Overview

URL taichinhcaptoc.com/
IP45.119.212.150
ASNBranch of Long Van System Solution JSC - Hanoi
Location Vietnam
Report completed2022-09-05 22:09:03 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-05 2 taichinhcaptoc.com/ Phishing
2022-09-05 2 taichinhcaptoc.com/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (20)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-05 17:53:49 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-05 08:52:38 UTC 34.120.237.76
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-05 04:38:34 UTC 142.250.74.72
mnemonic passive DNS builder.simplepage.vn (5) 0 2020-05-20 01:42:37 UTC 2022-07-23 01:21:26 UTC 103.27.238.219 Domain (simplepage.vn) ranked at: 55463
mnemonic passive DNS lf16-tiktok-web.ttwstatic.com (2) 8325 2021-11-11 07:31:00 UTC 2022-09-05 11:49:07 UTC 23.36.76.233
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-05 14:49:07 UTC 143.204.55.36
mnemonic passive DNS taichinhcaptoc.com (2) 0 2021-01-23 16:22:25 UTC 2022-09-05 11:23:59 UTC 45.119.212.150 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-05 05:10:58 UTC 52.38.227.80
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-05 05:20:47 UTC 104.17.24.14
mnemonic passive DNS fonts.gstatic.com (16) 0 2014-08-29 13:43:22 UTC 2022-09-05 04:37:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-05 04:38:09 UTC 142.251.1.157
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-05 04:38:54 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-09-05 04:38:08 UTC 142.250.74.3
mnemonic passive DNS r3.o.lencr.org (10) 344 2020-12-02 08:52:13 UTC 2022-09-05 04:38:00 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-05 05:14:21 UTC 143.204.55.110
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-05 21:09:51 UTC 172.64.155.188
mnemonic passive DNS simpleweb.cdn.vccloud.vn (17) 0 2022-07-02 08:47:41 UTC 2022-07-02 08:47:41 UTC 42.112.37.35 Domain (vccloud.vn) ranked at: 180156
mnemonic passive DNS crm.simplepage.vn (1) 0 2020-08-17 04:04:04 UTC 2022-07-11 04:04:28 UTC 45.119.83.79 Domain (simplepage.vn) ranked at: 55463
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-05 16:49:34 UTC 142.250.74.174
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-05 18:28:12 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 45.119.212.150

Date UQ / IDS / BL URL IP
2022-09-06 10:42:34 +0000
0 - 0 - 2 tampanel.vn/ 45.119.212.150
2022-09-05 22:09:03 +0000
0 - 0 - 2 taichinhcaptoc.com/ 45.119.212.150

Last 5 reports on ASN: Branch of Long Van System Solution JSC - Hanoi

Date UQ / IDS / BL URL IP
2022-11-22 17:34:41 +0000
0 - 0 - 6 hopesrelief.com.vn/inke/LiinkedInhardest/900/ 103.48.192.31
2022-11-11 22:28:27 +0000
0 - 0 - 1 ahomescorp.com/lib/js/1/ 45.119.213.176
2022-10-18 22:30:11 +0000
0 - 0 - 1 vtennis.vn/forumrunner/PPL-ID.zip 103.48.192.117
2022-10-08 13:07:00 +0000
0 - 0 - 1 103.48.193.51/ 103.48.193.51
2022-10-05 22:58:35 +0000
0 - 0 - 9 45.119.215.150/ 45.119.215.150

Last 1 reports on domain: taichinhcaptoc.com

Date UQ / IDS / BL URL IP
2022-09-05 22:09:03 +0000
0 - 0 - 2 taichinhcaptoc.com/ 45.119.212.150

No other reports with similar screenshot



JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (85)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 21:45:03 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hYm-AXfmjLGM3k6sRaAMXBYMIbx7vSQndgsYhsf9kWpxBpvW06wksQ==
Age: 1428


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2892
Expires: Mon, 05 Sep 2022 22:57:03 GMT
Date: Mon, 05 Sep 2022 22:08:51 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cWSQJvdR7tWC57fo8Jk9Gv5_HIA2pU0Ibg3NEcsjVqgU_3t-VM02cA==
age: 75214
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET / HTTP/1.1 
Host: taichinhcaptoc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         45.119.212.150
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 05 Sep 2022 22:08:51 GMT
Content-Length: 162
Connection: keep-alive
Location: https://taichinhcaptoc.com/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:51 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 05 Sep 2022 21:38:16 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 22:30:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JImGKs6eNzT8KRYw9AD11uhWh0H2KrKqJYwFvRsAg5hD6hdkNiYJAQ==
Age: 1836


