r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4837
Expires: Sun, 27 Nov 2022 03:32:05 GMT
Date: Sun, 27 Nov 2022 02:11:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1695
Cache-Control: max-age=118075
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:28 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:59:23 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11813
Expires: Sun, 27 Nov 2022 05:28:21 GMT
Date: Sun, 27 Nov 2022 02:11:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 01:19:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3129
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /H37MQ0GOP8qskHt8MAZJeehc/LVNbxLj+pYFoH2DusWQaPgTOf8UQVuAH6VSy+iuaDFwwsNI2k=
x-amz-request-id: QDYD3ZHYE7N1TSF9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 01:41:26 GMT
age: 1802
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 02:11:12 GMT
cache-control: public,max-age=3600
age: 16
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
gre.com.vn/
112.78.1.150301 Moved Permanently 0 B IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 27 Nov 2022 02:11:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.5
X-Redirect-By: WordPress
Set-Cookie: anspress_session=7a049edbddfc18d24df08e0acab9c2ec; expires=Mon, 28-Nov-2022 02:11:28 GMT; Max-Age=86400; path=/
Location: https://gre.com.vn/
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4640
Cache-Control: max-age=115962
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:29 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:24:11 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.142.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.142.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 224LWQdbyCyVpUABhvRXGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V1o6/QBRAr+QUqhjs0d+xDaLlZQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3f95505b9f51aa0fd2762bdeed09f411
388818947b4484460ba6b913ece45698f9604d19
a65821f29d6f6c226364c4108cdb0ba771d7cbfe3d8fcff255d14eb286fafb30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A65821F29D6F6C226364C4108CDB0BA771D7CBFE3D8FCFF255D14EB286FAFB30"
Last-Modified: Sun, 27 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 27 Nov 2022 08:11:29 GMT
Date: Sun, 27 Nov 2022 02:11:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 514b4077fad50ba782e4bbb2c95c6852
4770f56d4d9489df43f33952e4bfa84d8e46414e
a97ce7c911625345342731b96cf423ee36182e101e3039694a666d6508a702ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4374
x-amzn-requestid: 16fa9401-4b57-4300-9377-3a7d96de3a38
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGB7uFWJIAMFfTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f16b1-3386c7b54d828c3b1393b9ce;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:01:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6XMNeYqDwM9yHZf1rkBRhZ6k_iZE92MWKavu0vlQnT2jZ--tswQwWw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:08:31 GMT
age: 64979
etag: "4770f56d4d9489df43f33952e4bfa84d8e46414e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 1482
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 15593
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccb536b51f31391c89fb2abe3be6c749
c9a5ab962bfdd174aecd4809d770f0fe305ab8e4
b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9073
x-amzn-requestid: 6cf20b75-6b27-4a34-97a8-017d7169f31b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JuVHY7IAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2328-1ca76b3537613fb26358b8f2;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: lg8rdnHT_ndB-9CMrHcVN8a2xZCubuTEpUQ2m6i77l-NfdNfhfITEQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:41:41 GMT
age: 34189
etag: "c9a5ab962bfdd174aecd4809d770f0fe305ab8e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee5071a31d351c552aa651e40b16189
6fca9136030ea6f67be44e428ea39c34ff3e28e7
8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:52:26 GMT
age: 15544
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 35770
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gre.com.vn/
112.78.1.150200 OK 19 kB IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash ab49d6348932dc18ab6262681e7dfa79
7f65d15a96b6f8dadc7a13d5a2f9e6ff3cf534b4
1c4bc053a2dd762553934b78f009552317a40220a5de0eac52519a6d0cf5a22e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/html; charset=UTF-8
content-length: 19154
x-powered-by: PHP/7.3.5
link: <https://gre.com.vn/wp-json/>; rel="https://api.w.org/", <https://gre.com.vn/wp-json/wp/v2/pages/2309>; rel="alternate"; type="application/json", <https://gre.com.vn/>; rel=shortlink
set-cookie: anspress_session=8642525236078682681cb74c4d10049e; expires=Mon, 28-Nov-2022 02:11:29 GMT; Max-Age=86400; path=/
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090
142.250.74.10200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090
IP 142.250.74.10:0
File type ASCII text, with very long lines (2453)
Hash 4c904f12dcc99854d59027c327a7f54b
02a87980212c56f140111e8c47d11e8c54ea977f
26ca41189b0fea11b55cfb100d4eb87e75d8ab0a362d9579356fd46aff22e62a
GET /maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 27 Nov 2022 02:11:31 GMT
expires: Sun, 27 Nov 2022 02:41:31 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53359
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=20
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 02:11:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0
112.78.1.150200 OK 3.5 kB URL HTTP/2 gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3369)
Hash 1062b904291e193116acf9efc62bacce
e410e07946140671f14184602fe2818761c99da1
dc4eb4fa9e7e85bf4762fcff65a3d657048d7907500867387cdad21515728328
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 3527
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "62db5aad-dc7"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0
112.78.1.150200 OK 76 kB URL HTTP/2 gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8527763c6e3d3b75f539da2d16f6ecf1
f375c9a211f7c8d33a60291685e8e339d194f6f5
9ecb7e6e6cbdc850a3ef8e0cfcef31e5a5e9d6d54399190f3634d25c0fb19a0e
GET /wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 75894
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "62db5aad-12876"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 0
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "0-5e46f945a4540"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
112.78.1.150200 OK 24 kB URL HTTP/2 gre.com.vn/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (24504)
Hash 7c073b910d79ad465dcfd1894caef986
526c28d076c1aaae387cdbbf04cb2e64b13b29ab
2428388ee7fb9c89fdfd1191a1fb4a45794d7fd64777ecfd9bc4c06052a17522
