 2022-10-05 11:30:49 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS bongdatructiep.vipvn.net (1) 0 No data No data 104.21.55.103 Unknown ranking
mnemonic passive DNS translate.google.com (1) 1156 2012-05-30 01:30:32 UTC 2022-10-05 11:55:46 UTC 142.250.74.46


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 172.67.148.212

Date UQ / IDS / BL URL IP
2022-10-05 21:56:39 +0000
0 - 0 - 27 apphotlive.biz/ 172.67.148.212

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-01 12:28:12 +0000
0 - 0 - 2 copacomwillltudo.com/ 104.21.80.96
2022-12-01 12:28:01 +0000
3 - 0 - 0 iossecure.com/noios/en/?brand=Google&model=Pi (...) 172.67.209.206
2022-12-01 12:25:17 +0000
0 - 0 - 1 clenchstump.top/ 172.67.130.231
2022-12-01 12:24:29 +0000
0 - 0 - 1 ste2eh.cyou/ 104.21.44.126
2022-12-01 12:22:18 +0000
0 - 0 - 1 aventura.espirituracer.com/ 188.114.97.1

Last 1 reports on domain: apphotlive.biz

Date UQ / IDS / BL URL IP
2022-10-05 21:56:39 +0000
0 - 0 - 27 apphotlive.biz/ 172.67.148.212

No other reports with similar screenshot



JavaScript

Executed Scripts (48)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (112)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.7
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vdmm9Y5EPrL6P67CpFdQPskhzoDit_BdCjXX3kj_KlYUfn7qpdWsWA==
Age: 22150


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2618
Expires: Wed, 05 Oct 2022 22:40:06 GMT
Date: Wed, 05 Oct 2022 21:56:28 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3771
Expires: Wed, 05 Oct 2022 22:59:19 GMT
Date: Wed, 05 Oct 2022 21:56:28 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: mxpeJBizf/mJ2uu41TfglT26v9ZQbXLIPx65UD9tdsyBgTX+nElFsKhuxI0qXcPoQ+GgXXAA+W0=
x-amz-request-id: 2XS3TY8H6FFNM4NW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 21:30:29 GMT
age: 1559
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 05 Oct 2022 21:56:28 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.7
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 21:55:50 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 21:49:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TR79847nvfk9Cj6uDntQKzWq6N3Gf0-S6kIhRRAatSM_C9iJ17aW-A==
Age: 1616


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6402
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 21:56:29 GMT
Last-Modified: Wed, 05 Oct 2022 20:09:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RGHegwrjyR19m+5uD/DK7g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.208.34.131
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sTEvJE4FvYFs3VhKNQ5uVaRFDr4=

                                        
                                            GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         104.18.10.207
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Wed, 05 Oct 2022 21:56:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: SE
CDN-EdgeStorageId: 601, 718, 718
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-04-23 05:21:01
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 247af5253dedb1b0bd0d1e5b53c5e898
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 13117293
Server: cloudflare
CF-RAY: 7559685b2fe4b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (21822)
Size:   5567
Md5:    2a9b54896302ff2ce4806602f8c8070a
Sha1:   80d01e2a99b7ef5e936f7880cd0d6928da73ff3e
Sha256: 24cc470b747da172a228538dfac58550d16463b81813157445abbbdce046cd0c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 21:56:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Link: <http://apphotlive.biz/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Access-Control-Allow-Origin: *
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CRQ9%2FgasMWgDXypiRbXlnNYXUSc7LzmrtqVVD6ZVL3cXUWIeQBqRIkBySDxWca%2BothwAiawy20%2FVcFFfUMACRqYik0htfQJoNStWSnPHnoLbCqT32szB6lpiv5Rqh%2FgUtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559684f7d50b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2204), with CRLF, LF line terminators
Size:   17068
Md5:    5cb9e0a6e9ce4a18ef8ca75f039bdd88
Sha1:   f1f83804fbd21d6a437279ab1c1dc0b9bf020c7a
Sha256: 1dde0e0091e391cbf43cdd1dc312919bda2fa6acf7e6e9c5abc7c39454034e2d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Roboto:400,500,700,300|Roboto+Condensed:400,700&subset=latin,vietnamese HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 21:56:30 GMT
date: Wed, 05 Oct 2022 21:56:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   877
Md5:    1baa210c1e4dffc02724dd1314a7961e
Sha1:   552de994f17c610cc437e21f570b9e0539a56c5f
Sha256: cc225e0833ea227d07e7a920ce361bf880b30418ab1c1009eaf71349f495c0de
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1165
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7511
Md5:    9e520f87cae411cfc2ed1c8a14184385
Sha1:   69ad212cb7ae309d4f02019552887135bfae67da
Sha256: 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
age: 1165
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4140
Md5:    dbba56f647bf5989ca51863632bbebfc
Sha1:   26694f34166345ee5693653e0101db6b910e68ba
Sha256: ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12752
x-amzn-requestid: 3c32a029-08d0-4f98-a0e0-48a7e05242b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sHXXIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-176be5177b67ddc068060b19;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: nMQQhuMBlGVUc4XeG1S-BJ2_6QQQkcfjctV4xTXW8VENcNE0sVQ1rA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1165
etag: "59ab1c451c388f7b57da52bf518eff15e0c584ff"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12752
Md5:    23e10c01392e4958e4a4f19573290da9
Sha1:   59ab1c451c388f7b57da52bf518eff15e0c584ff
Sha256: ece0b872f33166fcc2816595fdf1348664d985131bc943cd4a543524dede0274
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7385
x-amzn-requestid: 7ada8e43-9cb5-4793-9289-e308e9565e7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZoF7aIAMF43A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-73da01595d32809e08b93a83;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 14qQi5wDI-_EgyghHCMjRtdZliSj3L6veSqIeBoEjCTfdZfrKb-UzA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "b0205176a58913f57056b91674097bfb58046e97"
age: 1165
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7385
Md5:    e5a5ee14d41747f46e71f04782e1a3d3
Sha1:   b0205176a58913f57056b91674097bfb58046e97
Sha256: b3bae0b56b50374cb85fc7fe4c9b551383d1969bf31e7adccb867e3467c59269
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 64222
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10158
Md5:    4fc2ddd86450d64d3fb659ab4e78be58
Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f
Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8192
x-amzn-requestid: b61498b4-22cd-4860-98e0-c7aad18a4d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sGTXoAMFZpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-23d0f24731d3bfab253f2677;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: oRlpmDZZ8uLu-tcn-j2H5XMAxfUCtHkm_xq9jUlROKsPgth0Gu-ugg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1165
etag: "f2f4664206335b080db6a5608b463945e89de346"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8192
Md5:    83c37f49b9fb5eeb70a244a759a4ce0d
Sha1:   f2f4664206335b080db6a5608b463945e89de346
Sha256: cbb8e24144c2118f3e2f2f9db09f2b4d582bca01da68fc2fb29b4d8a6df4dab5
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Thu, 06 Oct 2022 00:13:00 GMT
Date: Wed, 05 Oct 2022 21:56:31 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /noi-dung/themes/rdt039b/css/module.scss.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:14:31 GMT
Vary: Accept-Encoding
ETag: W/"625fdd07-8a14"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdJlqEdTmfcef8ZnTugVi50XhMhY11l1NX0F5dJW9AQg5WthVR2MCACcTLTAAIQcqhDSbpKd26VvqGP1mGAPRGc2vL9ksZTXrTsOhjjnKqmVqXhl2S%2FrDx9nRI%2BHHyVgpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b38c1b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  assembler source, ASCII text
Size:   6203
Md5:    eb3c2c4ac9ab3a68988e76d86f8ab505
Sha1:   b55af99642f8001edf60b27e9efeb64774414541
Sha256: fe4451c7ae11043d72c226f32b76cc190a46ac9e7103ba160855ecc98332f30d
                                        
