Overview

URLgre.com.vn/
IP 112.78.1.150 (Vietnam)
ASN#45538 ODS Joint Stock Company
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-27 02:11:39 UTC
StatusLoading report..
IDS alerts0
Blocklist alert42
urlquery alerts No alerts detected
Tags None

Domain Summary (12)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-26 05:33:20 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-26 05:33:16 UTC 34.117.237.239
gre.com.vn (85) 0 2022-07-23 04:14:21 UTC 2022-11-27 00:11:57 UTC 112.78.1.150 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.162.142.194
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.pki.goog (4) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
maps.googleapis.com (1) 33876 2019-10-17 15:56:16 UTC 2022-11-26 07:25:18 UTC 142.250.74.10
static.addtoany.com (1) 4091 2012-05-21 12:58:18 UTC 2022-11-26 08:19:14 UTC 172.67.39.148
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-26 07:22:52 UTC 142.250.74.10

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-27 2 gre.com.vn/ Phishing
2022-11-27 2 gre.com.vn/ Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/anspress-question-answer/templates/css/fonts. (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/font-awesome.min.css?ver=166 (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669 (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/style.css?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash-child/style.css?ver=6.0.3 Phishing
2022-11-27 2 gre.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/iso (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.b (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/styles.css?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments (...) Phishing
2022-11-27 2 gre.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1 (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/js_composer/assets/js/dist/js_composer_front. (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1 (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ve (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.mi (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js (...) Phishing
2022-11-27 2 gre.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 Phishing
2022-11-27 2 gre.com.vn/wp-includes/js/imagesloaded.min.js?ver=4.1.4 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.mi (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/header.js?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/animate.css?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/css/vc_components/stm_stats_coun (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.j (...) Phishing
2022-11-27 2 gre.com.vn/wp-content/themes/splash/assets/js/splash.js?ver=1669515090 Phishing
2022-11-27 2 gre.com.vn/wp-content/plugins/anspress-question-answer/addons/recaptcha/scr (...) Phishing
2022-11-27 2 gre.com.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 112.78.1.150
Date UQ / IDS / BL URL IP
2023-01-30 05:44:21 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-30 02:31:28 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-29 20:08:28 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-29 16:56:05 +0000 0 - 4 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-29 13:42:53 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150


Last 5 reports on ASN: ODS Joint Stock Company
Date UQ / IDS / BL URL IP
2023-01-30 05:44:21 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-30 02:31:28 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-29 20:10:25 +0000 0 - 0 - 17 sunmate.vn/js/js/qpost/ar/error.php?tw96awxsy (...) 112.78.2.57
2023-01-29 20:08:28 +0000 0 - 0 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150
2023-01-29 16:56:05 +0000 0 - 4 - 3 bikkviz.com/wp-admin/NyT44HkVg/ 112.78.1.150


Last 5 reports on domain: gre.com.vn
Date UQ / IDS / BL URL IP
2022-11-27 02:11:39 +0000 0 - 0 - 42 gre.com.vn/ 112.78.1.150
2022-11-18 02:12:01 +0000 0 - 0 - 42 gre.com.vn/ 112.78.1.150
2022-11-12 00:11:55 +0000 0 - 0 - 46 gre.com.vn/ 112.78.1.150
2022-09-28 02:12:08 +0000 0 - 0 - 1 gre.com.vn/ 112.78.1.150
2022-09-21 04:11:00 +0000 0 - 0 - 1 gre.com.vn/ 112.78.1.150


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-31 06:54:34 +0000 0 - 4 - 5 cjvgcl.biz/cvdreckukalbbucm 199.21.76.77
2023-01-31 06:54:28 +0000 0 - 3 - 0 napws.biz/khmhdlgwjnjjkvib 72.251.233.245
2023-01-31 00:35:47 +0000 0 - 2 - 0 api.waaw.cc/ 45.115.39.18
2023-01-30 13:50:36 +0000 0 - 2 - 0 f0763108.xsph.ru/gate.php 141.8.192.151
2023-01-30 12:37:51 +0000 0 - 0 - 2 195.2.79.233/panel/uploads/ 195.2.79.233