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 24505
last-modified: Thu, 21 Jul 2022 08:21:48 GMT
etag: "62d90c9c-5fb9"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090
112.78.1.150200 OK 4.8 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF line terminators
Hash d48cad87ce04970f9a2ed80f2ed2285d
d2ec5b795a3f70ed6cd421554bf0ab3ab1b11cf0
a8fafb3979cb206518537bbd02e5cdaa78a1808b6e58ab8e7cf7941d0b7b344e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 4830
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-12de"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090
112.78.1.150200 OK 15 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (15090), with CRLF line terminators
Hash af19a4367b2194bffa202ad6b91f85fb
11412c40a2d2093b310b6083b96af33bd20ce493
87a3fe035dc2a0c445eb9e792edb0de70ddb9417d4d82ff253015fa847ecb52c
GET /wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 15092
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-3af4"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090
112.78.1.150200 OK 31 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (30909), with CRLF line terminators
Hash 8d42434f0165da42899648f91f192722
1f15f52c09e82d126c03bfb0c013e973f4958021
7308428f1f0064573f2644aec33aea3312c2701204eeab10564624242ef2787f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 31076
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-7964"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
112.78.1.150200 OK 34 kB URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (34217)
Hash ffb96099720dde6483d7cab290c543ee
1a6ece8eee36923d795cdf78674b47e7f1b8e94f
cdfdf586f38cfb19c6264343cc6a64adce7ff0961834e96a2f912f01dc29e3f0
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 34399
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-865f"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
112.78.1.150200 OK 56 kB URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (56243)
Hash f7409f91a34ea35236d98702f4e69f4c
3a3c16cbb1114f8e210b87cf3102a99968bf6a26
04950e48cd4097fb4a540c3abcf445cd92d59bdf9ba40f49cfb180cc94387a2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 56425
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-dc69"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090
112.78.1.150200 OK 5.3 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF line terminators
Hash 678590b3df3abbce815a0bf3b23cfd8c
dcf267a0ae755b6982765030676218c674c8fe7a
f07511e6a8444cb26fa3d57f1abba880d6d2795df092eb70b3f851570bd5bad9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 5282
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-14a2"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090
112.78.1.150200 OK 4.1 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF line terminators
Hash 53846f325f2e446382ae390f3f3a55ff
c41a7a4e65e2901392f5a1e62a4d2e2af86d2b29
5d0a8106e2ef49f987b646f846578ae66cd485283ed7531820ac19806e527301
GET /wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 4120
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-1018"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090
112.78.1.150200 OK 4.7 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF line terminators
Hash e79fa18089774d120d7943ea80bb5bc8
d3ce566f2d8052756af9b58b97b2304dd569cc7b
c21fa9662ee1c73411982d978db65e7e4bcf4c3e071fe151c96f7e42f0acdf29
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 4683
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-124b"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/style.css?ver=1669515090
112.78.1.150200 OK 11 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/style.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF line terminators
Hash 5afa069bb77876b5dc101ca453772d7a
59e37095914ac311fbd91e887a5a2ec89115dbd3
cac7288149059abe7ab488970924a8ad18543879d8e2520a2a7cf968e42f31d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/style.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 10831
last-modified: Tue, 09 Jun 2020 11:38:35 GMT
etag: "5edf74bb-2a4f"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
112.78.1.150200 OK 4.9 kB URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (4933), with no line terminators
Hash e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 4933
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-1345"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
112.78.1.150200 OK 2.7 kB URL HTTP/2 gre.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 2731
last-modified: Thu, 21 Jul 2022 08:21:39 GMT
etag: "62d90c93-aab"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
112.78.1.150200 OK 61 kB URL HTTP/2 gre.com.vn/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 614e7805d92c4702107d8a472080102d
02e9c1c0b6158c80c431c9ee6eef9ab36387ec4e
5be8f036c2f8c92a8faa7de65008859beaebf3a396ca42a8a5b7fe4fb8adbd06
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 61344
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-efa0"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/css/dashicons.min.css?ver=6.0.3
112.78.1.150200 OK 59 kB URL HTTP/2 gre.com.vn/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 59016
last-modified: Wed, 03 Mar 2021 14:16:22 GMT
etag: "603f9a36-e688"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15
112.78.1.150200 OK 12 kB URL HTTP/2 gre.com.vn/wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash a4c83c82dbc4ccea81014dfd86396f2e
40d319bc1373acd153528cdc7c636f63c8ff487d
cef377d61163cb55f12a51dd0c8f670ce5bd3dc10c8637bb0bf52b7a7bc80731
GET /wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 11818
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-2e2a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7
112.78.1.150200 OK 2.5 kB URL HTTP/2 gre.com.vn/wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Hash de38c3656cac28df84c808564e07c7f2
37a3b9d1cd375c3b8e1f9c503abf7dd5c662e01c
1499434474341ae6bea12a035804abdcfe3ba63fce3eeda8b4a61a88a82e0d80
GET /wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 2532
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-9e4"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3
112.78.1.150200 OK 31 kB URL HTTP/2 gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (715), with CRLF line terminators
Hash 92dd78ae252e785b6f84aa93582fa5d5
a5bb877e07d04d940feba4f6393ddecc4d3a7a44
0a3139edf4889053a152b7eba3a2482c4d60104fcf32458c986f62f3cd6a5059
GET /wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 30987
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-790b"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
112.78.1.150200 OK 1.5 kB URL HTTP/2 gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (1519), with no line terminators
Hash 73e46bbd8244a60086283f5fe275d682
b477443fbe8763c8f111877029b7aee9039ef64d
f93483f0aaf24aea4b5534bb8647d22cd9dfcb4d08d2fd1008787bdfb8a6cc47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 1519
last-modified: Fri, 29 Jul 2022 03:18:07 GMT
etag: "62e3516f-5ef"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash-child/style.css?ver=6.0.3
112.78.1.150200 OK 500 B URL HTTP/2 gre.com.vn/wp-content/themes/splash-child/style.css?ver=6.0.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF, LF line terminators
Hash 3115b10ae790c3352b1125faaf8fbed4
b12ae920448877b8777aaeaf83efc3c7cade5d7e
a9be8a4b5cb75e42e4559be65153fe2d9494e6c8b5ed0a55b39cfec8c519780d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash-child/style.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 500
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 03:40:12 GMT
etag: "34f-5e470b5419f00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/rugby.css?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/rugby.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/splash/assets/css/rugby.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 69728
last-modified: Fri, 22 Jul 2022 10:17:37 GMT
etag: "62da7941-11060"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 89521
last-modified: Wed, 10 Mar 2021 08:07:24 GMT
etag: "60487e3c-15db1"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 115842
last-modified: Thu, 21 Jul 2022 08:13:57 GMT
etag: "62d90ac5-1c482"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/kythuat1-741x450.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/kythuat1-741x450.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/kythuat1-741x450.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 58352
last-modified: Fri, 22 Jul 2022 09:39:38 GMT
etag: "62da705a-e3f0"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 35722
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-8b8a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: text/css
content-length: 121257
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-1d9a9"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 363983
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-58dcf"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/dondep-canh-quan.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/dondep-canh-quan.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/dondep-canh-quan.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 141949
last-modified: Fri, 22 Jul 2022 09:27:28 GMT
etag: "62da6d80-22a7d"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/TPBank.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/TPBank.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/TPBank.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 38018
last-modified: Fri, 22 Jul 2022 06:41:04 GMT
etag: "62da4680-9482"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 9533
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-253d"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/kythuat.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/kythuat.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/kythuat.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 88458
last-modified: Fri, 22 Jul 2022 09:36:50 GMT
etag: "62da6fb2-1598a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/styles.css?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/styles.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/styles.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 662164
last-modified: Fri, 29 Jul 2022 03:50:25 GMT
etag: "62e35901-a1a94"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/slice-22.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/slice-22.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/slice-22.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 1170209
last-modified: Tue, 26 Jul 2022 01:42:27 GMT
etag: "62df4683-11db21"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 67160
last-modified: Fri, 18 Nov 2022 03:00:52 GMT
etag: "6376f564-10658"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 375735
last-modified: Tue, 23 Aug 2022 02:28:18 GMT
etag: "63043b42-5bbb7"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 8051
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-1f73"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 2938
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-b7a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 11224
last-modified: Wed, 18 Nov 2020 02:06:06 GMT
etag: "5fb4818e-2bd8"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 18761
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-4949"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 4334
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-10ee"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1074
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-432"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 20637
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-509d"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 209885
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-333dd"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/logo.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/logo.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/logo.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 13557
last-modified: Fri, 22 Jul 2022 10:19:51 GMT
etag: "62da79c7-34f5"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 29685
last-modified: Fri, 22 Jul 2022 09:25:01 GMT
etag: "62da6ced-73f5"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 23180
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-5a8c"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 19142
last-modified: Mon, 11 Apr 2022 05:04:30 GMT
etag: "6253b6de-4ac6"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 374
x-accel-version: 0.01
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "3e0-5e44c67857440-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/VPBank.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/VPBank.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/VPBank.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 29415
last-modified: Fri, 22 Jul 2022 06:41:10 GMT
etag: "62da4686-72e7"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 73327
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-11e6f"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 21904
last-modified: Thu, 21 Jul 2022 08:21:39 GMT
etag: "62d90c93-5590"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 14917
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-3a45"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 123959
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-1e437"
accept-ranges: bytes
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
172.67.39.148200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 172.67.39.148:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 02:11:30 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 64926
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770755662dd10b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 88932
last-modified: Mon, 04 Jul 2022 05:10:38 GMT
etag: "62c2764e-15b64"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 485416
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-76828"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 3037
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-bdd"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1759
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-6df"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 6475
last-modified: Mon, 11 Apr 2022 05:04:30 GMT
etag: "6253b6de-194b"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 12834
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-3222"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/js/imagesloaded.min.js?ver=4.1.4
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 5629
last-modified: Sat, 13 Jun 2020 11:53:28 GMT
etag: "5ee4be38-15fd"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 2139
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-85b"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 126
x-accel-version: 0.01
last-modified: Fri, 29 Jul 2022 03:18:07 GMT
etag: "81-5e4e9195852c5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/Licogi13.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/Licogi13.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/Licogi13.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 28314
last-modified: Fri, 22 Jul 2022 06:41:01 GMT
etag: "62da467d-6e9a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1834
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-72a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 910684
last-modified: Tue, 26 Jul 2022 14:50:14 GMT
etag: "62dfff26-de55c"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/slice-2.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/slice-2.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/slice-2.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 2245067
last-modified: Thu, 21 Jul 2022 09:18:46 GMT
etag: "62d919f6-2241cb"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/header.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/header.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/header.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 2298
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-8fa"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 1687
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-697"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/animate.css?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/animate.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/animate.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 77222
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-12da6"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/BIDV.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/BIDV.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/BIDV.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 26510
last-modified: Fri, 22 Jul 2022 06:40:59 GMT
etag: "62da467b-678e"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 5950
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-173e"
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090
IP 142.250.74.10:0
GET /css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 02:11:30 GMT
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 36874
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-900a"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/VIP-Bank.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/VIP-Bank.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/VIP-Bank.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 54028
last-modified: Fri, 22 Jul 2022 06:41:08 GMT
etag: "62da4684-d30c"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: text/css
content-length: 316
x-accel-version: 0.01
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "2d1-5a7a366472640-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 80863
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-13bdf"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/VCB.png
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/VCB.png
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/VCB.png HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/png
content-length: 36583
last-modified: Fri, 22 Jul 2022 06:41:06 GMT
etag: "62da4682-8ee7"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/splash.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/splash.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/splash/assets/js/splash.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 17586
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-44b2"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 243
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "1b4-5e46f945a4540-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700
IP 142.250.74.10:0
GET /css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 02:11:30 GMT
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gre.com.vn/wp-content/uploads/2022/07/tuvan.jpg
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/uploads/2022/07/tuvan.jpg
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/uploads/2022/07/tuvan.jpg HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: image/jpeg
content-length: 79699
last-modified: Fri, 22 Jul 2022 09:30:19 GMT
etag: "62da6e2b-13753"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 40412
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-9ddc"
accept-ranges: bytes
X-Firefox-Spdy: h2
gre.com.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
112.78.1.150200 OK 0 B URL HTTP/2 gre.com.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 112.78.1.150:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: gre.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-type: application/javascript
content-length: 18617
last-modified: Mon, 11 Apr 2022 22:56:24 GMT
etag: "6254b218-48b9"
accept-ranges: bytes
X-Firefox-Spdy: h2