                                            GET /noi-dung/themes/rdt039b/css/font-awesome.min.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2t5C%2Fkx%2FvQcG%2FvNQQFPjuVyDb7S3DU7J6p36qV22dUNll7AOkZD4rzP8e9aYGqBqu406O5RFox%2BrpWmYUh%2B3zoBzZrOQHwZwmVFMqmB4HLJQNaME91DDRiqSntTjRqXTEw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b2d25b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   115
Md5:    c79273e9b9de357e24b445594f31d7f8
Sha1:   e27e10e96ca7708dbad2cd41a416ffcab6a94600
Sha256: 941433f5957dd44b3ec474726aadfc556c41e94c1a6969d8fef8a931414f6baf
                                        
                                            GET /noi-dung/themes/rdt039b/css/responsive.scss.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:12:38 GMT
Vary: Accept-Encoding
ETag: W/"625fdc96-6324"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZA5F4JdN3LxiyPZqUmngrrAu9zyP2kdNKNDAOYLn4NFHZPkq5NRpAWxjOunPZH3bZPOuNSL59tgL26DG0buVyVf33VXOcxliggINKwTfEu5UJn1oB63KphiyQAj2tVlQmA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685c2bc8b512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text
Size:   4489
Md5:    9babb208dda710004d95b0c83258cfb1
Sha1:   52e98a26550284c476d83824aefedb15037c7dfd
Sha256: 6590210fd610c6297efc07f22da2ddfc8a9a5567db93cc1a4a1d3f0de14e8140
                                        
                                            GET /noi-dung/themes/rdt039b/css/base.scss.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:15:59 GMT
Vary: Accept-Encoding
ETag: W/"5e145a5f-12501"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XzF0OqA67hehoeQf3boZAOYx%2FiwWwapb016Aah3W%2BxoICmwTgTSAJRiQ45HvgNunP5mChhCaVs6vDWNubABmY%2F3%2FxmLeuhbqLeyFmvM0V9dzRxkMcyr1Nnh5s106MijayQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b2f0fb4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   16594
Md5:    1bf6d7f5e29555be1b65617fe3e0aad6
Sha1:   7eabc149fed1737d8549533a4b32180bdb2fcf46
Sha256: 31dd15363a3aea1f2156152a3a068c828c0040a1c8bff86e2243b09ac56c2ea3
                                        
                                            GET /noi-dung/themes/rdt039b/css/style.scss.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:16:00 GMT
Vary: Accept-Encoding
ETag: W/"625fdd60-1dffc"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kse%2BwQKUk27M6wO5vOku%2F425SaHHzMr2T%2BDa76tTqLTuhg%2FML%2BUF5hqAXp9221lYvP9DP1HN6wrqg5YNFA61ulut0BgaX%2BBULaSmMUAXILg45WmiFWG8Ums5asX3dqri3g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b38740b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   24319
Md5:    a5e1928985a0651f93aa59059ddf5874
Sha1:   73b1c369c160e360d88cbcfe5a6b40abaf001c8f
Sha256: 7bc6b688cfc106895ee9d993b6568f72264fa51aa993ff98e94a4b86ebd0aab2
                                        
                                            GET /photos/apphotlive-net/2022/04/iphone-tx-1.png HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 17390
last-modified: Tue, 19 Apr 2022 02:20:16 GMT
etag: "625e1c60-43ee"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f7axE3oYfuMDg%2F0Z7IXZWHOzXny3fR9wNw%2BLLP8t9iEqNYe%2FL%2BZ9ZmQQrwfQ0ZSl6n%2Fcpn8zSb79I%2BgrDHUBEZt4g92p76Hl4RUyXSt48F0haYUYD31%2Fojn%2FlZDqehIbjVvH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbf0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 820 x 288, 8-bit colormap, non-interlaced\012- data
Size:   17390
Md5:    aa20f8f057d2d4b7d1a40121da611f5b
Sha1:   a6eb278ae30e3122729a198e6bc890ada76d0c37
Sha256: f0d7fe7649bd59d7a27f3792813ca5972cb53287a6fcbf29f8c999b729d46336
                                        
                                            GET /photos/apphotlive-net/2022/04/android-tx-1.png HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 15034
last-modified: Tue, 19 Apr 2022 02:20:16 GMT
etag: "625e1c60-3aba"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ht4LaMKt0geYQhN%2BnY7905o%2FqoDvpRftrRae69C3LQM6mJulDRLDt2c2WJLqmEFtPkepfAx1Ay62NTIEJw64Yz5tTZUadnXc3XzZZlwq2njRGej2NRBiWpHQ0L8tRg3VuqIc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbe0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 820 x 288, 8-bit colormap, non-interlaced\012- data
Size:   15034
Md5:    64a19a017eb6cd83435b8726b2c1cd1f
Sha1:   c7225dbd151766c809808897436578bef7b3ee76
Sha256: 0f2a24d750f9125bae7940db150400a0a31a8b620f6803a84b7cb2b87cb543df
                                        
                                            GET /noi-dung/plugins/google-language-translator/css/style.css?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:01:24 GMT
Vary: Accept-Encoding
ETag: W/"58ceab54-13472"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R93zn70Og%2Fy%2BlCExTfkHm6ILhdPHIXjNxJpVA1QX0qEZxSxIkVUiiqGgsx%2F4%2BgTI81HpXGcCK104sxoq8Gf4UWOunJ9sc72jsnxbeqV%2B0FTulo7Kh0%2BzF%2B%2B3DGOMmD3wzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685eed11b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   7392
Md5:    1eab7e9881402c6c6c19c22d5a7caf7f
Sha1:   9602f0d583dd3ea768ec50a431605e2d89e61e61
Sha256: b262e9670b715bc9d138f7da42f4cd56ed58d05a90d9dee3fa44cf79a03e1d53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/plugins/blue-multi/blue-multi.css?999&ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 22 Dec 2021 16:27:57 GMT
Vary: Accept-Encoding
ETag: W/"61c3520d-292a"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XUZmBcKF3uFKiDaElfk8zrAdaUyfcNo%2FsS8HZsFES%2BBm0wTGKFUfyAe6oY8TosvYgcLXQyWPiOX97oCJ%2Bgpet1nfLC8vs7uOuIffFhclI3NMadBOHhlPWVfoGyjfRGM2Hw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685f1940b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   3344
Md5:    a21a2224a5c24218b7413c71f0dd008f
Sha1:   29888cf908fc60c259bb0b57135db8980f00b4cc
Sha256: 7a9b7c283489cbc81ae783c9fac8b54dc1c313b03d4ecea6f0bf4da336580d7e
                                        
                                            GET /noi-dung/themes/rdt039b/css/plugin.scss.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:16:01 GMT
Vary: Accept-Encoding
ETag: W/"5e145a61-1e896"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4POHlglBktNpDlzHivBal1TLYHNzOKgSFCsmbcJfh8lVMMwCgEuzXcgc90PoL2s%2FWDMEhJNWnz0u1Tgam%2F%2BGWcTuHQleGcT9%2BJGSOMCNgCYFLfSHK6vGeNawNT2Dx7oIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685b2d20b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   26167
Md5:    99dc5c678fe01448c22821853fd2133b
Sha1:   3e3cd1125338ceaa35150a723f4fb3175a516a8f
Sha256: 02ab9aafc1d93685ae087e9f7a5c028ef47e16ea805f4782528d69b3aec6b3d3
                                        
                                            GET /noi-dung/plugins/blue-multi/cat-in-autopost.css?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Sep 2021 02:35:18 GMT
Vary: Accept-Encoding
ETag: W/"6136cfe6-808"
Expires: Fri, 04 Nov 2022 21:56:26 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wBsmj6lKnhTPxqrFrJQzCvpVD6IbjAy4sDCyWYMR9qwrSTiS5DnPAGAhgy556GgFemkN3DX2hP0Y%2B5cxqcZaiVAQTv8pLUj9%2FDHz1%2B1uDe0pU0vSWapipOBQ1%2FIbH9A5vw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559685fef85b512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   774
Md5:    72818c9d063b2d5615b090336b70e5c5
Sha1:   62f01b1a93c1b2bc97eb9890b5e7ccd77e06dffd
Sha256: 2e4de98885c44ddd959f455247de22f06853f3b48a22b7d894f4c19d3b03b342
                                        