JavaScript

Executed Scripts (3)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (112)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4837
Expires: Sun, 27 Nov 2022 03:32:05 GMT
Date: Sun, 27 Nov 2022 02:11:28 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1695
Cache-Control: max-age=118075
Date: Sun, 27 Nov 2022 02:11:28 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:59:23 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11813
Expires: Sun, 27 Nov 2022 05:28:21 GMT
Date: Sun, 27 Nov 2022 02:11:28 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 01:19:19 GMT
cache-control: public,max-age=3600
age: 3129
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: /H37MQ0GOP8qskHt8MAZJeehc/LVNbxLj+pYFoH2DusWQaPgTOf8UQVuAH6VSy+iuaDFwwsNI2k=
x-amz-request-id: QDYD3ZHYE7N1TSF9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 01:41:26 GMT
age: 1802
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:28 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 02:11:12 GMT
cache-control: public,max-age=3600
age: 16
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET / HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         112.78.1.150
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 27 Nov 2022 02:11:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.5
X-Redirect-By: WordPress
Set-Cookie: anspress_session=7a049edbddfc18d24df08e0acab9c2ec; expires=Mon, 28-Nov-2022 02:11:28 GMT; Max-Age=86400; path=/
Location: https://gre.com.vn/


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4640
Cache-Control: max-age=115962
Date: Sun, 27 Nov 2022 02:11:29 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:24:11 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 224LWQdbyCyVpUABhvRXGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.162.142.194
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V1o6/QBRAr+QUqhjs0d+xDaLlZQ=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A65821F29D6F6C226364C4108CDB0BA771D7CBFE3D8FCFF255D14EB286FAFB30"
Last-Modified: Sun, 27 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 27 Nov 2022 08:11:29 GMT
Date: Sun, 27 Nov 2022 02:11:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2344
Expires: Sun, 27 Nov 2022 02:50:34 GMT
Date: Sun, 27 Nov 2022 02:11:30 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4374
x-amzn-requestid: 16fa9401-4b57-4300-9377-3a7d96de3a38
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGB7uFWJIAMFfTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f16b1-3386c7b54d828c3b1393b9ce;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:01:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6XMNeYqDwM9yHZf1rkBRhZ6k_iZE92MWKavu0vlQnT2jZ--tswQwWw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:08:31 GMT
age: 64979
etag: "4770f56d4d9489df43f33952e4bfa84d8e46414e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4374
Md5:    514b4077fad50ba782e4bbb2c95c6852
Sha1:   4770f56d4d9489df43f33952e4bfa84d8e46414e
Sha256: a97ce7c911625345342731b96cf423ee36182e101e3039694a666d6508a702ef
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 1482
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13049
Md5:    1db6041a0bdb2319ae85afcc30caaeec
Sha1:   3b0ec6a7188dadf986f72fda8110296d9abd6f35
Sha256: 05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 15593
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9073
x-amzn-requestid: 6cf20b75-6b27-4a34-97a8-017d7169f31b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JuVHY7IAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2328-1ca76b3537613fb26358b8f2;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: lg8rdnHT_ndB-9CMrHcVN8a2xZCubuTEpUQ2m6i77l-NfdNfhfITEQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:41:41 GMT
age: 34189
etag: "c9a5ab962bfdd174aecd4809d770f0fe305ab8e4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9073
Md5:    ccb536b51f31391c89fb2abe3be6c749
Sha1:   c9a5ab962bfdd174aecd4809d770f0fe305ab8e4
Sha256: b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:52:26 GMT
age: 15544
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8254
Md5:    6ee5071a31d351c552aa651e40b16189
Sha1:   6fca9136030ea6f67be44e428ea39c34ff3e28e7
Sha256: 8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6v42KU65wdKKPvjE7TRA3Li3o2dvrdPH7oGVDZGPPsAepqFFjQJkkA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:15:20 GMT
age: 35770
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8817
Md5:    741ddfb19764ac9a77509e7e87cfbfb2
Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56
Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
                                        