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4541
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 22:08:52 GMT
Last-Modified: Mon, 05 Sep 2022 20:53:11 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9499835D8347C94AFA8AFD54220EE45BE58C83454C330C44925FB27937DE305A"
Last-Modified: Sun, 04 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Sep 2022 04:08:52 GMT
Date: Mon, 05 Sep 2022 22:08:52 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iJ2Q2VCJU3qe0/jA0fCYOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.38.227.80
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3YcyD8Wh6C/VqKT4RdmZPuW1wXc=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5401
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:08:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5401
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:08:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5401
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:08:54 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSBSzzRMdrVdoV3Ld8hYWq2AwO7Mswcwa8Tk_AKa44j1SlrFugNqpg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:06 GMT
age: 1248
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4426
Md5:    c81f3df885bdee8cac46ea9495e6b63b
Sha1:   fc766bca874a352a4acb569577d4cf6527f4f074
Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12573
x-amzn-requestid: 92e03b26-883b-41e2-9033-379a6d02210c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGy8oAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-1c4ea2f74b796623574bde87;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: u1hKGB5UKEuuIVqcQ_Lx5wfBjy_hB32Jnp7_mDnF2BrsN4a6Mj_WJQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:16 GMT
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
age: 1358
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12573
Md5:    3fe4a321dcd6a94a637a528d74f9321a
Sha1:   3f3aad2cc71226b39549db1a9baa6837d4f1d897
Sha256: a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8792
x-amzn-requestid: 6ce6059f-62e2-4783-8e18-ab5169278e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdHNQIAMFbCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-019ac0de4e4baeef7180a3ce;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: h9QrBB7dSrQB9LSyQotbOuFlS06F6q7tROxfHJdY4O5dheRy9GLajw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:16 GMT
etag: "d378158dfa08278f1ffa477111c74a5dbb1d4f3c"
age: 1358
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8792
Md5:    82415c19dc5c495d88093346d9538ea0
Sha1:   d378158dfa08278f1ffa477111c74a5dbb1d4f3c
Sha256: cb31fff4e6845e445f30f2637e9c45b82af94767845e38a6d675c0651988971f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 1392
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6656
Md5:    983e705542fa78b4d5c876e0c1eada7e
Sha1:   5fc951e5236edd282d4975853ca35dab2e55fb17
Sha256: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13302
x-amzn-requestid: 61468c19-8f4b-4f68-a66a-abbf33eb6a2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGOqoAMFd9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-08a971825e224d563c2b58ec;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: al1wVT1-f8as--6pfCb8oSEP-CxrQ-eOxVq5iX4i8Pftckg0MYmfMA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:55 GMT
age: 1379
etag: "998cc906e470e1b8ec9b840ab5c3b93f1618a1e3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13302
Md5:    6287f68a964668d9dcd418f0f55cfa41
Sha1:   998cc906e470e1b8ec9b840ab5c3b93f1618a1e3
Sha256: d1d6a242e8a5e3fa3166271473faa20fe2825f24f02a5e15c02180a066262b4c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8UExY-3ojiqMEfyXXKG6kJcB5CRiNnfgG5JQS3gWnd4t4bbKNzbsYA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:43 GMT
age: 1391
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6482
Md5:    0efc32eccbf76ac0d89f324d09a7fd1f
Sha1:   f8589eb3907582137d8b9373af745d80eddbf1bb
Sha256: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
                                        