                                            GET /photos/apphotlive-net/2022/04/8as.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 169032
last-modified: Sat, 23 Apr 2022 05:01:25 GMT
etag: "62638825-29448"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RHEKRrN8eK3ydk8S6EwrmKRnv%2BWwn%2BCnpVCSo5W%2FLWJowmkHrrcfX%2FWa7TvH%2Bg4m2%2FMboy3uCZ6%2B4mqQjIpA4fg0f5tS5dUGFzItJpylFS9yZGq09Yf1ufbUninTRtaqco8S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfc00b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   169032
Md5:    b25929179b6a6f9944f799c206481b08
Sha1:   53e573945aa60fdd4d5d93a473462101323a3182
Sha256: 6f26c5ae21fc6f7394bb195b5882902185baadb59f4c5bdf9408a51f41426d0a
                                        
                                            GET /photos/apphotlive-net/2022/04/huongdantaivacadat.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 172780
last-modified: Tue, 19 Apr 2022 09:25:56 GMT
etag: "625e8024-2a2ec"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHesJnVNAl9dAgFsQVsn2q3HXJupC8TAo2Y7eiPkn9UQE4GAozj1PU7WC4t6devqqiSXVXY0uUhQX8KRvX8Bx3lLZgXgAG9ciosC%2BOa97kmJytdwK2%2FtJEgPJkbk9uAdVFYG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bcfcc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   172780
Md5:    31c21ddebc4a4407c74198d8e672b40a
Sha1:   25390a6df8c8603bd6271e902d03c516f5b1d8a0
Sha256: 79855f69bb1bf823f311b509364538ed6b3f3d49dc6d20d126d41b5052ca031e
                                        
                                            GET /photos/apphotlive-net/2022/04/5AS.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 158825
last-modified: Tue, 19 Apr 2022 08:17:50 GMT
etag: "625e702e-26c69"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qf%2BOBNivNvWLJUQy6GjaQhZrQzirKZqduZ44N1jdBJHaa2k8xer%2FMzDWEBEHIp0argH0Zuro7hP32bWhF6LunPahvyLm3vOYrm1PDoPJOYfJ0CRGmmeSJlcGh8%2BSEQij3BTX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bcfcf0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   158825
Md5:    c49eec4ab6782effc8efc6c5e81ad856
Sha1:   d98abd71a7a3f628d2d053fda565d05e673f1614
Sha256: 9f0e5da4176f3de8083342bf927c9bbdb9b59be794577343723d75b0ad8f4731
                                        
                                            GET /photos/apphotlive-net/2022/04/4AS.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 174108
last-modified: Tue, 19 Apr 2022 07:17:53 GMT
etag: "625e6221-2a81c"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6U7x2WP%2BUY5Wtl1iI8ZTrYBFdoj9OF4lM5SGE9Tms6rtgUPCVeIwNFycBqHpT10MwGIkS2wGKIqQL8gCA%2FqiuHbqJAlbEKE6jbRjJAk2IkAt5w9zqJN7b0w7698VqYckIQUx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bdfdc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   174108
Md5:    278cd7c18925f146311a2d5a3920280b
Sha1:   64c612c97401802f113996c964290be5b9f0e5f6
Sha256: 848c9ce41595bf88396cb13e5977b28d114907c670c03f25a7dbb33dc87d56f4
                                        
                                            GET /noi-dung/plugins/wp-user-frontend-pro/assets/css/jquery-ui-1.9.1.custom.css?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:52 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0c8-7fb3"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GmMCuCdTb%2BvpeYJRR8BaXUoKy36iI41iwQxlT36LNrI9p17SYOxPiHr5En6hSazjnDH%2B%2Beq7oRAis%2F90OOoELBogd%2BfgdjOxSiQXt3NZSdcducmeuXNWb4czUuJiUO5yoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596860ccccb4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (1403), with CRLF line terminators
Size:   7532
Md5:    a8a0908a026a918900afee7068239c51
Sha1:   f51bce405f3db7aa0509fdc65048975a8525f816
Sha256: 094befa6a1f003daa669dd114e4f65d1a5e1daf27fd53de80bb219399b3c09c5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /photos/apphotlive-net/2022/04/9as.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 170531
last-modified: Sat, 23 Apr 2022 04:55:27 GMT
etag: "626386bf-29a23"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CON4eZ2wmglmqc%2Bf%2Bu3zItDpG0Y1j%2F35bx6KV5cvB0xrheyNPU8YBS7xAujTSGzGPPAztRlfHexZa5zjm%2BryFMJIo6kaqHFjYrm4pMN%2BqTgHKvqeFpzgr3dYG8yHzF33jW%2Bs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfc10b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   170531
Md5:    055ba7abd332e150422e7b08ad51f4a3
Sha1:   4c4db5ff2f068faa9b791614664b91d31fce200b
Sha256: daf1f271abc44a461f6d0d1f265c3bd98f616c51767f96a96487b854409ecf6d
                                        
                                            GET /noi-dung/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:02:20 GMT
Vary: Accept-Encoding
ETag: W/"58ceab8c-d4b"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LpCGpC842%2Ba5p3CZlGA1GxzPDgxz64Xr3oh9QREED14RCkXNrlSvX04Y5YVGzVJttQlKT37RL4ZgQeBn03zvEmQ08%2FGluAVTPBExonObp2S7uzGg%2FWVh9oEvz8aseD9z8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968612dd00b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1330
Md5:    b736268fdb4a7df5557c097dc806b307
Sha1:   2a1c7382430131975f71ff6d6e9e71c12168c7bd
Sha256: 5787cecf32955bca1827ce6395d946e1c7ad6524722e058be70141a3244c95da

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /photos/apphotlive-net/2022/04/3as.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 208576
last-modified: Wed, 20 Apr 2022 09:25:26 GMT
etag: "625fd186-32ec0"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfVpGxijPB6MEIRDUQv8Gj6Wrhu1CdM1dehavabsLSv7meIv3so%2B2CkM8%2B1JnXecHq1TjO%2FFFEnkQf2Au3zjtcNUlTmEwcUxBvqm8hwj98eMWLtncaCCrwbm2ANuakC5s0cG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bdfdf0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   208576
Md5:    64be36c0dbe130ce18c5519e35e30762
Sha1:   e73d1cf98045fca78d3d73a47c2e508a9013e70e
Sha256: 82e1ace2a982653932d67a1e1e61a93ee62d76fd9c08088443b9934a224e6a1e
                                        
                                            GET /photos/apphotlive-net/2022/04/2as_1.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 165981
last-modified: Wed, 20 Apr 2022 09:20:37 GMT
etag: "625fd065-2885d"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K6y2%2FGWGbgsjTv%2BSzlLiIVSpMX6eYHn7Fwkv7dqOSwi1bLm7iEHacZ7fLtQzQdLZqlx3LRJ0t7Fbz2cT5xnbQKz5ErjBtZBwfa0L7bEhByBvgNDvrt4zoT3d8qqxLx1semFx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bdfe00b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   165981
Md5:    8042a1d76952f2cd4d017b8e58e9d96f
Sha1:   a698ebfa85359495d21788e35279610ed3c62456
Sha256: 3b69a2fbdbd60d4aa7e13c4d5a352959881568bce8028e5a7d610e0e56999013
                                        