                                            GET / HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 19154
x-powered-by: PHP/7.3.5
link: <https://gre.com.vn/wp-json/>; rel="https://api.w.org/", <https://gre.com.vn/wp-json/wp/v2/pages/2309>; rel="alternate"; type="application/json", <https://gre.com.vn/>; rel=shortlink
set-cookie: anspress_session=8642525236078682681cb74c4d10049e; expires=Mon, 28-Nov-2022 02:11:29 GMT; Max-Age=86400; path=/
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size:   19154
Md5:    ab49d6348932dc18ab6262681e7dfa79
Sha1:   7f65d15a96b6f8dadc7a13d5a2f9e6ff3cf534b4
Sha256: 1c4bc053a2dd762553934b78f009552317a40220a5de0eac52519a6d0cf5a22e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 02:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/api/js?key=AIzaSyBP7DGQ8Mj_Sb2A9tVW7edZ9fLL8hCVM6E&ver=1669515090 HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Sun, 27 Nov 2022 02:11:31 GMT
expires: Sun, 27 Nov 2022 02:41:31 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53359
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=20
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2453)
Size:   53359
Md5:    4c904f12dcc99854d59027c327a7f54b
Sha1:   02a87980212c56f140111e8c47d11e8c54ea977f
Sha256: 26ca41189b0fea11b55cfb100d4eb87e75d8ab0a362d9579356fd46aff22e62a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 27 Nov 2022 02:11:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/anspress-question-answer/templates/css/fonts.css?ver=4.3.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 3527
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "62db5aad-dc7"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (3369)
Size:   3527
Md5:    1062b904291e193116acf9efc62bacce
Sha1:   e410e07946140671f14184602fe2818761c99da1
Sha256: dc4eb4fa9e7e85bf4762fcff65a3d657048d7907500867387cdad21515728328

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/anspress-question-answer/templates/css/main.css?ver=4.3.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 75894
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "62db5aad-12876"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   75894
Md5:    8527763c6e3d3b75f539da2d16f6ecf1
Sha1:   f375c9a211f7c8d33a60291685e8e339d194f6f5
Sha256: 9ecb7e6e6cbdc850a3ef8e0cfcef31e5a5e9d6d54399190f3634d25c0fb19a0e
                                        
                                            GET /wp-content/plugins/anspress-question-answer/templates/css/overrides.css?v=4.3.0&ver=4.3.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 0
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "0-5e46f945a4540"
accept-ranges: bytes
X-Firefox-Spdy: h2

                                        
                                            GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 24505
last-modified: Thu, 21 Jul 2022 08:21:48 GMT
etag: "62d90c9c-5fb9"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24504)
Size:   24505
Md5:    7c073b910d79ad465dcfd1894caef986
Sha1:   526c28d076c1aaae387cdbbf04cb2e64b13b29ab
Sha256: 2428388ee7fb9c89fdfd1191a1fb4a45794d7fd64777ecfd9bc4c06052a17522

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/owl.carousel.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 4830
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-12de"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4830
Md5:    d48cad87ce04970f9a2ed80f2ed2285d
Sha1:   d2ec5b795a3f70ed6cd421554bf0ab3ab1b11cf0
Sha256: a8fafb3979cb206518537bbd02e5cdaa78a1808b6e58ab8e7cf7941d0b7b344e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/select2.min.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 15092
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-3af4"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15090), with CRLF line terminators
Size:   15092
Md5:    af19a4367b2194bffa202ad6b91f85fb
Sha1:   11412c40a2d2093b310b6083b96af33bd20ce493
Sha256: 87a3fe035dc2a0c445eb9e792edb0de70ddb9417d4d82ff253015fa847ecb52c
                                        