                                            GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.css?ver=5.4.1 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://taichinhcaptoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Mon, 05 Sep 2022 22:08:54 GMT
content-length: 4565
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-704b"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 362389
expires: Sat, 26 Aug 2023 22:08:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5d%2BpaV6sDZ7a9zX2Lpm8JkHzS3c1gJAs82AmNaLZ1YQR59%2BtMrWDYXmWH5%2BOMV9XQ4He7b7nbSbmT5xmEedpqPDn4ayecf3vFa5Es86MrXPFVzaQFn1jloC%2BnOxr4WLtj83OqMgf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746249433a87b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (372)
Size:   4565
Md5:    4f7f8a8f07088582a438bf1203d812a9
Sha1:   82568746ea5dd25b71e5d8e5400ce35a83fa6566
Sha256: 2b8bf8e9cef6e45203a5e8125839552d8ca3fa472fb42ec49a7af89d738340f5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-142535906-4 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Sep 2022 22:08:54 GMT
expires: Mon, 05 Sep 2022 22:08:54 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1615)
Size:   41913
Md5:    3c0aa2ad4f8eff9fd1ec1fbca36df360
Sha1:   f9de90b2b47d7d4f3c6a72e3c3d038dbbafb0231
Sha256: 32fce7e8627375369aaa797192ab5a31f6ba0657aa379c46317814345a9445a1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "264CD1A233580F0959B8603AC0474783B9D6ADEECE1903A2E1356BFD4CC923B5"
Last-Modified: Sat, 03 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13732
Expires: Tue, 06 Sep 2022 01:57:47 GMT
Date: Mon, 05 Sep 2022 22:08:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "264CD1A233580F0959B8603AC0474783B9D6ADEECE1903A2E1356BFD4CC923B5"
Last-Modified: Sat, 03 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13775
Expires: Tue, 06 Sep 2022 01:58:30 GMT
Date: Mon, 05 Sep 2022 22:08:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "264CD1A233580F0959B8603AC0474783B9D6ADEECE1903A2E1356BFD4CC923B5"
Last-Modified: Sat, 03 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Tue, 06 Sep 2022 04:08:16 GMT
Date: Mon, 05 Sep 2022 22:08:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "264CD1A233580F0959B8603AC0474783B9D6ADEECE1903A2E1356BFD4CC923B5"
Last-Modified: Sat, 03 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21525
Expires: Tue, 06 Sep 2022 04:07:40 GMT
Date: Mon, 05 Sep 2022 22:08:55 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:55 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 11:41:40 GMT
Expires: Mon, 12 Sep 2022 11:41:39 GMT
Etag: "c2521e16a52cbb5c6905cc67a1cd847c61ff29b4"
Cache-Control: max-age=566563,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74624948382ab51b-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:55 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 11:41:40 GMT
Expires: Mon, 12 Sep 2022 11:41:39 GMT
Etag: "c2521e16a52cbb5c6905cc67a1cd847c61ff29b4"
Cache-Control: max-age=566563,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746249483b61b503-OSL

                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2 HTTP/1.1 
Host: builder.simplepage.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://taichinhcaptoc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         103.27.238.219
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:55 GMT
content-length: 81224
last-modified: Thu, 20 May 2021 08:13:21 GMT
etag: "60a61a21-13d48"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 81224, version 1.0\012- data
Size:   81224
Md5:    69b8affa764513cb01da001898bcd823
Sha1:   7fc185cb988829bc049d273b1a02c18276a944fb
Sha256: 48d9d46f411b69048e67189844d87d4a4ed54b73298efb16c1109fdd5f8cd257
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 02:32:42 GMT
expires: Tue, 05 Sep 2023 02:32:42 GMT
cache-control: public, max-age=31536000
age: 70574
last-modified: Mon, 11 Jul 2022 20:56:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26592, version 1.0\012- data
Size:   26592
Md5:    c2d66029cf6ae68a19e1398fc02feda6
Sha1:   c37e5907e49d2ed5b11f59841a3d16c911da7a5c
Sha256: 3701f4ae604d8fccb4ddca393e076a456aebfb06c1a9d94c1c13089293f55716
                                        
                                            GET /s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:45:44 GMT
expires: Tue, 05 Sep 2023 21:45:44 GMT
cache-control: public, max-age=31536000
age: 1392
last-modified: Mon, 18 Jul 2022 19:31:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 32720, version 1.0\012- data
Size:   32720
Md5:    272ba1c184e00d2f0280ebcba62a1a17
Sha1:   d359beb5700a9216c4d9dc7ad590790ec09cc748
Sha256: 89def7428656f40331c1430ee1dc1846ed1e30d7001707b548f9f816d27264a5
                                        
                                            GET /s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUAnx4RHw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 02:33:41 GMT
expires: Wed, 30 Aug 2023 02:33:41 GMT
cache-control: public, max-age=31536000
age: 588915
last-modified: Mon, 11 Jul 2022 20:56:17 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7564, version 1.0\012- data
Size:   7564
Md5:    440bf9c59647b15abfca7cfbf8fb3c41
Sha1:   0c953fb606ccbb10d8dd825af4467a6bfcdcc319
Sha256: f77a608c83f03b3cfceb17932afbcb2f7fe0a492d90d2fae137406078f83b965
                                        