                                            GET /photos/apphotlive-net/2022/04/lisablackpink_hotlive.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 148170
last-modified: Wed, 20 Apr 2022 09:15:25 GMT
etag: "625fcf2d-242ca"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pyurbib20XKkkEvyoQoqaXSwE1iSbvit5CX%2B6JjyELVhJo%2B776gY3SpGJ58bLbmo%2BzP1u8plmg1rQrljT4aXnVYty8%2B0gLhdcQlOzN%2BxAqhzIFYRpKHY0IOfgAxH97374lcA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:20 16:14:59], baseline, precision 8, 612x434, components 3\012- data
Size:   148170
Md5:    760d41049de41612cab51782d8611881
Sha1:   a26e28ffdd71501c52f13d3571b451517fc63fee
Sha256: 4305495b7ba05571cbe092ef785429cd2d8dd2098ff48249346810650c2982cd
                                        
                                            GET /photos/sannyko-vn/2020/04/icon_chat_Zalo.png HTTP/1.1 
Host: upanh.redeptot.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.180.138.253
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 63708
last-modified: Wed, 16 Jun 2021 09:25:39 GMT
etag: "60c9c393-f8dc"
expires: Fri, 04 Nov 2022 21:56:31 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1000 x 1000\012- data
Size:   63708
Md5:    169609751514a2e8040eb4c5b1560619
Sha1:   d7533a39f6753de7ecca29620737692cd2572a02
Sha256: 54eabb9a005b1a0ce0579aba5806b61a30b0c54899850f3b40c934abe8d545b2
                                        
                                            GET /noi-dung/themes/rdt039b/style.css?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 20 Apr 2022 10:16:54 GMT
Vary: Accept-Encoding
ETag: W/"625fdd96-af1"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7rfKSQaScPJQhRjD4igwqVWywJEUE2iA8VYLbxgvqVicdL43xXkGWI3cfLrgq4Mmqzli9qoaGX%2Bcr55koHuooqWXaaR6p3Rgigv5PmdfUg2m66woU1n55B%2FNrMXWOYzQSw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968628901b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1184
Md5:    71bac27efeb157e6d94052350e837774
Sha1:   0825d4785cd168cbffac6ef347fb44447084941f
Sha256: 24da6d0a0313e26d850953231580f2869315d791b738685e95d7fe5f37d4d14a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /photos/apphotlive-net/2022/04/1a2.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 557626
last-modified: Tue, 19 Apr 2022 02:18:40 GMT
etag: "625e1c00-8823a"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CO%2BSaAMkoZ407GCAaGHKTkWRgAYPX8XD17%2FEeub5a%2Fa2pkqcI5yIh6gQhr2S8w3dvbzHUr4ToZsRmnjFuSPXb%2BDLXcFfkGEOlonQjFWQE6zjO1Cf1WFoj8kXv6BN3Tzu5ZfQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfb80b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:19 09:17:57], baseline, precision 8, 1920x896, components 3\012- data
Size:   557626
Md5:    93b9b65d45ca0c8dbc6d690ecb1b4d63
Sha1:   5cd91709c9822dba04cddc29ae19ff0b77591450
Sha256: b4abecfac89ff394eb84e51783881b3ed8ebc042179738eb70217b2ae2a0edc5
                                        
                                            GET /inc/js/jquery/jquery-migrate.js?ver=1.2.1 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-42f6"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0ucjEPjsn1kwzHZSIb5GMjx6KFNLoQgkAIRjxBf8VRBqFCPrSrq8cVafsvtFz7clKzF8g3MQZoj5XvW1exXkAlrVuteaOT0o8wHhcrGnqNKMbLf4ZCxMylyY8Bn77ZThA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596862bcf0b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   6635
Md5:    945394399a3aa773d73225f1df0d64ab
Sha1:   a79751c709abe4ebe43dc8e985bd660fe876cde0
Sha256: e93f7a929e8aeaf8522fa5aad563410f92ec26716de60f384c050db78825684c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /photos/hotliveapp-vipvn-net/2022/06/320-100.gif HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 05 Oct 2022 21:56:32 GMT
content-length: 163476
last-modified: Mon, 27 Jun 2022 09:07:51 GMT
etag: "62b97367-27e94"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tr1WGk4lqlvV1mh0T4e3QDbLgRJQdkDJN8ACUUMy43cbjlRHSNqBk4e0T%2FKpJWi4mqwTFDlw9uRbQ7SpimrCHpH4%2BD9J9GblW6EtbKnydGRS3GyNvlay1pVYqFpzkyVE52Vb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbd0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 320 x 100\012- data
Size:   163476
Md5:    2e949443cf42a634333fc5cf6ebff2b6
Sha1:   df1c21a72e4563f51d5da1960d0f7cb1a239ae05
Sha256: 021d744fddc9969d0c8d3368da75d9b37ff7b9ec589889bb930ffc70f8dec8d7
                                        
                                            GET /noi-dung/plugins/google-language-translator/js/flags.js?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:01:24 GMT
Vary: Accept-Encoding
ETag: W/"58ceab54-5c9"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZOWtmKjdSqkG2%2BTiBCkyRNSqvtrYlS3IpyjO%2FIBWJYN8iE%2FVNpFHsrHN9luESeS8qyE71lBC1j6xcW0pq6uCijOdeA8qvlRaAxeG4sGTfSzF%2FPputnjdLgsTDuydsDX2dw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968638b3bb512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   634
Md5:    2cb58a05f9361f7ac924b911c37e2733
Sha1:   d601ee76d6a4ca26a9631f704724d376e8d00458
Sha256: b63457f788c382e5c4b47c80825abc84dd2ea310d7112ba9a872693dfdd903d8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-f9d"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7zsDsihf6ISoPa1hWEa7B%2F3aa9WHpEb%2Bxciu4xURYelYka7k6FZo4SnhErly6rncs3YWmI7zS%2FzhrPrnkijRp%2FxdkI5od70MYmAufCUczbHR0EbzMs7s1H6V3XaieiLJ8w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968648921b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (3772)
Size:   1931
Md5:    fccfc4beb89e926a7834e430c6728544
Sha1:   db6ee901de3b2258f2f535b86871ead2331fe683
Sha256: 1823779acdc846eb880b977a0b83eff3dca834e881527a59d4088234e6ab3622

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-176e9"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hqcKpNuyuckNFQfnnBXwqyXbNpHGor0vqTAGfFJ211GBZHscvBDZvjfQBnauaigbIUk0Cr5836%2FdgflHW7hG%2FkF3mJINi7aMmD9aPnjHtueM4ng5CvSDsauZuE7AmXlHNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596862ad6db506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   38897
Md5:    cfde5f41049de31b443df820b4b8093d
Sha1:   f95d0a32b6d0faa53e884436ee0460f82b425351
Sha256: 0eaa7f41d8156e6b068c5c2c9be7ad3199951c0d356113ff99ed0192fa50b4bf
                                        
                                            GET /inc/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-8eb6"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WEQOB1JNdXCWKDpM1re3%2Bey7U5jo0WdcvB7dLhG%2F4OshusAW9wcToOb4Py88gXybNc%2FOIiRe16lborKLbGHQvM4bT0ikQXXpq6KLRiI6ngNDCPjptcn4fJ026wW7dlbSMg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596864f94f0b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (32047)
Size:   12820
Md5:    59978d1223a7f6d66ebf5dee823fb3dd
Sha1:   2d393c28de253e62b4837908cc999846fdbd2b22
Sha256: 4e59a632b47f5102bd7524def3d13c301dae378862f77eab44b27f5be5344f17

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /photos/apphotlive-net/2022/04/7as.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:31 GMT
content-length: 182095
last-modified: Wed, 20 Apr 2022 09:11:29 GMT
etag: "625fce41-2c74f"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fefxVOLXO3tiQjzwqX%2FqYql8BXcP08wYkdbLYQKQf19aDr6RwPHzNw%2FR8a9YWysG35dmZqTXCANf2aQFug%2FfCJtkf8GD8VLu2mVYIGhq9kG%2BFKJg8tUJlmDV3%2FYguS1YsaQA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfc20b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=434, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=612], baseline, precision 8, 612x434, components 3\012- data
Size:   182095
Md5:    15d68e5b217bb1fb14e53b7e54ab7572
Sha1:   2e6c8d2500f453c641bc466e676070639f8fb058
Sha256: 8e296c17b78463aadb41546f2db10d43214eeb7548e0dfdc8c3c9a64c45464b0
                                        
                                            GET /photos/taiappmienphi-net/2022/02/1A.jpg HTTP/1.1 
Host: upload.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.147.119
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 21:56:32 GMT
content-length: 639040
last-modified: Fri, 18 Feb 2022 09:28:55 GMT
etag: "620f66d7-9c040"
expires: Fri, 04 Nov 2022 21:56:31 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gfcz9bXKOBT0JzYRxNBM3zd5fP5UOEXl35X%2BzLe1Ls858hdApo1AiNoV4ysh7iiZzZouUlg7zQxvppP0esJWRVjtkyxKf7WwIfywA7FJXQ0oIoMuB3%2FUNe4xK%2BlahrY0KLeZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7559685bbfbb0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:02:18 16:27:03], progressive, precision 8, 1920x896, components 3\012- data
Size:   639040
Md5:    83b1e48053d5e63ba1d0f5ac0bce494d
Sha1:   929639b488a314798d6fd1d408b785e7619b8bdf
Sha256: 44353c67ba1bfdbe8d4fcf7c587718765f4f509b762b41bca12ad164757f0692
                                        
                                            GET /inc/js/plupload/handlers.js?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:46 GMT
Vary: Accept-Encoding
ETag: W/"5783bfa2-3e60"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Azim3%2BAwQQwxPZYclfraZzDuWlXWMuLkwXlfa4MYcGkaJlOnmelzOvCvLGtYcjhgBJC%2B4WZjPax%2FBDZrzk8YSMcnBsfW%2FOdHzc4gtcgw0OqqaDa%2BPog8CxYDxDO8X9YQ7w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686698b6b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   5651
Md5:    f60903316c08ab1d61d0c49952977997
Sha1:   05f4d3b54d21e5aa23527e3e0107a10241436181
Sha256: 3359edc9442fedf6d9846670ae202caa95e281cabe74152f9a47b182395f4e29

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 15:38:08 GMT
ETag: W/"633c5360-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l0cCg4VK1MUzXJ2Iju5XNjSyEC97DOm%2F9gIhh2fj6Kamg%2BY61HbWkrMG3zMVT%2FPb7GOcTtARcP4BDsuIFqTblgqcDtIvmbItyBIE2MW4ZgHESQ5p0z5AM6X7vSLdzw3cZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559686a4cc6b4f7-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 07 Oct 2022 21:56:33 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1238)
Size:   655
Md5:    bc3ba461c8a309acf61b6d9c41cb6236
Sha1:   88482306ecc9258d5e9cbb9ba5314dab223a5db4
Sha256: 31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/plugins/wp-user-frontend-pro/assets/js/upload.js?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:56 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0cc-161d"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sE8J0bP27N8N0uWyLvbEa76%2FiBgEq8TC%2B5L5SruaAHDH7us0gr3Qzx0IesBiA9Ea0PFIs7OJ3qJ7vrtH3WI64uQB1dgcYk8kwS9ZXFacOAqw7hrVYFHoL2afbkHbpxFXng%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968681cceb4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1867
Md5:    bac48ee8e328b5e3a54bd4d6e99e3ad2
Sha1:   319b976bcfecf2ef8b6c4fde24a659234094325e
Sha256: 5787cb62cdb3f3627422172d7f9a97b36b449501bb49d9400e9a48d739f8267d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/themes/rdt039b/js/option-selectors.js HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:41 GMT
Vary: Accept-Encoding
ETag: W/"5e145a11-1940"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AjNbG15gwIyiNM62%2F0ziG0HzNQTB10w3oet164F9YnD4%2BrOi5PY9NcyrV07e7%2F5spZ5Jdx%2B8lfrdqgaPlvljUocmseQ7gSMzZ%2FgToGPpH9VLTjBi%2BBL%2BVrVu%2FdUJJiNPHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968681bc8b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (6464), with no line terminators
Size:   2505
Md5:    e867bf3345a2fe657bce39bebca07ec4
Sha1:   b1b90bccfaed08a1f64921b22f548211d0586f0f
Sha256: b95a17db0bf87d1fc47da6983a08f778eb89198f255909f952f039f5860ea7d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/plupload/plupload.full.min.js?ver=2.1.8 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:46 GMT
Vary: Accept-Encoding
ETag: W/"5783bfa2-1b9b9"
Expires: Fri, 04 Nov 2022 21:56:27 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NKpGep6k9T82L3orGK%2BHFuxNSrMdXzPg29t1Ov2AihrSUc%2Fb0v4iDVVd1GLDGYuNppq%2FnAzFNr%2BxjTa%2BJptsoESzI%2BUbPTvvGHjCXKsCZv5%2FvyXPY8fkwk571yVr4MNtPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968665d17b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (32015)
Size:   42918
Md5:    09fd26a4cc2130f640c1b7ec972451d4
Sha1:   43fd93b2189213ca9ea237ae0145914df6fee7b8
Sha256: cc5b6351f0ceadc1cc8ec7d2eaeb99370f9d2cf4301cdcb00f14819a342a51aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/themes/rdt039b/js/api.jquery.js?4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:39 GMT
Vary: Accept-Encoding
ETag: W/"5e145a0f-2463"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vf326aD8Vur4lnI04npkA%2F1pzGpgNQSdGG0l3NS0BHbyli1KLW00Yx9io2qLZWAdA607l%2Fw25cFsXYUFiYhUlLmi6rA4oJC058tf0T0o6HmzfFrFgSdCJHzxH2bv5GR8zw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968689c730b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   2614
Md5:    3c6041efaedee1b44944b64a39226c27
Sha1:   b58060cd79e3b281c52af8d165e52d79d7a7a41c
Sha256: 1926ae2790e4d1d6d3cd052ab72d3758fd292d837e7be34863ef0f2cbdf90b97

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/plugins/wp-user-frontend-pro/assets/js/jquery-ui-timepicker-addon.js?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:56 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0cc-10438"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qt0EcbhN5%2Fo7%2B7StjjBXc0UxusYnCrIRWw9tMajxNL5fZl2O%2Fn3vikCh8fOrGQNpG27c3WAXgC0yk5sqbg2of1qQ18WcofbJ%2Bvpc7UCRBMEPvC3uhFrHLx%2Fcmvd31y2GXw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596867580bb512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Size:   19918
Md5:    2a208c36ca0b83c83d177cd36eece3c5
Sha1:   6523046305aa366228906c466d014257d01e90c4
Sha256: 9fbf78d68c656f932f3b1e128f685b2ba9213d7fe129917a70549d850dde7b17
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:36:26 GMT
expires: Thu, 05 Oct 2023 19:36:26 GMT
cache-control: public, max-age=31536000
age: 8407
last-modified: Wed, 11 May 2022 19:24:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Size:   5560
Md5:    ca3b09b62fda648a4511700413313fd0
Sha1:   109cd4c5435bd6614391bb8722c47c287c96b2ec
Sha256: 77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:50:35 GMT
expires: Thu, 05 Oct 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 7558
last-modified: Wed, 11 May 2022 19:24:43 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size:   11824
Md5:    deb26e9b1a25438118e5d39d741ae6b6
Sha1:   a2801defb4c8bed8e4083dfde0b2a5a9c0537020
Sha256: fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 8545
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 8545
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:35:48 GMT
expires: Thu, 05 Oct 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 8445
last-modified: Wed, 11 May 2022 19:25:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size:   11872
Md5:    87ace20058325aa069320aa4af875dff
Sha1:   b743548770c46d905ae1ba06310bc001c587fe8e
Sha256: 3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:33:30 GMT
expires: Thu, 05 Oct 2023 21:33:30 GMT
cache-control: public, max-age=31536000
age: 1383
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5548, version 1.0\012- data
Size:   5548
Md5:    cdaab83619fcacd4027a77c99dd51e69
Sha1:   9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
Sha256: 4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /noi-dung/themes/rdt039b/js/main.js HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:28 GMT
Vary: Accept-Encoding
ETag: W/"5e145a04-2d8b"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nv8AJJCGWFGGpcas1yUZlSm4KEnUgup2TeInZqjkZztq%2FlENLOMItWVtaq2rX9SHz2S3gf%2BGhS3JxwfGQUBvg7OvfV20VXJNxAsd6bFcyF1KVKM4vJ%2FlfqExSW70sfgbxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686b9fd9b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   3597
Md5:    e373b4cc3571e9782a8ca9f1cbaeb40d
Sha1:   79291e48c34aa5a78abb1b0e2c4e285ea332ec62
Sha256: 9d37079cb1bfdc46260720cc31d45bc591689705e6bb4efb7c073054e2fdb4c6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/themes/rdt039b/js/quickview.js HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2020 19:33:26 GMT
Vary: Accept-Encoding
ETag: W/"5e275206-5888"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BQVJQq56uf1%2FEw0hlO5XxLnBvpHQwWDqMcJEftFeGVVqVMuvfG3oBRzr00wNQOoA1%2B1K%2BduUyOlyJC5tuODUoqYuUDfq7L%2FFwBT2OH%2B4ACWbTXANiPFJ8oQ2Z4nVp%2Bv3%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686bff84b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   6186
Md5:    77bbaef6b9268fe74cd2f72bfcfc7f85
Sha1:   8f757bf3793ae42385494e83f12c40713ec69e62
Sha256: 62ebeae01c68f62bca9bf19173645bdeae7ccf8ee4aa938746d67004815281d6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/themes/rdt039b/js/plugin.js HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 10:14:36 GMT
Vary: Accept-Encoding
ETag: W/"5e145a0c-13e69"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HhLT3nJSwIiUCUkpmuy7kcLZ3W0lzliw00wWB0wZcAddNP5IFGozagqCkGcfF9Rukz89lBsU%2BvS1cCuOtj5320yMex4btopazBiI9bgaJCY%2B8FxJNaSyNpFevr9IilpnlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686a5ccbb4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (32045)
Size:   25529
Md5:    5ad07daadef316b37f56d8deeaf40b56
Sha1:   be774dac55c001b34722e706c2487b97c9176461
Sha256: 0db7ecae767da6f1d7dd021d8329d4e26abbd02469ceb62319a0153f07e2ab3e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/plugins/blue-multi/alo.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Oct 2017 15:49:39 GMT
Vary: Accept-Encoding
ETag: W/"59f20413-efde"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KjdoP%2FaKD3cAcamdj3NMiFNXksTwIZK%2Bvhix8KxfQioUybFjDuxbS2wspkVhmDJtAWZfs2soIkx4JDAHYYJr5Ua9Qc9v%2FrhoWxH1iOgEYeOtLzPEF8QR6sjKi5ApwIwdqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686bfb36b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (53660), with CRLF line terminators
Size:   7786
Md5:    3d18ddaa3454375af65408c6f16ea5d1
Sha1:   9cfe4d3593cad9c53be555e27e56aa25d3882349
Sha256: 1525fa3bba82d4da7101f7d8029c64c164c256f42ac5406a750be1038ec66e12
                                        
                                            GET /noi-dung/plugins/blue-multi/jquery.fancybox-1.3.8.min.css HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Oct 2017 10:50:18 GMT
Vary: Accept-Encoding
ETag: W/"59f06c6a-f20"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gns3WUHYn7qVOS4aQu0Ns4i2wbYejxOZnrr6XM4xvjQzZ05WRHaMi7xlyHZpj1nTxSedOGLYPhZ8KID9oq8lT8TdcI%2FISh2zHsYb7khWd%2BpSCY0vcQkLZwwJspCM4NRvCA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686c2fda0b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (3871)
Size:   1217
Md5:    0b962a32685db18663ab6b92e0b26597
Sha1:   b9e45b9e0d3b651a45478dad7916f2a638ed7187
Sha256: 17505e88bb76fc2f0446fb34c6d25573c6b08fd6aa8a9f06016e76eeefcb8198
                                        
                                            GET /noi-dung/uploads/sites/81/2021/07/telegram.gif HTTP/1.1 
Host: bongdatructiep.vipvn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         104.21.55.103
HTTP/1.1 301 Moved Permanently
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 05 Oct 2022 22:56:33 GMT
Location: https://bongdatructiep.vipvn.net/noi-dung/uploads/sites/81/2021/07/telegram.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UtIzQR9YsCQaxZt1Tkoon8LoTQ%2F%2FX9FvgE92H6rdiEScE3MmbrioQJymHj8%2BHOmXus%2Fg8vbNXIQLWfN9i7G4%2BTpDFiabqRKYc0fG1bz8yWen%2BeuzwdLIZ6sBIWrMChjEkRbG6UlNGNVRxmc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559686fea2e0b3d-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/

                                         
                                         104.18.10.207
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Content-Length: 65452
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "d95d6f5d5ab7cfefd09651800b69bd54"
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 08/20/2022 02:30:41
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: c297f94a89ae6990e2e12422a359207b
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559686feab8b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Size:   65452
Md5:    d95d6f5d5ab7cfefd09651800b69bd54
Sha1:   7d65e0227d0d7cdc1718119cd2a7dce0638f151c
Sha256: 199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
                                        
                                            GET /noi-dung/plugins/blue-multi/blue-multi.js?ver=2204 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Mar 2019 04:01:53 GMT
Vary: Accept-Encoding
ETag: W/"5c9852b1-2a3"
Expires: Fri, 04 Nov 2022 21:56:28 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kawd3TH7z4NqhBWA2CUky%2Fj1PLjQtk3nEjxEnyVwi2pRct3UK7591WoZOViAnl%2BiJ%2BXHZ80yE2qXXK1NhmU6FcoNMhWTT1RlkBkNtQv%2BuDQ25NEJCPF8kCCUx%2BKumbyQew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686cbda3b512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   330
Md5:    a0ebcd19f818d5f1a3ebbe2d9396627a
Sha1:   a510e7fd9b60c4f17e7e666615a29c9e15e9d361
Sha256: 937bb20f864a9f7cfc0f367a4b12cb2526fe5af84c73fbee095b0fd846938dc6
                                        
                                            GET /translate_static/css/translateelement.css HTTP/1.1 
Host: translate.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.234
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:18:21 GMT
expires: Wed, 05 Oct 2022 22:18:21 GMT
cache-control: public, max-age=3600
age: 2293
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18670)
Size:   3619
Md5:    897ba9a21d9625286674da769dacc2e2
Sha1:   84b4923ab7dee562395160824d53496314499b77
Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
                                        
                                            GET /noi-dung/plugins/blue-multi/rating.js?ver=22042061 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 01 Dec 2017 19:42:54 GMT
Vary: Accept-Encoding
ETag: W/"5a21b0be-1577"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F3pXw%2FjizUQWC0Zap60jEQW1MiKWDhAJp9%2BTGSaZgJ2ObjLmxQYzI0dLI3EKRtXeAA0kuZeWxQxBspTuBsQEjwSvfl%2BOegd6jnBfLIOZ6umMtGM9dXqpbDRy3Ju%2BQVDdjA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686f4c07b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1511
Md5:    1c6384fb429c94e2f40b801dd39457a9
Sha1:   64b81e1e2eb4249c0a545f38adb1936725c8bdf5
Sha256: e33fb790abb4bfaf91f02fb721b608675062262e7004afd7c73625fbe2e4c07e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/ui/position.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-197f"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byQ%2FThlShOklJQI8w62W9M5D8QcAefzWac9WDS7Opmdy871goG%2FgwRSwEvRV%2BY%2B6J%2FtoCrsUaA3flQJtSufyGputJDVLMoq7wjB%2BWpZri8lhY1YLBSsFLlRpdBlD0Eh3nA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686fdfd0b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (6306)
Size:   2740
Md5:    0eec2eefee6ba96f1f8dfc42c1b1b07f
Sha1:   6f299b8515258075311fb324fb2eaf25071b66c9
Sha256: ab705874586906f0663f14a1c79e155379b53bb3d1dc9f76a610df78d13d53f0
                                        
                                            GET /inc/js/jquery/ui/menu.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-2580"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aNVlA5HKaYi1T5ymyJ%2Bq32%2FyrISD2n8dXdNOsP1Cblu7eOOZ1Jz7743qzgW6lllork7Cxs57HNplTvnikuSRENziKt5eYvYgXEpH3Gr30fBnkKUThZWI7uGy%2BqwgU1WwAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686febf10b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (9387)
Size:   3229
Md5:    1c6344025bfa108969e67f2923805f4f
Sha1:   db387f34b03f35749c87b1498441e7d0dba38033
Sha256: 1c5d60e35ff318cacedd4702027e2607462e896bb3e67c60c5b49736ea177013

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-1b01"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g37Vkyj4IoLcJEhl7Y%2FiuUJNwiKoJZPJiENc7biAmk7QLIXFzgNUwvt4seDxYkY3DyWz4hmuf%2BwxQE3obxBOR66bDIEC%2FsyhecqcRcF74AeFA%2FoyhmCeShhfUlhpHHAIIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686fda99b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (6689)
Size:   2841
Md5:    073d903bc6a4580c025184bb4f9e666d
Sha1:   faa59457d8592c18b1509291de4ff9eacab69487
Sha256: 5d027c9ace2661d4e08f4c2ea7edf9059cf5c9382da44ad52f3cf3beb193a6a4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/plugins/wp-user-frontend-pro/assets/js/subscriptions.js?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2017 08:43:56 GMT
Vary: Accept-Encoding
ETag: W/"58d8d0cc-1e64"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=79kWNQeqSvbOzlzAGTqOLWB5ag9aQ5OeylT68irh4oM1BZGW4j41tIOBqEuTv294CpdgXRmtfbMLypnxih5%2BwU%2BlXuDN0gVHalNsT3oJGYZwRmtXlLbW%2Fh5wu2EnHgAf6g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559686fcbd7b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1980
Md5:    a6cc73e546d759799a1559a7a3290b26
Sha1:   6cc57489d87abbe03819694c52b0d63fe0294b27
Sha256: e8971f50a3d6cb93a31396231ee10fad8a5423274ea54aef34f7c91de8c231b2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/ui/autocomplete.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-2062"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SwmWBSuYIKDQb0LjEaYMMrUt5XNPHf1XOAcEXeM0kLW2KUxyVJG71csI%2FYoXaQPzJWQ5AFv1bYx%2BWf4m%2FVmG5RqeKo0cWGdjwK3wgcmGRFysHSsZadha2B%2Fs1k6VbcZwNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968705aa3b512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (8061)
Size:   3180
Md5:    55804831adf824afd41273da1b1f56d5
Sha1:   3a7b32095c8624c8b23f393b52d00216b0ffe309
Sha256: f7367327c302314f2a940e1e10f94b6436dd2238ffb1c07dea61c4387db5aa65

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/suggest.js?ver=1.1-20110113 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:40 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9c-1b40"
Expires: Fri, 04 Nov 2022 21:56:29 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMWdo12mn86n2Yspsz1m8QR6St2fAoFDV3zwJLi9hXdThdYrFPqk1loBc4MWjq%2F2nglMkW3EDJ4H1kLfUXIpArCTU%2F81lGOqCDLjjPX5NCHfvLZQRqsUkol7HLKfZeThuw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596872dfb3b4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, ASCII text
Size:   2694
Md5:    8131fa3f4fad962281315e499abb860d
Sha1:   85aac13710376adc93eaf2ef1e031a50b72f2ec4
Sha256: d91876c0b16f71102712ccd992bc336f29e0e69f4101b79e208f2e0e469782d4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-c4f"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wE7L%2FusM%2BoScgt%2Fg43VVcikE6G9b2tAiHxPRa0PX3zXQ9%2Fx8k2CcwCJ%2FaoKSuDiBUInKr4YiY0QlNNOsNKfF7%2BGwGGjgSNi3j%2FeoLQ3xglCotMnnEt0d9MmeBkZz%2FgtbKw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968735baab51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (2936)
Size:   1131
Md5:    6cc48ec42d18759fb6925463361a893e
Sha1:   da7008bed6a90c32a8671c3ab0bb819bbc3bb29a
Sha256: 97a2aad24266b36e167017dcfd756fb25116f17108dc8d86c344804a47e77efc
                                        
                                            GET /inc/js/wp-embed.js?ver=4.4.2 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:26 GMT
Vary: Accept-Encoding
ETag: W/"5783bf8e-cfd"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FOJBiGRhB7MoO0h9xnavJmBIZqweHEJFE5nyo7FoarqYOtcenIdvsaXP980uTxdyG%2BhBMwC3bEWSN0zeBuZzYVVCJZQilptvINU0d%2Bu3MipiJHX%2FiQ1q9q104My9EyJ4bw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75596873a8f6b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   1314
Md5:    b28ae11ef84e8cc6c5dd86c7630773bb
Sha1:   a9d3a15591aa2b323d7a9713c9a50c0e0acfe4fc
Sha256: 5e6a6a5d8fd9a68ece914192a176b3152013ec7ff67a29828b2512d55950afbf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /noi-dung/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:02:16 GMT
Vary: Accept-Encoding
ETag: W/"58ceab88-6b99"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aGbFI%2FWFXJOqj2Ny2eGp2xMtKv4ODwGcjLpHMtlTgxwxGNvnK2W5rWF8h77XPK3paeDtjJFZH0bKwBYmSCSgDxh1x6hTl6sitVVa3e6sOG5OpB4UV5ZTgQGzd2ME9IIcDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755968739f70b4f7-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (446), with CRLF line terminators
Size:   8174
Md5:    f6c37bccfe9da84854ad298a6d57411b
Sha1:   c8e05bf487e5fe662e161207e3382fdafd119039
Sha256: 4feba56234446fdc575c3c95bb8f97fc52e3fd256a42a305ea27f9655b0f082f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /inc/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2016 15:47:42 GMT
Vary: Accept-Encoding
ETag: W/"5783bf9e-2aef"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F%2FgNr7rJdbWYKDtzKT1TEHSjAkJ5CY4O0N3xddn7XTsjeVm%2FLcxswzoPa4Khur%2By2SFmzQxWcG38xSdKiX4Z0jmK6Tk%2FpZupzD7i4r%2BPmwQtVZTllQyA47Go70h1t%2FkX1A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7559687388630b06-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (10774)
Size:   3556
Md5:    4f7f353fec984204512179b41d7c09ac
Sha1:   dfbd6acc4ea4e061897a900edf5fe82eefc0e3b1
Sha256: 1ad88a2ee57f507283f8fef3ff16b10c66ee1839f8c911595dfffbeb57f2f91b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 28143
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apphotlive.biz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:35:48 GMT
expires: Thu, 05 Oct 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 8447
last-modified: Wed, 11 May 2022 19:25:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size:   11800
Md5:    e36fccd06262bef92e7a9841e2202225
Sha1:   b907dd02819497b3942220e0aa160c167195506b
Sha256: 7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
                                        
                                            GET /noi-dung/plugins/blue-multi/envelope.png HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Length: 912
Connection: keep-alive
Last-Modified: Sun, 09 Apr 2017 18:34:37 GMT
ETag: "58ea7ebd-390"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0FpH8Ep305qXkhYO5YtL20uxuG4wl%2BX6CsWfLi0GquzEtIv7gdVBErdmkibb6yhlgN2rfy8dqn%2FcuxbEv5L8A9ssYHDyJWPB5gF581WWw0SlKUQG7js7ytOkMqBw0YN32w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755968773fc2b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 35 x 27, 8-bit colormap, non-interlaced\012- data
Size:   912
Md5:    371e519f19d22a5249fe4b0d447f4dc1
Sha1:   63df9b90ab0f6013dabcfd20edeee1d7282766c7
Sha256: 1f0e80b3ecb12a7f59b90be483358eebf90a993c9669636291027cf06e886658
                                        
                                            GET /noi-dung/plugins/google-language-translator/images/flags.png HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/noi-dung/plugins/google-language-translator/css/style.css?ver=4.4.2

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Length: 49260
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2017 16:01:24 GMT
ETag: "58ceab54-c06c"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s8qv4014zad0ZfazJG7QJi6bMn9%2F4r2hw7SZWLN5W16umLjAq%2B%2F9w2Dj75NHaEEc%2B0DUxuXaBw7sUooV%2BtZLS7yGZQw0iV3P0KkoF6JuBOt3AnuBLHCRGKkkn7EiT08%2Bsg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75596873ef41b512-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 169 x 460, 8-bit/color RGBA, non-interlaced\012- data
Size:   49260
Md5:    4cc13756196f2680b4e0965458316117
Sha1:   019c150a1ca215594bc162d0f847e77c04f3c18c
Sha256: ac29e2b4b627694ca58e97341e587ff7058acd3fe12cc1b614a6c07ea61dac73
                                        
                                            GET /noi-dung/plugins/blue-multi/ajax-loader.gif HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 05 Oct 2022 21:56:35 GMT
Content-Length: 847
Connection: keep-alive
Last-Modified: Sun, 09 Apr 2017 18:34:56 GMT
ETag: "58ea7ed0-34f"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8g8jjNFuSFUNj1NSde6EetHTyB7y1bjeDMo4kb%2FSXLlA2%2Ff2uqZJjqMdPvaVg%2FbGHou58ob5lmLIPOnwY9uKmxAsMpss%2BDAknCyPkpVbWjMX69L6bYe6V%2Fb%2BOci94YPvCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755968776d29b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  GIF image data, version 89a, 16 x 16\012- data
Size:   847
Md5:    af962b37779a443a77ab836b3b7a93f5
Sha1:   cad7feb11183c71b87470e11e022b16ecdcc7ac9
Sha256: 65b72e15d975f67fbd1cb126d57772c06c21fa016e5651b6ce213b26ce0e6877
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6506
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 21:56:35 GMT
Last-Modified: Wed, 05 Oct 2022 20:08:09 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /vi_VN/sdk/xfbml.customerchat.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: e1a1f2f354b9c6eaf799ffb026d25369
etag: "e3f3d2253c9eaf4f1f5fb7a17e61c1d9"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 05 Oct 2022 22:10:48 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: JQKbx306H33LaZ/Ot+ehlQ==
x-fb-debug: rB9awwwBHsON6b5KzeMh/rAHdh/2MhuSi0v5QvBWttNGqoLoS6SLjCO+C+ODJaRqTeliiuzg9qZTELh9eJ32Bw==
priority: u=3,i
content-length: 91079
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 21:56:35 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18722)
Size:   91079
Md5:    25029bc77d3a1f7dcb699fceb7e7a195
Sha1:   3b084fe6ce05586b53b153f73d698a1d795d0dfa
Sha256: a017668dabeeaaced8d2c276f673a994bc27be905f32ed2ce1f00e7eebcbe87d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6506
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 21:56:35 GMT
Last-Modified: Wed, 05 Oct 2022 20:08:09 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /images/branding/product/1x/translate_24dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:55:23 GMT
expires: Thu, 05 Oct 2023 21:55:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
age: 73
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   846
Md5:    e9cd262114358f26b7608b56905185dc
Sha1:   6dbde0a96deaab2b529723ce26c62043cf9180ab
Sha256: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
                                        
                                            GET /images/branding/product/2x/translate_24dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:42 GMT
expires: Thu, 05 Oct 2023 19:34:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
age: 8514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   1842
Md5:    c69c796362406f9e11c7f4bf5bb628da
Sha1:   e489ce95ab56208090868882113d7416abf46775
Sha256: 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
                                        
                                            GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 07:47:20 GMT
expires: Thu, 05 Oct 2023 07:47:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
age: 50956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   910
Md5:    efa6bb2bfe459bc6f4bdafa3db0383f6
Sha1:   52d15ce52fe50643e542c17812de43f4ed1b6ee0
Sha256: 6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
                                        
                                            GET /noi-dung/uploads/sites/133/2022/04/cropped-cropped-Untitled-1-1-1.png HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 21:56:36 GMT
Content-Length: 62257
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:44:48 GMT
ETag: "62665170-f331"
Expires: Fri, 04 Nov 2022 21:56:30 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65l7Hmz1FEu6yf8behaeNQsaPqMlfQhLHn7ciez6gLTl39qRkkOWBoLXwuA2fZSTXfQNi0Fz2ykVSBNoLeQZ1kCRLRjzD8%2FaYCfr5uboeIgxcbWf%2BkUmsZ59AynR1hMQwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755968769b8eb4f9-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 1000 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size:   62257
Md5:    612072bba3253684ca9a5d92b43826bf
Sha1:   c545b6caecdc03652a3bfdbe90ce394f876666a4
Sha256: c4b4150c7276cd11b7d19ca7ed76150ddc5642462eed663f460005ee8d65e77a
                                        
                                            GET /noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-32x32.png HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 21:56:36 GMT
Content-Length: 1697
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:44:09 GMT
ETag: "62665149-6a1"
Expires: Fri, 04 Nov 2022 21:56:31 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fBq5i1FKYYQ67EOcNXNgGWAlWqYWR8XfDmbiVBnY6TpfDfzvyPgMMGQx%2B4qRyEb%2FyZZI%2FdlxRLKT2Iy2jtpF3bWps8MtcV6Whtu6JpX%2FPWbtJjVovKaugHMxU60v0hKRVw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559687bc9b2b506-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1697
Md5:    3fd6306d29bd8d32d043ee7a9e5f3cd9
Sha1:   a20d137b87027ef0e9a8a0a534f2e3fe697f4c3e
Sha256: 3588c4824cbb99d9dd42082909a605759cad4902f3ff92719a2d2d3ac538c98c
                                        
                                            GET /noi-dung/uploads/sites/133/2022/02/cropped-image_2022-02-16_23-08-37-1-192x192.png HTTP/1.1 
Host: apphotlive.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apphotlive.biz/

                                         
                                         172.67.148.212
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 21:56:36 GMT
Content-Length: 48965
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 07:44:09 GMT
ETag: "62665149-bf45"
Expires: Fri, 04 Nov 2022 21:56:31 GMT
Cache-Control: max-age=2592000
X-Rocket-Nginx-Serving-Static: No
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=irJ86FfYKOICaH1NOgfBBVriU0qopeHUSBC9wL5vYzqVXuiAMvnJWp%2Bh6SDOT4HWJ4YgVUumKxUA%2Bxi%2BfQOut7tsGOOlfDq%2BkzvpA2FYS9CQ9W4THoKMldtlW5Ks6qqpDA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7559687bcba8b51d-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   48965
Md5:    de579e2cc18fdc1be2ce91eddee93556
Sha1:   eb9d1a9c42205af517369f7996d4f4618c2a0a8a
Sha256: 6743c02029ae13189bc94c49b3a2f66c26389f62cb050c2b1cfe42669a956b19
                                        
                                            GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1 
Host: translate.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://apphotlive.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 05 Oct 2022 21:56:31 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+685; expires=Fri, 04-Oct-2024 21:56:31 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Open+Sans%3A400%2C700%7CRoboto+Condensed%3A400%2C700&subset=latin%2Clatin-ext%2Cvietnamese&ver=4.5.4 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apphotlive.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 21:56:30 GMT
date: Wed, 05 Oct 2022 21:56:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---