                                            GET /wp-content/themes/splash/assets/css/font-awesome.min.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 31076
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-7964"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30909), with CRLF line terminators
Size:   31076
Md5:    8d42434f0165da42899648f91f192722
Sha1:   1f15f52c09e82d126c03bfb0c013e973f4958021
Sha256: 7308428f1f0064573f2644aec33aea3312c2701204eeab10564624242ef2787f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 34399
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-865f"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34217)
Size:   34399
Md5:    ffb96099720dde6483d7cab290c543ee
Sha1:   1a6ece8eee36923d795cdf78674b47e7f1b8e94f
Sha256: cdfdf586f38cfb19c6264343cc6a64adce7ff0961834e96a2f912f01dc29e3f0
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 56425
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-dc69"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (56243)
Size:   56425
Md5:    f7409f91a34ea35236d98702f4e69f4c
Sha1:   3a3c16cbb1114f8e210b87cf3102a99968bf6a26
Sha256: 04950e48cd4097fb4a540c3abcf445cd92d59bdf9ba40f49cfb180cc94387a2f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/jquery.fancybox.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 5282
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-14a2"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   5282
Md5:    678590b3df3abbce815a0bf3b23cfd8c
Sha1:   dcf267a0ae755b6982765030676218c674c8fe7a
Sha256: f07511e6a8444cb26fa3d57f1abba880d6d2795df092eb70b3f851570bd5bad9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/lightbox.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 4120
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-1018"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4120
Md5:    53846f325f2e446382ae390f3f3a55ff
Sha1:   c41a7a4e65e2901392f5a1e62a4d2e2af86d2b29
Sha256: 5d0a8106e2ef49f987b646f846578ae66cd485283ed7531820ac19806e527301
                                        
                                            GET /wp-content/themes/splash/assets/css/splash-icons.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 4683
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-124b"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4683
Md5:    e79fa18089774d120d7943ea80bb5bc8
Sha1:   d3ce566f2d8052756af9b58b97b2304dd569cc7b
Sha256: c21fa9662ee1c73411982d978db65e7e4bcf4c3e071fe151c96f7e42f0acdf29

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/style.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 10831
last-modified: Tue, 09 Jun 2020 11:38:35 GMT
etag: "5edf74bb-2a4f"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10831
Md5:    5afa069bb77876b5dc101ca453772d7a
Sha1:   59e37095914ac311fbd91e887a5a2ec89115dbd3
Sha256: cac7288149059abe7ab488970924a8ad18543879d8e2520a2a7cf968e42f31d4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 4933
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-1345"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4933), with no line terminators
Size:   4933
Md5:    e372df47bd19e1563b557d7bdb817188
Sha1:   4efdf4050a78bdbd88aa255955b7423105895dd0
Sha256: 4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 2731
last-modified: Thu, 21 Jul 2022 08:21:39 GMT
etag: "62d90c93-aab"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2731
Md5:    e6fae855021a88a0067fcc58121c594f
Sha1:   6299ac3987b5e81725781799dad361d19ac3b99d
Sha256: e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 61344
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-efa0"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   61344
Md5:    614e7805d92c4702107d8a472080102d
Sha1:   02e9c1c0b6158c80c431c9ee6eef9ab36387ec4e
Sha256: 5be8f036c2f8c92a8faa7de65008859beaebf3a396ca42a8a5b7fe4fb8adbd06
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 59016
last-modified: Wed, 03 Mar 2021 14:16:22 GMT
etag: "603f9a36-e688"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58981)
Size:   59016
Md5:    d68d6bf519169d86e155bad0bed833f8
Sha1:   27ba9c67d0e775fc4e6dd62011daf4c3902698fc
Sha256: c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
                                        
                                            GET /wp-content/plugins/sportspress/assets/css/sportspress.css?ver=2.7.15 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 11818
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-2e2a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   11818
Md5:    a4c83c82dbc4ccea81014dfd86396f2e
Sha1:   40d319bc1373acd153528cdc7c636f63c8ff487d
Sha256: cef377d61163cb55f12a51dd0c8f670ce5bd3dc10c8637bb0bf52b7a7bc80731
                                        
                                            GET /wp-content/plugins/sportspress/assets/css/icons.css?ver=2.7 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 2532
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-9e4"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2532
Md5:    de38c3656cac28df84c808564e07c7f2
Sha1:   37a3b9d1cd375c3b8e1f9c503abf7dd5c662e01c
Sha256: 1499434474341ae6bea12a035804abdcfe3ba63fce3eeda8b4a61a88a82e0d80
                                        
                                            GET /wp-content/themes/splash/includes/megamenu/assets/css/megamenu.css?ver=6.0.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 30987
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-790b"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (715), with CRLF line terminators
Size:   30987
Md5:    92dd78ae252e785b6f84aa93582fa5d5
Sha1:   a5bb877e07d04d940feba4f6393ddecc4d3a7a44
Sha256: 0a3139edf4889053a152b7eba3a2482c4d60104fcf32458c986f62f3cd6a5059
                                        