                                            GET /wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 05 Sep 2022 22:08:55 GMT
vary: Accept-Encoding
last-modified: Fri, 26 Nov 2021 15:23:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
content-encoding: gzip
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
server: VCCloud CDN / 562.221808abdcfe03255ca2be5147582c22
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js>; rel="canonical"
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   33936
Md5:    717a4327c3c30d1d99473280c7cf795e
Sha1:   bc16a8476b3451f3c09afdb592398dfd5ab210e8
Sha256: e84cfb930b9b45d9e571fc5ec58a26fc04ed5b783c00af036ae2ef0e2584493a
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:42:21 GMT
expires: Fri, 01 Sep 2023 06:42:21 GMT
cache-control: public, max-age=31536000
age: 401195
last-modified: Mon, 11 Jul 2022 18:59:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25036, version 1.0\012- data
Size:   25036
Md5:    9dd150fb7229e143e0f71ba1fe8c8f63
Sha1:   664abfc4941054600213dda51a3d6f0d05b3c312
Sha256: cffe139366b3882387dddbd10d59e7d9aa29345793fdbf51ddde809ca6a0bec2
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 00:05:41 GMT
expires: Thu, 31 Aug 2023 00:05:41 GMT
cache-control: public, max-age=31536000
age: 511395
last-modified: Tue, 19 Apr 2022 19:18:28 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data
Size:   20960
Md5:    d312d179276a175029c56c50e9bc9d0b
Sha1:   aa9285dd6183c696fc39ec31c221581e2d4959c1
Sha256: 7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs6VospT4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 20:10:40 GMT
expires: Tue, 05 Sep 2023 20:10:40 GMT
cache-control: public, max-age=31536000
age: 7096
last-modified: Tue, 19 Apr 2022 19:06:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13436, version 1.0\012- data
Size:   13436
Md5:    623da26a648b1ee7e408ab729ec02a9d
Sha1:   8926448c176e30b4be07f8cc3df3321c00c78602
Sha256: c2112123d3e95728befd75dcbd262b213509a77625075eb036f3d7f5fd0295b0
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:37:03 GMT
expires: Wed, 30 Aug 2023 22:37:03 GMT
cache-control: public, max-age=31536000
age: 516713
last-modified: Tue, 19 Apr 2022 19:35:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Size:   21796
Md5:    8074c760fbdd366fc1c33ce702911abf
Sha1:   b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
Sha256: 2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254
                                        
                                            GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s6VospT4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13876
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 11:56:51 GMT
expires: Thu, 31 Aug 2023 11:56:51 GMT
cache-control: public, max-age=31536000
age: 468725
last-modified: Tue, 19 Apr 2022 19:35:06 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13876, version 1.0\012- data
Size:   13876
Md5:    663606d9c7a29ccaf3c0c1a1d9d245d5
Sha1:   81f30e136c9b7c86dbc7b7f5229e8cfaaf155163
Sha256: f39ee9135a2f3b7589198d1ac499c9977a3550afc819083f078bd212d762d021
                                        
                                            GET /s/josefinsans/v25/Qw3aZQNVED7rKGKxtqIqX5EUA3x4RHw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 03:00:54 GMT
expires: Tue, 05 Sep 2023 03:00:54 GMT
cache-control: public, max-age=31536000
age: 68882
last-modified: Mon, 11 Jul 2022 20:58:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 20016, version 1.0\012- data
Size:   20016
Md5:    f5eb52efb0620a29cdfb67f5687db56a
Sha1:   e7c6ca64f076ba57647eeda5eb09435360e7e80a
Sha256: 597d0f0f0a696e05f75b0a395f6f37856ab850c7f897d5b3fd6b2e01bb51d587
                                        
                                            GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCoYb8td.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:18:33 GMT
expires: Wed, 30 Aug 2023 22:18:33 GMT
cache-control: public, max-age=31536000
age: 517823
last-modified: Tue, 19 Apr 2022 19:07:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11760, version 1.0\012- data
Size:   11760
Md5:    f54251ea804647e0203e453359a69fb1
Sha1:   c02db1a2028be922135239168d270579220844a0
Sha256: b7eaf0683081d1ec178eafefff2c407475fe4e69e0d7104e0121f72dcdd1c4d2
                                        
                                            GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:11:04 GMT
expires: Tue, 05 Sep 2023 21:11:04 GMT
cache-control: public, max-age=31536000
age: 3472
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Size:   35904
Md5:    c26b97e7f5bb7a34d190703522d75e16
Sha1:   69d9e5aea0544dbaf9b78c1b65139c03eceece8f
Sha256: 96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
                                        
                                            GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:17:40 GMT
expires: Wed, 30 Aug 2023 22:17:40 GMT
cache-control: public, max-age=31536000
age: 517876
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Size:   15660
Md5:    d7b0b953a50fddaa88089b5b787cf719
Sha1:   2f85bc568b27659a3d6452f58f9fd7678450326d
Sha256: e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
                                        
                                            GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 16:04:44 GMT
expires: Sat, 02 Sep 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 281052
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Size:   15700
Md5:    3d7f7413fca69bff4d231ebdc50aaab0
Sha1:   cb18e7943b6a8a0e3672d7242197c19a226b92e8
Sha256: 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
                                        
                                            GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 23:49:22 GMT
expires: Wed, 30 Aug 2023 23:49:22 GMT
cache-control: public, max-age=31536000
age: 512374
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Size:   11816
Md5:    7fa68490a833a8fa395e5f3bffafc052
Sha1:   1880e3743548106319713b937e7769eee6b1ce21
Sha256: 30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/bdthemes-element-pack/assets/fonts/element-pack.ttf?ht9wen HTTP/1.1 
Host: builder.simplepage.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         103.27.238.219
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 26596
last-modified: Thu, 20 May 2021 08:05:17 GMT
etag: "60a6183d-67e4"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, element-pack\012- data
Size:   26596
Md5:    9760bd5612e361cff2a191cd0e4e7114
Sha1:   119c00d795cded31405a45a468ea4e04237df595
Sha256: f2fcc4c1f1f5db07773979116e1f1cce381543fb75e3914fda06a5318d11e531
                                        
                                            GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 05:35:50 GMT
expires: Thu, 31 Aug 2023 05:35:50 GMT
cache-control: public, max-age=31536000
age: 491586
last-modified: Tue, 19 Apr 2022 18:51:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5696, version 1.0\012- data
Size:   5696
Md5:    85fc330e5d5f44827f71c9c87e20fc08
Sha1:   a12bad7ed537f664c3b4ec0c501b3cce2df55921
Sha256: a443599b665cfcd9a13fc46056624c65f518c06ee47925c4a940c58164b1b799
                                        
                                            GET /s/nunito/v25/XRXV3I6Li01BKofIOuaBXso.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 14:10:40 GMT
expires: Wed, 30 Aug 2023 14:10:40 GMT
cache-control: public, max-age=31536000
age: 547096
last-modified: Mon, 18 Jul 2022 19:32:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10632, version 1.0\012- data
Size:   10632
Md5:    d609bdf9fcfde23841819aa5def35a51
Sha1:   cd78fa2696849f7e2e37bcc9f09ae100a3ec1aaa
Sha256: 0ef9726dbc36b5871efa4b0cfdc43fd1bfed5dd48aeb70dc8210e8cb9bc9247b
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: application/font-woff2
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 76084
last-modified: Tue, 04 Jan 2022 03:07:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
server: VCCloud CDN / 562.82232082f5db1cf6895e4b13a7cabbf3
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2>; rel="canonical"
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Size:   76084
Md5:    f6121be597a72928f54e7ab5b95512a1
Sha1:   b2c74520c3f506efbfefca867918e5ae28bd5222
Sha256: 787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4
                                        
                                            GET /obj/tiktok-web/tiktok/falcon/embed/embed_lib_v1.0.0.css HTTP/1.1 
Host: lf16-tiktok-web.ttwstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.233
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
accept-ranges: bytes
content-md5: zJ2Nyh55L+w+3gi0qlc5pw==
etag: "cc9d8dca1e792fec3ede08b4aa5739a7"
last-modified: Thu, 17 Feb 2022 23:02:31 GMT
x-bdcdn-cache-status: TCP_HIT
x-tos-request-id: 215bbc0ee0ac721c-af54b1d
x-tos-response-time: Thu, 17 Feb 2022 23:56:28 GMT
x-tos-storage-class: Standard
x-tt-trace-host: 01401ce1d14342581293f3a7ae6231b7bc1cc3ca0a65d3c0441ec29e232712bd87cfab9a5ef1dd96cf2e08ab5ed44ccb92268200c62bb84e2f1c0a47d78c991d85b343371de6a118d0f754db4637100f040f59a1134eee2d3f1fc1f39b7cd2de4a1559ac8062f06bb38ff60d2af3710437c6374d3d85257493fd0f02b7cc2bdea4
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1356930
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 1334
x-cache: TCP_HIT from a23-36-76-229.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-44045506) (-)
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=4
timing-allow-origin: *
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
x-check-cacheable: YES
x-akamai-request-id: 54c2624
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3600), with no line terminators
Size:   1334
Md5:    d5ad37c7dac85d00669d3657fd57c23a
Sha1:   46976f32ad2e581d0147b9894bee4a2912b2e8e3
Sha256: 6f51f4fefab1fe64e8efcc4c4b32d7dd9086ddcbf3a8755340e977d86efbda4f
                                        
                                            GET /wp-content/themes/twentytwenty/assets/fonts/inter/Inter-upright-var.woff2 HTTP/1.1 
Host: builder.simplepage.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Referer: https://taichinhcaptoc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         103.27.238.219
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:55 GMT
content-length: 223892
last-modified: Thu, 20 May 2021 08:17:58 GMT
etag: "60a61b36-36a94"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 626x357, components 3\012- data
Size:   32628
Md5:    3b8172c8a1045c6f367e92d44e878aa6
Sha1:   f976ce1aec6c860644c7f147d4e321f4a958ef0e
Sha256: 7ba73c98cdeeee9e9f114468b1acfcac196c41cee308f1185495a95319d32d34
                                        
                                            GET /obj/tiktok-web/tiktok/falcon/embed/embed_lib_v1.0.0.js HTTP/1.1 
Host: lf16-tiktok-web.ttwstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.233
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
accept-ranges: bytes
content-md5: X+Zs+H45nbj84uRKNQ1tvg==
etag: "5fe66cf87e399db8fce2e44a350d6dbe"
last-modified: Thu, 17 Feb 2022 23:02:31 GMT
x-bdcdn-cache-status: TCP_HIT
x-tos-request-id: c3f8e50ee0ac1f79-af54b3b
x-tos-response-time: Thu, 17 Feb 2022 23:56:28 GMT
x-tos-storage-class: Standard
x-tt-trace-host: 0121996623d7f17747880752552f1d35ed9e14a5f4553713f0020f3da7ab93481502329db5a6650890ae6481b879bb0160a5d6ae7b85f6b160deb6e62f2bceacb311255e8c565dcfd52c416e2e8897f6e40dba0c39e6437a2d788dfc5b00e1e1a1cacc12a79b58702907f717d7b390cf15dfeeb095de265659a20d79c8e5722c11
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1272367
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 4538
x-cache: TCP_HIT from a23-36-76-229.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-44045506) (-)
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
timing-allow-origin: *
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
x-check-cacheable: YES
x-akamai-request-id: 54c2626
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12154), with no line terminators
Size:   4538
Md5:    e21436377e0bc2f46d36794a8103d046
Sha1:   a9827a0c6877124a31a21951d80b42806644c986
Sha256: 06445c73e61cd61b48fa6ab547567842eda21e01e5bca2b7a79ef0f32bf70d65
                                        
                                            GET /wp-content/uploads/2020/12/back-1.jpg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 32628
last-modified: Thu, 14 Jul 2022 23:10:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.01237b9c753b3d6de87bfb5ac9ef9afc
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/back-1.jpg>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 626x357, components 3\012- data
Size:   32628
Md5:    3b8172c8a1045c6f367e92d44e878aa6
Sha1:   f976ce1aec6c860644c7f147d4e321f4a958ef0e
Sha256: 7ba73c98cdeeee9e9f114468b1acfcac196c41cee308f1185495a95319d32d34
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "181E89791F939624BB37145BE3065E8FAA728D5261602CECAFF8BE5A96007500"
Last-Modified: Sun, 04 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13891
Expires: Tue, 06 Sep 2022 02:00:28 GMT
Date: Mon, 05 Sep 2022 22:08:57 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/uploads/2020/12/anh-6-1.jpg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 238922
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
x-original-content-length: 293019
etag: W/"PSA-aj-IrLds6Y7FE"
expires: Mon, 30 Aug 2032 03:35:17 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
vary: User-Agent,Save-Data
server: VCCloud CDN / 562.054b57084ee895aeba6c4b28c3b07b50
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/anh-6-1.jpg>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x1000, components 3\012- data
Size:   238922
Md5:    22b2ddb3a63b144eb9288cc9275af577
Sha1:   b6dd869f577b2ce44be70d12bad7d119e20a1926
Sha256: 66a10bb228e76db7907c9b0748098d2bb3c2af2d451468e5b4aba82a53e553ba
                                        
                                            GET /wp-content/uploads/2020/12/banner-1-1.jpg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 338164
last-modified: Sun, 19 Dec 2021 04:21:16 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.9e2fae524e51223630ec2f00e3b8109d
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/banner-1-1.jpg>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 4896x3264, components 3\012- data
Size:   338164
Md5:    f4bef62b248001f72ee5e5b83325c993
Sha1:   d5130059ee92e4949142d0352d12a3dcb1495db9
Sha256: ff8076c23b431a72fd0ae630931e7b46b29f9093624a65cc8819cb9080ed0833
                                        
                                            GET /wp-content/uploads/2020/12/200925-HHP-ARCHITECTURE-CONCEPT-REV06-11-02A-scaled.jpg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 652915
last-modified: Tue, 14 Jun 2022 03:38:59 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.bfd66f8ca77ace2165541cdec10c5532
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/200925-HHP-ARCHITECTURE-CONCEPT-REV06-11-02A-scaled.jpg>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1441, components 3\012- data
Size:   652915
Md5:    24884c98a5be3dc99ffc9602203b0ddb
Sha1:   141efa6a4695109a80144f15cd617e1a4ac28de9
Sha256: 849f39e55519a953e037ff53bb85201ea07b37081b1d41abbacf7566730011ba
                                        
                                            GET /wp-content/uploads/2020/12/icon-1.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 23375
last-modified: Tue, 14 Jun 2022 03:38:59 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.ccee73e10df61b5399b667194d234823
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/icon-1.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   23375
Md5:    835c85c1e5434b29740736300972ca6b
Sha1:   8394f18dd93e3f26d8de0cba15d74c37b9d776db
Sha256: 5a2eb6f4a5abfb45303b5036a2f6105894a2cca15c0379c3633ccda82b020263
                                        
                                            GET /wp-content/uploads/2020/12/icon-2.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 29977
last-modified: Tue, 19 Jul 2022 09:36:18 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.76f1df33e78967ab7f01f88dd7744fed
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/icon-2.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   29977
Md5:    5aef5fc1906cdb4ad68c7be2c546b125
Sha1:   5d98c6d431210e6fdd61749e811b20c6cff808ec
Sha256: c5198e617a83d22f69bb062af1ee30793af4f782b3277baba010bec2d006fc26
                                        
                                            GET /wp-content/cache/min/1/f6682ba222894181f70f658069a6c831.css HTTP/1.1 
Host: builder.simplepage.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://taichinhcaptoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.27.238.219
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:55 GMT
last-modified: Tue, 30 Aug 2022 03:49:07 GMT
vary: Accept-Encoding
etag: W/"630d88b3-f4f3d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1094681
Md5:    34eb3879a8013a891f0f3222c74c2068
Sha1:   8ff397a3fbe81e18385b701929cdad28d70174ff
Sha256: 9fac14996a649ca450da493e9db70df53a53e6bda08ec3f3d0795d7521c79f80
                                        
                                            GET /wp-content/uploads/2020/12/Zalo.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 7328
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
x-original-content-length: 15945
etag: W/"PSA-aj-oxTHjXd4Rp"
expires: Wed, 01 Sep 2032 05:09:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
vary: User-Agent
server: VCCloud CDN / 562.a61cc458833346dc0ab71cd19f5910fe
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/Zalo.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 615 x 615, 8-bit colormap, non-interlaced\012- data
Size:   7328
Md5:    a314c78d7778469ff6ce201179ce8b7a
Sha1:   bf1ad4f560be6e9e518cf0bf1abbce7252c051fb
Sha256: 2481cfd0f73863067b5217a700d155e30c9421e626eec936d2b4db2e3dd70d4f
                                        
                                            GET /wp-content/uploads/2020/12/icon-3.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 21410
last-modified: Tue, 19 Jul 2022 12:24:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.9e4f4bd16bb4496a17cbe27ce15caa99
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/icon-3.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   21410
Md5:    42d786337771ddc6ad8847c26af3ac41
Sha1:   579510eca906418d55f9da411fc5a55fc871b808
Sha256: 2146ce9b5f9b8285b977b67529292db9c82dda2ebb29c4eee67ac8c62cbacea6
                                        
                                            GET /wp-content/uploads/2020/12/icon-4.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 24644
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
x-original-content-length: 24694
etag: W/"PSA-aj-aKvoN7PRM6"
expires: Mon, 30 Aug 2032 03:35:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
vary: User-Agent
server: VCCloud CDN / 562.30b645f8d62981aad8a2572fd15de872
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/icon-4.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   24644
Md5:    68abe837b3d133a7431d15dd25e132c8
Sha1:   9ad68d8c1de8eeba0eadeb0b5be8dcb092e3499c
Sha256: d948b90c33140a2a44b4132782d13f2376d5548127b7d32262cdc143ac4439df
                                        
                                            GET /wp-content/uploads/2020/12/anh-5.jpg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 85220
last-modified: Tue, 19 Jul 2022 12:24:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.39144f0f8a2beb06e98d9c853dbd0fb2
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/anh-5.jpg>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x683, components 3\012- data
Size:   85220
Md5:    d41204d40ecdd079f4ba252a28841d43
Sha1:   10ba09e3596f4af436ffefd2d2b54f1c106473e5
Sha256: 70ac0272fbfe8c5ff84569a613b807d1680d723f7fece0ba604973e6d97bf69e
                                        
                                            GET /wp-content/uploads/2020/12/anh-6.jpg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
content-length: 293019
last-modified: Tue, 28 Jun 2022 10:14:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.f3c661183187be0d7f46d5b4e9b45165
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/12/anh-6.jpg>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x1000, components 3\012- data
Size:   293019
Md5:    1d43a51ee4c96101eca12ee2d9714b0e
Sha1:   cb65316fde4f9fc0b1983ec66b9e73426e036d3e
Sha256: ad1db5070d909d009768d71ad7a8a38fb6c160ad39edf1cd914235792e32e4c7
                                        
                                            POST /api/address HTTP/1.1 
Host: crm.simplepage.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 22
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         45.119.83.79
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Date: Mon, 05 Sep 2022 22:08:56 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.18
X-Powered-By: PHP/7.3.18
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Set-Cookie: sp_session=4g53po9tibpttuolt64612d8njc6p25k; expires=Tue, 06-Sep-2022 06:08:56 GMT; Max-Age=28800; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 3317
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3317), with no line terminators
Size:   3317
Md5:    dab868741dc1efbef32571e02e032b84
Sha1:   0cc1702b16c4eb8e6f66baa2e041ea42eeec7718
Sha256: d4110167f04148a93f3d2be635f548b5f011e63a7e3e96b82ac94ee1b081e29c
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 05 Sep 2022 20:41:12 GMT
expires: Mon, 05 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 5265
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2020/06/cropped-logo-min-blue-1-192x192.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:57 GMT
content-length: 15824
last-modified: Tue, 10 May 2022 13:15:42 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.c6b76e9c9bca4bcc895f07fb256c7ee8
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/06/cropped-logo-min-blue-1-192x192.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   15824
Md5:    9d6079ac0297d377ec89f260cde210d9
Sha1:   0473e0203ea055cf07bdc046e76fa2e714e5883b
Sha256: f2a037fd35f89984dd5f2672015dd7111846b0fa51f300c890be2aaaa3be8832
                                        
                                            GET /wp-content/uploads/2020/06/cropped-logo-min-blue-1-32x32.png HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Sep 2022 22:08:57 GMT
content-length: 1285
last-modified: Sun, 15 May 2022 02:35:37 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
server: VCCloud CDN / 562.eb5d19ba2fff0f6ffd9f2cf82276690a
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/uploads/2020/06/cropped-logo-min-blue-1-32x32.png>; rel="canonical"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1285
Md5:    ca76c641d6444d91535aa61fccb9c4cc
Sha1:   b128da11e4d70d113492ae13fad2fa406d0ba059
Sha256: 9f08c9c8a488edaeeeba60b8f5dcea62b4ca278d3f29c5bd715a2b9f968f02a9
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-142535906-4&cid=429731935.1662415733&jid=1127612719&gjid=136176780&_gid=670249591.1662415733&_u=YEBAAUAAAAAAAC~&z=498194359 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://taichinhcaptoc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://taichinhcaptoc.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 05 Sep 2022 22:08:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:08:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XjbO8y9D7PhQcN0XaBkmhcjzWCMRczO80wxAJa4gUFQZPrS6eb3Z3A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:59 GMT
age: 1201
etag: "b1685694999272feb4d9fc39296418cd95480678"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7152
Md5:    8ce50dfa23e7f34ff68cc6426c2823f7
Sha1:   b1685694999272feb4d9fc39296418cd95480678
Sha256: 4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
                                        
                                            GET /wp-content/plugins/bdthemes-element-pack/assets/images/mask/shape-16.svg HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://builder.simplepage.vn
Connection: keep-alive
Referer: https://builder.simplepage.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Mon, 05 Sep 2022 22:08:56 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
server: VCCloud CDN / 562.b4d8bf0879ee6cc07bc84b31995ae9b6
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-content/plugins/bdthemes-element-pack/assets/images/mask/shape-16.svg>; rel="canonical"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: taichinhcaptoc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         45.119.212.150
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:53 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.3.29
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css?family=Josefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Condensed%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CBarlow%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=vietnamese&ver=5.4.1&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://taichinhcaptoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 22:08:54 GMT
date: Mon, 05 Sep 2022 22:08:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/cache/min/1/e94d8fa2e3df27b781880b1a05ca53cb.js HTTP/1.1 
Host: builder.simplepage.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://taichinhcaptoc.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.27.238.219
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Mon, 05 Sep 2022 22:08:55 GMT
last-modified: Mon, 01 Aug 2022 01:50:51 GMT
vary: Accept-Encoding
etag: W/"62e7317b-da262"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: simpleweb.cdn.vccloud.vn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://taichinhcaptoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         42.112.37.35
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 05 Sep 2022 22:08:55 GMT
vary: Accept-Encoding
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, OPTIONS
content-encoding: gzip
timing-allow-origin: *
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
x-content-type-options: nosniff
server: VCCloud CDN / 562.db359b18a800fc85afbee1b4f7a92531
x-xss-protection: 1; mode=block
x-cache: HIT from VCCloud CDN
strict-transport-security: max-age=31536000; includeSubdomains; preload
link: <https://builder.simplepage.vn/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp>; rel="canonical"
X-Firefox-Spdy: h2


--- Additional Info ---