                                            GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 1519
last-modified: Fri, 29 Jul 2022 03:18:07 GMT
etag: "62e3516f-5ef"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1519), with no line terminators
Size:   1519
Md5:    73e46bbd8244a60086283f5fe275d682
Sha1:   b477443fbe8763c8f111877029b7aee9039ef64d
Sha256: f93483f0aaf24aea4b5534bb8647d22cd9dfcb4d08d2fd1008787bdfb8a6cc47

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash-child/style.css?ver=6.0.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 500
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 03:40:12 GMT
etag: "34f-5e470b5419f00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF, LF line terminators
Size:   500
Md5:    3115b10ae790c3352b1125faaf8fbed4
Sha1:   b12ae920448877b8777aaeaf83efc3c7cade5d7e
Sha256: a9be8a4b5cb75e42e4559be65153fe2d9494e6c8b5ed0a55b39cfec8c519780d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/rugby.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 69728
last-modified: Fri, 22 Jul 2022 10:17:37 GMT
etag: "62da7941-11060"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 89521
last-modified: Wed, 10 Mar 2021 08:07:24 GMT
etag: "60487e3c-15db1"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/chung-cu-hoa-khanh-010-636704410362478295.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 115842
last-modified: Thu, 21 Jul 2022 08:13:57 GMT
etag: "62d90ac5-1c482"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/kythuat1-741x450.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 58352
last-modified: Fri, 22 Jul 2022 09:39:38 GMT
etag: "62da705a-e3f0"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 35722
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-8b8a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/bootstrap.min.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:30 GMT
content-length: 121257
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-1d9a9"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 363983
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-58dcf"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/dondep-canh-quan.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 141949
last-modified: Fri, 22 Jul 2022 09:27:28 GMT
etag: "62da6d80-22a7d"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/TPBank.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 38018
last-modified: Fri, 22 Jul 2022 06:41:04 GMT
etag: "62da4680-9482"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 9533
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-253d"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/kythuat.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 88458
last-modified: Fri, 22 Jul 2022 09:36:50 GMT
etag: "62da6fb2-1598a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/css/styles.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 662164
last-modified: Fri, 29 Jul 2022 03:50:25 GMT
etag: "62e35901-a1a94"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/slice-22.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 1170209
last-modified: Tue, 26 Jul 2022 01:42:27 GMT
etag: "62df4683-11db21"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/11/bao-tri-sua-chua-35-555x460.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 67160
last-modified: Fri, 18 Nov 2022 03:00:52 GMT
etag: "6376f564-10658"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/08/van-hanhChungcu-TM-hoakhanh.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 375735
last-modified: Tue, 23 Aug 2022 02:28:18 GMT
etag: "63043b42-5bbb7"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/waypoints.min.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 8051
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-1f73"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 2938
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-b7a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 11224
last-modified: Wed, 18 Nov 2020 02:06:06 GMT
etag: "5fb4818e-2bd8"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/js/lightbox.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 18761
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-4949"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sportspress/assets/js/sportspress.js?ver=2.7.15 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 4334
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-10ee"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/js/jquery.counterup.min.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 1074
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-432"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 20637
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-509d"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 209885
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-333dd"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/logo.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 13557
last-modified: Fri, 22 Jul 2022 10:19:51 GMT
etag: "62da79c7-34f5"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/dich-vu-tap-vu-van-phong.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 29685
last-modified: Fri, 22 Jul 2022 09:25:01 GMT
etag: "62da6ced-73f5"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/jquery.fancybox.pack.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 23180
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-5a8c"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 19142
last-modified: Mon, 11 Apr 2022 05:04:30 GMT
etag: "6253b6de-4ac6"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 374
x-accel-version: 0.01
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "3e0-5e44c67857440-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/VPBank.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 29415
last-modified: Fri, 22 Jul 2022 06:41:10 GMT
etag: "62da4686-72e7"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/select2.full.min.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 73327
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-11e6f"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 21904
last-modified: Thu, 21 Jul 2022 08:21:39 GMT
etag: "62d90c93-5590"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/ajax.submit.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 14917
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-3a45"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 123959
last-modified: Thu, 21 Jul 2022 08:22:05 GMT
etag: "62d90cad-1e437"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /menu/page.js HTTP/1.1 
Host: static.addtoany.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.67.39.148
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 64926
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770755662dd10b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 88932
last-modified: Mon, 04 Jul 2022 05:10:38 GMT
etag: "62c2764e-15b64"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 485416
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-76828"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 3037
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-bdd"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/includes/megamenu/assets/js/megamenu.js?ver=6.0.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 1759
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-6df"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 6475
last-modified: Mon, 11 Apr 2022 05:04:30 GMT
etag: "6253b6de-194b"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/skrollr/dist/skrollr.min.js?ver=6.6.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 12834
last-modified: Thu, 21 Jul 2022 08:21:29 GMT
etag: "62d90c89-3222"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 5629
last-modified: Sat, 13 Jun 2020 11:53:28 GMT
etag: "5ee4be38-15fd"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 2139
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-85b"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 126
x-accel-version: 0.01
last-modified: Fri, 29 Jul 2022 03:18:07 GMT
etag: "81-5e4e9195852c5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/Licogi13.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 28314
last-modified: Fri, 22 Jul 2022 06:41:01 GMT
etag: "62da467d-6e9a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 1834
last-modified: Thu, 21 Jul 2022 08:22:20 GMT
etag: "62d90cbc-72a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/Chung-cu-Blue-House-1.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 910684
last-modified: Tue, 26 Jul 2022 14:50:14 GMT
etag: "62dfff26-de55c"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/slice-2.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 2245067
last-modified: Thu, 21 Jul 2022 09:18:46 GMT
etag: "62d919f6-2241cb"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/header.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 2298
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-8fa"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/js/ticker_posts.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 1687
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-697"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/splash/assets/css/animate.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 77222
last-modified: Tue, 09 Jun 2020 09:32:00 GMT
etag: "5edf5710-12da6"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/BIDV.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 26510
last-modified: Fri, 22 Jul 2022 06:40:59 GMT
etag: "62da467b-678e"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/css/vc_components/stm_media_tabs_style_5_3.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 5950
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-173e"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Montserrat%3Aregular%2C700%7CRoboto+Condensed%3Aregular%2Citalic%2C700%2C300%2C300italic%2C700italic&ver=1669515090 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 02:11:30 GMT
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/bootstrap.min.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 36874
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-900a"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/VIP-Bank.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 54028
last-modified: Fri, 22 Jul 2022 06:41:08 GMT
etag: "62da4684-d30c"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/css/vc_components/stm_stats_count_style_1.css?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 316
x-accel-version: 0.01
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "2d1-5a7a366472640-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/sportspress/assets/js/jquery.dataTables.min.js?ver=1.10.4 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 80863
last-modified: Thu, 21 Jul 2022 08:21:26 GMT
etag: "62d90c86-13bdf"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2022/07/VCB.png HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 36583
last-modified: Fri, 22 Jul 2022 06:41:06 GMT
etag: "62da4682-8ee7"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/splash.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 17586
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-44b2"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/anspress-question-answer/addons/recaptcha/script.js?ver=4.3.0 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 243
x-accel-version: 0.01
last-modified: Sat, 23 Jul 2022 02:19:25 GMT
etag: "1b4-5e46f945a4540-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Roboto:400%2C700%7CMontserrat:400%7CRoboto+Condensed:700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 02:11:30 GMT
date: Sun, 27 Nov 2022 02:11:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2022/07/tuvan.jpg HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 79699
last-modified: Fri, 22 Jul 2022 09:30:19 GMT
etag: "62da6e2b-13753"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/splash/assets/js/owl.carousel.min.js?ver=1669515090 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 40412
last-modified: Tue, 09 Jun 2020 09:32:01 GMT
etag: "5edf5711-9ddc"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1 
Host: gre.com.vn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gre.com.vn/
Cookie: anspress_session=8642525236078682681cb74c4d10049e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         112.78.1.150
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 27 Nov 2022 02:11:31 GMT
content-length: 18617
last-modified: Mon, 11 Apr 2022 22:56:24 GMT
etag: "6254b218-48b9"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing