r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2558
Expires: Thu, 26 Jan 2023 11:04:47 GMT
Date: Thu, 26 Jan 2023 10:22:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3367
Expires: Thu, 26 Jan 2023 11:18:16 GMT
Date: Thu, 26 Jan 2023 10:22:09 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 09:35:16 GMT
content-type: application/json
age: 2813
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17552
Expires: Thu, 26 Jan 2023 15:14:41 GMT
Date: Thu, 26 Jan 2023 10:22:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sEf83jNXApjZNVdqI5+UriKpGHwPwTKjQWw9Xd8k2O3IiFk+oCCqJ3oll7G9bbz6Z5ONyXOhk4E=
x-amz-request-id: H61Y525ACH0NY6D1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 09:48:55 GMT
age: 1994
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 10:22:09 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/11/svg/1f48e.svg
192.0.77.48200 OK 301 B URL HTTP/2 s.w.org/images/core/emoji/11/svg/1f48e.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (301), with no line terminators
Hash 5a8d9af8b5b3922097b2cccfce844630
6ac2f699a69f5be83bd5fc7e80d57c979e35d501
6e7a1458d222e42798409e0e827860aa1cdff49188b5fd8bb249eae14d38e532
GET /images/core/emoji/11/svg/1f48e.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 10:22:09 GMT
content-type: image/svg+xml
content-length: 301
last-modified: Fri, 08 Jun 2018 13:09:43 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
napthefreefire.com.vn/
42.112.25.89200 OK 24 kB IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21428)
Hash b6c5e992ca63435be051d75a6b4621ff
fd1736c2eb73523dc1f0e72da704beea0d944880
00cc05d085b58a3526eaff889786526addf210b65279ed593fe25adf2aad7bb8
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: text/html
Last-Modified: Fri, 19 Mar 2021 05:24:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 24547
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/Content/css/bootstrap-multiselect.css
42.112.25.89200 OK 368 B URL HTTP/1.1 napthefreefire.com.vn/Content/css/bootstrap-multiselect.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (1149), with CRLF, LF line terminators
Hash c0767f599fd40bac4d211184a01667b7
6be4d340eb54ff09c4d6e542ee203bcb863707a1
3f09ff650c4172edfcb798e4b00b036a3f45f358b6408bb1888249927ea143e0
GET /Content/css/bootstrap-multiselect.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 368
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/Content/css/bootstrap-select.minf97a.css?v=3/25/2020%205:56:25%20AM
42.112.25.89200 OK 1.6 kB URL HTTP/1.1 napthefreefire.com.vn/Content/css/bootstrap-select.minf97a.css?v=3/25/2020%205:56:25%20AM
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (6344), with CRLF, LF line terminators
Hash 21cb03ecaadfc6e7f138934f93f2838c
235805a738967cee164f46ad471a7e3ec7d49ec3
272ad4451d367108521884b2e24c1495036657d6900395da74d0082db001f543
GET /Content/css/bootstrap-select.minf97a.css?v=3/25/2020%205:56:25%20AM HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1590
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 09:41:40 GMT
age: 2429
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
napthefreefire.com.vn/Content/css/owl.carousel.css
42.112.25.89200 OK 1.6 kB URL HTTP/1.1 napthefreefire.com.vn/Content/css/owl.carousel.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with CRLF, LF line terminators
Hash 83fca8b46c2a57e7278ee9204bf05fbf
3d48e19ee73b2fc7e219538e54f1ca74156a0e87
aa42e559711e9fbd8ec5362d01e2e2291948e439a1664e000babc07abe81d0b9
GET /Content/css/owl.carousel.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1594
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/css/styleLogin.css
42.112.25.89200 OK 3.0 kB URL HTTP/1.1 napthefreefire.com.vn/Content/css/styleLogin.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with CRLF, LF line terminators
Hash d1ec9cfb489b39d386ad5b7a73f83166
ab3c687c44e11e75c39c60b7ca00ad39d1d0facd
00bbaadb94e9342d51a0cff3381a746448551751b6950d7db763ecfbbd3beedd
GET /Content/css/styleLogin.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2957
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css
42.112.25.89200 OK 3.0 kB URL HTTP/1.1 napthefreefire.com.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (6454), with CR line terminators
Hash cba2aa4dc459bd02ef0ccb8b17944bfb
e15d33f0054f7113045a471d937e0015a09b4d12
e688c0b0db33efd08a7982717a9e67ab0c0675d9387f83f1148e9205aa98c843
GET /cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: text/css
Last-Modified: Mon, 04 May 2020 16:17:02 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 3028
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js
42.112.25.89200 OK 2.2 kB URL HTTP/1.1 napthefreefire.com.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (5215)
Hash e91730ee9b750d4f100887687cd51277
824a793a2ba3a35932b0380aed14d2c4b9f9448f
6a76f233e804610712a8cbc6db72170ab7e6f4910ddb8feac19833478b6bc642
Analyzer Verdict Alert fortinet Phishing
GET /cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: application/javascript
Last-Modified: Mon, 04 May 2020 16:17:02 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2183
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2723
Expires: Thu, 26 Jan 2023 11:07:32 GMT
Date: Thu, 26 Jan 2023 10:22:09 GMT
Connection: keep-alive
napthefreefire.com.vn/cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css
42.112.25.89200 OK 2.2 kB URL HTTP/1.1 napthefreefire.com.vn/cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
Hash bc02a34f7becd426e13a6678371555b5
0f3b1ceab63d99a2ec0a08d491934350289b81de
016637519429c149977962220695838e8b3d6e64b8a7a428eaed7fed179d2950
GET /cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: text/css
Last-Modified: Sun, 18 Oct 2020 10:15:10 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2173
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
fonts.googleapis.com/css?family=Open+Sans:400,600,700,300
142.250.74.138200 OK 726 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:400,600,700,300
IP 142.250.74.138:0
Hash f695a50aad9a7f635d32fb725051cdf9
0528fac2131b6367b6ffde48dd421a0ea945c504
8deb5e5efaca71e5ef829c4fa214913332aba71be8d68fa2c291789f92c9ea18
GET /css?family=Open+Sans:400,600,700,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 26 Jan 2023 10:22:10 GMT
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
napthefreefire.com.vn/unpkg.com/sweetalert%402.1.2/dist/sweetalert.min.js
42.112.25.89200 OK 12 kB URL HTTP/1.1 napthefreefire.com.vn/unpkg.com/sweetalert%402.1.2/dist/sweetalert.min.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (40808), with no line terminators
Hash a4a40e9acf2fbf0fab3e4ae3e7ab0d6a
885fdb4acd7fdb551386458d449349a76f2b99e9
1e9ace303b8f025c858245faca5874aa903710aa389bb8576bfad3ec8298b8d3
Analyzer Verdict Alert fortinet Phishing
GET /unpkg.com/sweetalert%402.1.2/dist/sweetalert.min.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: application/javascript
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 11912
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/jsConfig.js
42.112.25.89200 OK 175 B URL HTTP/1.1 napthefreefire.com.vn/jsConfig.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash df3efa9b7a533892f5115cab84730e98
6b1c1af46584c4d92644cebefb3d53822d62d649
72283fda92069eb7c0c1fc998ab04ae8dc4e2640c80ca4626a1be642fbc2908b
Analyzer Verdict Alert fortinet Phishing
GET /jsConfig.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 175
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/js/jquery-1.9.1.min.js
42.112.25.89200 OK 33 kB URL HTTP/1.1 napthefreefire.com.vn/Content/js/jquery-1.9.1.min.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32089)
Hash c98753276084bddd5a233a70908fb816
506be62cad0b1471a8b4ed220e88117a3197db5b
229c711598680ff21bb079213684c76b9a1618ab43a0aeec4c61d4139d2a8183
Analyzer Verdict Alert fortinet Phishing
GET /Content/js/jquery-1.9.1.min.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32940
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/Scripts/utils.js
42.112.25.89200 OK 2.8 kB URL HTTP/1.1 napthefreefire.com.vn/Scripts/utils.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (321), with CRLF, LF line terminators
Hash 6bf4bbcc1c545ddf16571622b3fdabea
642e44a8274bc0cd08a1386a1ac49b3498f1f4fd
2fb007f3e3805a317372196ac2068219cb6caa986284e92b65fb0474001bdd38
Analyzer Verdict Alert fortinet Phishing
GET /Scripts/utils.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2772
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/Scripts/web.js
42.112.25.89200 OK 1.7 kB URL HTTP/1.1 napthefreefire.com.vn/Scripts/web.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash 4ea9168c70ec4d58170e7e6b025d5dd3
f0fea34508bb537461007ec49c6421c942389b33
da709cabe7401683932ec80c20971247b4cf03e1e1f649c079733552e826a52c
Analyzer Verdict Alert fortinet Phishing
GET /Scripts/web.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:09 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1705
Date: Thu, 26 Jan 2023 10:22:09 GMT
Server: LiteSpeed
napthefreefire.com.vn/Scripts/process/Payment.js
42.112.25.89200 OK 2.3 kB URL HTTP/1.1 napthefreefire.com.vn/Scripts/process/Payment.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash 4d1e1c62ac9c4cb6c243660e797e4ddb
eb790a9ee793c6cfacf69dca54faacbb051b151e
d489361891d6daccaf8c77b9bdc97a07a9e21efa167f01efa71b0bc4cc2abfa8
Analyzer Verdict Alert fortinet Phishing
GET /Scripts/process/Payment.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2332
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
push.services.mozilla.com/
35.162.79.115101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.79.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8F71Elg+Mc1g+MdizPhnWA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: myudKZWZndM8u4SAhimfKWzb/ls=
napthefreefire.com.vn/Scripts/common.js
42.112.25.89200 OK 2.7 kB URL HTTP/1.1 napthefreefire.com.vn/Scripts/common.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (350), with CRLF, LF line terminators
Hash 6c7c1a3a9bc0d0a3ce7067ce6afcf5db
ade48fc8af0e655f9d2d0b1057170f6ab5065ddf
8a586929361662525ae67d302c3fa42a520c4de57447cb848b30e788d7717171
Analyzer Verdict Alert fortinet Phishing
GET /Scripts/common.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2718
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Scripts/jsLogin.js
42.112.25.89200 OK 3.9 kB URL HTTP/1.1 napthefreefire.com.vn/Scripts/jsLogin.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (371), with CRLF, LF line terminators
Hash 8e9cc50e55d99361859a79611553ac91
b12460b25935e036df7156f2e39557ee74652776
631239a414206ffd702f7634ec11425f5bb4a2aca779ff5cf1b2fc6bf11467b7
Analyzer Verdict Alert fortinet Phishing
GET /Scripts/jsLogin.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 3933
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/js/ui.js
42.112.25.89200 OK 202 B URL HTTP/1.1 napthefreefire.com.vn/Content/js/ui.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash c362e002da1123e27e4a771fa209d0e9
09a194a7250cb82385a47036dedc45f26c680d63
929ccc879b43b7a40631e0698577f617a866ae2890c3f51151a0271c3bbff762
Analyzer Verdict Alert fortinet Phishing
GET /Content/js/ui.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 202
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/css/popup/conggame.css
42.112.25.89200 OK 533 B URL HTTP/1.1 napthefreefire.com.vn/Content/css/popup/conggame.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with CRLF, LF line terminators
Hash cecc0d769c0512710a194e5bc9e1341b
66698ea885d38c180ad1194096df4f818c5aa616
c3d82e70513435a6d9d48a631b70fe0e38c2ef93e269e1cdd9b12497a16622ab
GET /Content/css/popup/conggame.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 533
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
42.112.25.89200 OK 5.7 kB URL HTTP/1.1 napthefreefire.com.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type assembler source, ASCII text, with very long lines (441)
Hash ce8cb1ca5272669705c674591908f029
b0c8c98ebfff537185cbc7ba808ff3288d99a250
55dc650e639bb40107b7c4c3a3f21ff94b642459ffc3e2f1cdc38c1407c9cb75
Analyzer Verdict Alert fortinet Phishing
GET /Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 5665
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/js/bootstrap-select.js
42.112.25.89200 OK 15 kB URL HTTP/1.1 napthefreefire.com.vn/Content/js/bootstrap-select.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text
Hash a943d62b4ab9c5ed21e81a523934ef62
2c7b853c6a88a2724bd981546da9c488e4e4580b
5f1498f52848cdfded15417f4fd140212207851db4673c3ce24f725a7f8f0a90
Analyzer Verdict Alert fortinet Phishing
GET /Content/js/bootstrap-select.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 15404
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/css/gp1vM8uX1o4d560.css?v=3484
42.112.25.89200 OK 474 B URL HTTP/1.1 napthefreefire.com.vn/comment/css/gp1vM8uX1o4d560.css?v=3484
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (399), with CRLF line terminators
Hash 5c071fbc84e64023e758d694c0141802
5ebef5816f4cc7a598fadcf5b3a14321472bf3cf
dc2d42312243499b50e13c0021976558fff7325a63aaab16279d4c9b10910030
GET /comment/css/gp1vM8uX1o4d560.css?v=3484 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:09:54 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 474
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/css/rDJlsbuFhhc2a66.css?v=6166
42.112.25.89200 OK 683 B URL HTTP/1.1 napthefreefire.com.vn/comment/css/rDJlsbuFhhc2a66.css?v=6166
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with CRLF line terminators
Hash 2b3a2989507d9f0f1f17a7661ad829ad
e9858f3845aabc01d0c7725b7d569d4881b134a0
136249b826456be7d32a77b8f6a6953c1e47db114bd8793e2d7a1a8750f03515
GET /comment/css/rDJlsbuFhhc2a66.css?v=6166 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:10:30 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 683
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/css/bootstrap.min.css
42.112.25.89200 OK 22 kB URL HTTP/1.1 napthefreefire.com.vn/Content/css/bootstrap.min.css
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (580)
Hash e1f566feee0060c36bed68d8f0c8aacb
e39471d197e5321226c578084ab82f0d991988d9
4111e6af40833672ddcbec866d21796aed6fd3eefa71eda2acc3025c0d74dff0
GET /Content/css/bootstrap.min.css HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 22278
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/css/d6SccDA_fE8e9b7.css?v=4987
42.112.25.89200 OK 596 B URL HTTP/1.1 napthefreefire.com.vn/comment/css/d6SccDA_fE8e9b7.css?v=4987
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (727), with CRLF line terminators
Hash 4eb125a4aa72b89389599251b5c14513
07f2d72f92197a3eeae0f93049abdc58114cd9f1
e2c2bbcaa1ae7918c41fa8e5c9fc7289ed26af6db620fd8218f4a813b789fa85
GET /comment/css/d6SccDA_fE8e9b7.css?v=4987 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:11:52 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 596
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 04cb7fc8b1e2a65a0b198cc53eb5e5cd
6d04611612d81108e856467f0e4b0479cbb37d33
1c745d8ace7ea6f8e5d7da5e9c067b7b3427ce9c5a5e2c5c35d1c345266de518
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/comment/css/SHSK2BjfwgT9996.css?v=2560
42.112.25.89200 OK 1.8 kB URL HTTP/1.1 napthefreefire.com.vn/comment/css/SHSK2BjfwgT9996.css?v=2560
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (1267), with CRLF line terminators
Hash 2aa3121f581c409d571672f07e272587
294de87622f0d8a0349cd055fb371dcc32866693
6e1651d9e3b05768a1a85f0b2f12949a6674ed1b14b146b7de0fe44cd0509b6e
GET /comment/css/SHSK2BjfwgT9996.css?v=2560 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:12:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1775
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/comment/css/BfTjxijlArm1f5b.css?v=4539
42.112.25.89200 OK 1.5 kB URL HTTP/1.1 napthefreefire.com.vn/comment/css/BfTjxijlArm1f5b.css?v=4539
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (1765), with CRLF line terminators
Hash 30ec592799651e80497727a201530abe
3e4715d4e573fb22070f051921e76f07011eb1b2
e18c9a1839eb61bb3dc0bc958f4bf014f4d3b0faa71e673abf7c5100f46bb6c8
GET /comment/css/BfTjxijlArm1f5b.css?v=4539 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:12:40 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1450
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
age: 972
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:13:04 GMT
expires: Fri, 26 Jan 2024 03:13:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 25746
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2
142.250.74.163200 OK 6.9 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 6936, version 1.0\012- data
Hash 3f8b2aa43c439ca2c8930c198320c231
e616fd3ee33ea9971dd71c7d667c5b4e146e8e95
1c9cc76fd52238330f0aabac35acd2cac0f04b7890862e61e013ebbb8513fb5b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:05:34 GMT
expires: Tue, 23 Jan 2024 18:05:34 GMT
cache-control: public, max-age=31536000
age: 231396
last-modified: Wed, 11 May 2022 19:25:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 12:46:12 GMT
expires: Mon, 22 Jan 2024 12:46:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 336958
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 09:58:09 GMT
expires: Mon, 22 Jan 2024 09:58:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
age: 347041
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
142.250.74.163200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 05:06:00 GMT
expires: Fri, 26 Jan 2024 05:06:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
age: 18970
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napthefreefire.com.vn/comment/css/QSCrUkg0svy63ba.css?v=7549
42.112.25.89200 OK 6.1 kB URL HTTP/1.1 napthefreefire.com.vn/comment/css/QSCrUkg0svy63ba.css?v=7549
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (11622), with CRLF line terminators
Hash 08634681478fc4272073bd5ecb199664
000e96cebfd01dac6a0923c9ab4fab74774d93a8
b54ebbb9f3ee2e4d87435b7591249b4efce3a4cf187036ff29e6e5226f10101e
GET /comment/css/QSCrUkg0svy63ba.css?v=7549 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:13:02 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 6141
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 14:07:32 GMT
expires: Thu, 25 Jan 2024 14:07:32 GMT
cache-control: public, max-age=31536000
age: 72878
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 22:24:54 GMT
expires: Sun, 21 Jan 2024 22:24:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
age: 388636
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napthefreefire.com.vn/comment/css/_yz1uahXI_7d496.css?v=9898
42.112.25.89200 OK 15 kB URL HTTP/1.1 napthefreefire.com.vn/comment/css/_yz1uahXI_7d496.css?v=9898
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (10983), with CRLF line terminators
Hash ae6b0b011e011203420be8d634011f84
46551ae4aef3212aad574632873ab04c6598db6e
f24470facb08c4cd32664c42bb825263b8d35f3c0e10973661e97ad567f53583
GET /comment/css/_yz1uahXI_7d496.css?v=9898 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:11:32 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 15382
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/comment/css/jP1ajhsYKVnaf51.css?v=7934
42.112.25.89200 OK 471 B URL HTTP/1.1 napthefreefire.com.vn/comment/css/jP1ajhsYKVnaf51.css?v=7934
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (948), with CRLF line terminators
Hash a2fa4261f87799f1b61df4c83f379591
7d2f3f2139f8a77b316440d0cd1644dd65aa2703
927ea07e90416216a570e98ae062407cf82e3727c7b3c6c90d51d05b65ed1ab5
GET /comment/css/jP1ajhsYKVnaf51.css?v=7934 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: text/css
Last-Modified: Fri, 25 Sep 2020 03:13:20 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 471
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
142.250.74.163200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5560, version 1.0\012- data
Hash ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 13:49:19 GMT
expires: Thu, 25 Jan 2024 13:49:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
age: 73971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
142.250.74.163200 OK 5.5 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5548, version 1.0\012- data
Hash cdaab83619fcacd4027a77c99dd51e69
9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://napthefreefire.com.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 18:38:37 GMT
expires: Sat, 20 Jan 2024 18:38:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 488613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 04cb7fc8b1e2a65a0b198cc53eb5e5cd
6d04611612d81108e856467f0e4b0479cbb37d33
1c745d8ace7ea6f8e5d7da5e9c067b7b3427ce9c5a5e2c5c35d1c345266de518
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
42.112.25.89200 OK 654 B URL HTTP/1.1 napthefreefire.com.vn/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type HTML document, ASCII text, with very long lines (1238)
Hash 62ec6832201f09d87406597dfd7bb128
36e5d52aca57485ebdc0eb142a94d5976e74d600
c4477a8da2660757be7cbded5526bfe3f3710824baf31b111fe93e274ac56cbf
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Oct 2020 13:37:18 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 654
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
www.youtube.com/embed/fn2I9l4Jf5s
142.250.74.46200 OK 77 kB URL HTTP/2 www.youtube.com/embed/fn2I9l4Jf5s
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58575)
Hash cf5498975ef3e884378813ff96a33541
b648617297cfe1bd84eab9316ac8ee1c9db7f0c3
b349ee54920ee6cd116153090094b215d46b7e000b9437f708f5ce9436598bbb
GET /embed/fn2I9l4Jf5s HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 26 Jan 2023 10:22:10 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=iERI2ZwLyLE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TWprd05ESTJOak0wTnpFMU5UUTFPQT09ENKoyZ4GGNKoyZ4G; Domain=.youtube.com; Expires=Tue, 25-Jul-2023 10:22:10 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=hAkC8ih94Lk; Domain=.youtube.com; Expires=Tue, 25-Jul-2023 10:22:10 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+544; expires=Sat, 25-Jan-2025 10:22:10 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napthefreefire.com.vn/Content/js/bootstrap.min.js
42.112.25.89200 OK 9.4 kB URL HTTP/1.1 napthefreefire.com.vn/Content/js/bootstrap.min.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32405), with CRLF, LF line terminators
Hash 1446a2821095bf048e3d3844e2d97c2e
36b6abdebea53ae4035077f945cc1b6599ab50ff
0efb49f715bd2ac0776039e0e91932bfdb02471d11832665524b827d6c57279b
Analyzer Verdict Alert fortinet Phishing
GET /Content/js/bootstrap.min.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 9440
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/js/owl.carousel.js
42.112.25.89200 OK 9.9 kB URL HTTP/1.1 napthefreefire.com.vn/Content/js/owl.carousel.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash eda294312aae0b65c2042bde8806de8f
1adebaeba385e13a94e3684a3fcf358a2cc2880e
fd7959d430e46c35be163eb921b8f1674ddba58d4077cb483b5b11251ee1d167
Analyzer Verdict Alert fortinet Phishing
GET /Content/js/owl.carousel.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 9933
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/scontent-hkt1-1.xx.fbcdn.net/v/t1.0-9/119075522_744866042896073_3302048271943610858_o0eb9.jpg?_nc_cat=105&_nc_sid=dd9801&_nc_ohc=Nk5T273gcl8AX9SvRGJ&_nc_ht=scontent-hkt1-1.xx&oh=420ef07bcf4f7c2a7090d461be3974f6&oe=5F8784E8
42.112.25.89200 OK 21 B URL HTTP/1.1 napthefreefire.com.vn/scontent-hkt1-1.xx.fbcdn.net/v/t1.0-9/119075522_744866042896073_3302048271943610858_o0eb9.jpg?_nc_cat=105&_nc_sid=dd9801&_nc_ohc=Nk5T273gcl8AX9SvRGJ&_nc_ht=scontent-hkt1-1.xx&oh=420ef07bcf4f7c2a7090d461be3974f6&oe=5F8784E8
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /scontent-hkt1-1.xx.fbcdn.net/v/t1.0-9/119075522_744866042896073_3302048271943610858_o0eb9.jpg?_nc_cat=105&_nc_sid=dd9801&_nc_ohc=Nk5T273gcl8AX9SvRGJ&_nc_ht=scontent-hkt1-1.xx&oh=420ef07bcf4f7c2a7090d461be3974f6&oe=5F8784E8 HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:10 GMT
Content-Type: image/jpeg
Last-Modified: Sun, 18 Oct 2020 10:15:58 GMT
Accept-Ranges: bytes
Content-Length: 21
Date: Thu, 26 Jan 2023 10:22:10 GMT
Server: LiteSpeed
napthefreefire.com.vn/www.upsieutoc.com/images/2020/08/02/logo_freefire489f9225e3281e20.png
42.112.25.89200 OK 3.9 kB URL HTTP/1.1 napthefreefire.com.vn/www.upsieutoc.com/images/2020/08/02/logo_freefire489f9225e3281e20.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 163 x 45, 8-bit gray+alpha, non-interlaced\012- data
Hash f4d7102fd4c56c6d130ebf2fdcd3d025
cb6094228331c50f8d9ad5bc8b610e579d402a81
95a4593cff5302376cbe37dbcb529a826a5ab6d8ea2f93786ea69b6bd5ce8371
GET /www.upsieutoc.com/images/2020/08/02/logo_freefire489f9225e3281e20.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/png
Last-Modified: Sat, 01 Aug 2020 17:25:44 GMT
Accept-Ranges: bytes
Content-Length: 3927
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/gifimage.net/wp-content/uploads/2018/04/loading-gif-image-download-5.gif
42.112.25.89200 OK 5.3 kB URL HTTP/1.1 napthefreefire.com.vn/gifimage.net/wp-content/uploads/2018/04/loading-gif-image-download-5.gif
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type GIF image data, version 89a, 400 x 200\012- data
Hash 451d2ac47e421443e9aa726a19a5004b
7b8cd4494e5a586caa1992a1b222a5f56b51ee18
49ddfb5cddbac4c36c75b1e3a7bd72f3372707607f3239e7d750605fd24101fc
GET /gifimage.net/wp-content/uploads/2018/04/loading-gif-image-download-5.gif HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/gif
Last-Modified: Tue, 23 Jun 2020 03:48:26 GMT
Accept-Ranges: bytes
Content-Length: 5289
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/1.jpg
42.112.25.89200 OK 3.6 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/1.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c70af94a4c47f1d2e5cc3d800c551fae
88555d7060ec7b14d3c8d08c4717db11a40bc05b
b57c5dffb48da6de8d68c76181736ed96d0990a896baa908c514401930852603
GET /comment/img/1.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3561
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11634
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 10:22:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11634
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 10:22:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11634
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 10:22:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11634
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 10:22:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11634
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 10:22:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c331b0423afe4c6888533296b5f275bc
766aba1f8bb596a068f4e611161fa54616f506ed
0551882e8ba5962ca2c3a8634574e75f11321d46f9c901430614a9c73eaeae12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 1c0f08ae-9b11-4c41-a6e9-819343332f34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF-fElWIAMFg8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf838f-6cf92e9d28ec0c9727e7419a;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A9cyJReV84QegjGfuOcBlZ-T6uefiGXXKnIBXIcn3a1x0kRYQ6XI3A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:13:57 GMT
age: 11294
etag: "766aba1f8bb596a068f4e611161fa54616f506ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cfe699b31f96add9f1439af1ff1191eb
f77a833a69b69eef4a39e404c102f624e96b52c0
44312979ac13221e5c3328ad590f0f3dc7da00380c07c433382cd81c47b717f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: e7d931f7-d086-42b9-a1f3-c8253b82eba6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSY_OHw7IAMFj6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d52e-4fd95c5f5a64861720a1ee60;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2yzeIjHl8sUO9s5n2sZfN6DSWOVDVQl-xdSrNmHu-yWXj_7VJJk5qA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:39:30 GMT
age: 9761
etag: "f77a833a69b69eef4a39e404c102f624e96b52c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: df7df0ae-d70e-4b80-9483-2ecd5c8ee4a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqvPEXMoAMF5Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57fa-04193e0514c1c1e85d9d023b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fznabMNG3n9Uo4L1jrrewtL_hJnQv8oR2qggeZtruvOLVzpUpcs7Tw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 17:10:40 GMT
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
age: 61891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hUp-Y119Uly8FlGe1Wr8b-_pNoyg_iV-KaNaC7Fo44iN_sDU3BnCbA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:35:29 GMT
age: 10002
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 45209
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 44983
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
napthefreefire.com.vn/comment/img/2.jpg
42.112.25.89200 OK 3.6 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/2.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 4051b0732a309739be876e17d2739def
871f244e5a89476a96ad4abe17bf65576c395741
94ed1c97de0f638a90165bb7f90892f6f263e1775065ef277ff05d30708a3ef2
GET /comment/img/2.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3577
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/3.jpg
42.112.25.89200 OK 3.8 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/3.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 8868e985cabd1ecf948e66348bd1a86f
716ee1544d79bff187a14aab743e27c02cf09a86
12fd2db941aed5e2b37a81ad0aebb5d5290b19da92ed8402c614c81054598a85
GET /comment/img/3.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3778
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/4.jpg
42.112.25.89200 OK 3.3 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/4.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash d6af4ebbf5a1c9ad549635a067bb68db
fcddce7b445bdd39051629eec6d77c3f7f7c8625
3bac020ece6f18f5268fa58e263970a1ee479fc864daa55431ca0cbfe93a18d4
GET /comment/img/4.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3329
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/5.jpg
42.112.25.89200 OK 1.4 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/5.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 9fb7abbd2f399e84fa3c7a17910d97b4
b6fedde8b4e93e3d989254f0c3ca623188c57d65
406e063444569cd3835fc94eb26234dc9084d810bfae567e771f40bccedf1a23
GET /comment/img/5.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 1375
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/6.jpg
42.112.25.89200 OK 2.6 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/6.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 97x96, components 3\012- data
Hash a2d4e5ea17b628bf59119878aab3b532
d81a6f84eee6e8c65b857f3075e9e1f343885061
12433579ef574ba66fac855863412c4cf2a8b72cfe7439898edc7eca34506c32
GET /comment/img/6.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 2629
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f5748fe61285ac561342d29f791caa95
590c2a121202a33abc837dd6210aaf0c8f54d3fd
69003e7446655b4935fb38652b1552e4763eab5bede555e53eba97ee304d61e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash dda854cb90cda40c6a6dbc19eb186eca
0d23775c5af739aac0a41844d09c704ab850a1bd
7c432d209fcf9dde0ca59bf93f76526d98aab474041f19b2d6fe79942ed3a7e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:12:52 GMT
expires: Thu, 26 Jan 2023 10:27:52 GMT
cache-control: public, max-age=900
age: 559
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
216.58.211.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 26 Jan 2023 10:22:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f5748fe61285ac561342d29f791caa95
590c2a121202a33abc837dd6210aaf0c8f54d3fd
69003e7446655b4935fb38652b1552e4763eab5bede555e53eba97ee304d61e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash dda854cb90cda40c6a6dbc19eb186eca
0d23775c5af739aac0a41844d09c704ab850a1bd
7c432d209fcf9dde0ca59bf93f76526d98aab474041f19b2d6fe79942ed3a7e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/comment/img/7.jpg
42.112.25.89200 OK 2.8 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/7.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash dd299d047b998d6b6533520bb80f0176
10c21564abeeec48f94ea4107e7edf2bce66cb62
e3d7baa95e7a163abe5494e4b8aa559c6c317ce08558016ab1f368f6561d28a3
GET /comment/img/7.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 2848
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 26 Jan 2023 10:22:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cc2b9a26cf016c0cf9e73531f6004051
408990c14ea8af4c979a277da755c89771672356
36e955bd017c3febc7623ad388bb260757294ca612b94ae5417de6cc04073a82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/x4UJj8gT6CtT5_PZSB2sMkWT7oT3ONYvYheI_Vl_kb0.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/x4UJj8gT6CtT5_PZSB2sMkWT7oT3ONYvYheI_Vl_kb0.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36171)
Hash a13a76dd17af226d4a24bd16ef702377
c364171cd0f66eb4a1a8dde04e1e083154d81dbd
1dd3352cbdb7561b142954006a2bb94008486c22760c3d5ebb1b6fffeb325173
GET /js/th/x4UJj8gT6CtT5_PZSB2sMkWT7oT3ONYvYheI_Vl_kb0.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14250
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 18:38:28 GMT
expires: Sat, 20 Jan 2024 18:38:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 488623
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 53887a737562cbba09588cd602fe88b4
6bfe1056bb8f88d61008e70a64d262b1edfcd4b2
855bfdbc8d27e05ab6977175fd2a8f894d5b9cd9d0d8434512d77824c8c2ebf5
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 26 Jan 2023 10:22:11 GMT
server: ESF
cache-control: private
content-length: 30942
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
napthefreefire.com.vn/comment/img/8.jpg
42.112.25.89200 OK 3.7 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/8.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash d74bf0bb35db1ae5952ec6719b65952c
16f68ad7822b30e15fc37307fb2bd1a7e5ec9bb0
c4751fe20902ee03deca954b08b37fd53641f263edee22222a0aebcb0753d290
GET /comment/img/8.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 03:00:16 GMT
Accept-Ranges: bytes
Content-Length: 3696
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 215f16014778a0ef8fe0ae045469592c
8eb2bb842d2cbe49b94309d7297309a61c837ccb
df25507f0dd6bcb47ee79846962171e9a0660f6a356f941b8cb7a5cd3bdf2762
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/fn2I9l4Jf5s/sddefault.webp
142.250.74.150200 OK 46 kB URL HTTP/2 i.ytimg.com/vi_webp/fn2I9l4Jf5s/sddefault.webp
IP 142.250.74.150:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 21c69ac7703368e440b7d858736d8865
bfcdb8f16c93b4bb46a97b485182b3b2f40194a7
b4e1ab5fe8651b8e6c02a2e13ba83821ee7fe63029eadd0d6b64a259e8d33d5c
GET /vi_webp/fn2I9l4Jf5s/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 46196
date: Thu, 26 Jan 2023 10:22:11 GMT
expires: Thu, 26 Jan 2023 12:22:11 GMT
cache-control: public, max-age=7200
etag: "1603444200"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
napthefreefire.com.vn/comment/img/9.jpg
42.112.25.89200 OK 4.4 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/9.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash a9e63212cd565710a9cce65a705b0d4d
e4764b909b023cf11491e7745f7dd6a873b645d7
b6c627b1529ce997e6b062c3810a780d9167fb906650997524abe0fecb41488d
GET /comment/img/9.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 4415
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
42.112.25.89200 OK 76 kB URL HTTP/1.1 napthefreefire.com.vn/connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type ASCII text, with very long lines (18800)
Hash c7af79202d9e0eb8f6fc1d79ac3ed48b
0c08d21a36698ca6a4e6ac2f671fc49585976291
464f471b85befc6941269488b892fb4288ada1c9440c6e91b01cf8a3508b7701
Analyzer Verdict Alert fortinet Phishing
GET /connect.facebook.net/vi_VN/sdk/xfbml.customerchat.js HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=3600, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: application/javascript
Last-Modified: Sun, 18 Oct 2020 10:15:32 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 76080
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/10.jpg
42.112.25.89200 OK 4.4 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/10.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash a9e63212cd565710a9cce65a705b0d4d
e4764b909b023cf11491e7745f7dd6a873b645d7
b6c627b1529ce997e6b062c3810a780d9167fb906650997524abe0fecb41488d
GET /comment/img/10.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 4415
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 126e9ccbe4e6508bc0a881d69e0c9521
1909837ca688bdf3f91df41f5194cf248fb17812
b3143a6cce962235dd70bf5673ba4c1482d825e83ba6c01f4047fbc6ccc67874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 93af086c11908f25c43c0bd730ca1fd1
75f2cbb9c6d8aeb54145293cafa5404cc3489389
7169b0c49ea8e410f5ec7fb0fd01d0df35251e52057612bfcdff4b88e81b12f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/comment/img/11.jpg
42.112.25.89200 OK 3.1 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/11.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 2d3e12c55c1183fe407705db9aa83eb5
fbb35d5a253b8e3935ecb7429f0feef7bc962a6d
a06edbe80efa349e5d89cb704e7c4a82e29f53c6f5c2b08f5f9df866e77a978d
GET /comment/img/11.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3134
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/12.jpg
42.112.25.89200 OK 3.9 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/12.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash f779793ed25ab98f51a8bea045b321d7
eec077ff68d517aadc8d5bf45f2a3c6e45388f4a
d1a47d4427a8af10d9bc8a484aec9dfa16be1ab93d61439da850065276e85df8
GET /comment/img/12.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3918
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/comment/img/13.jpg
42.112.25.89200 OK 3.2 kB URL HTTP/1.1 napthefreefire.com.vn/comment/img/13.jpg
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c0f34d73fb0c7adf08ac686f19702343
a3f53061f875582e09a2b8e4fe237568dc21139a
1ca426c304cd492d3136bc034bb10b274fe1f5d3768ab0c197905981d6134bf7
GET /comment/img/13.jpg HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 25 Sep 2020 02:59:36 GMT
Accept-Ranges: bytes
Content-Length: 3242
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
napthefreefire.com.vn/www.upsieutoc.com/images/2020/08/02/logo_freefire.png
42.112.25.89200 OK 12 kB URL HTTP/1.1 napthefreefire.com.vn/www.upsieutoc.com/images/2020/08/02/logo_freefire.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 140 x 140, 8-bit/color RGB, non-interlaced\012- data
Hash d671b0199b6035293b00969074b05bf9
2039ac4babb5659e918b3c5bcbc3cac128459003
1300135fdeca49964814306039ffd2a4e9f5029a8bfd5ddae0aeb5d7a6c4e823
GET /www.upsieutoc.com/images/2020/08/02/logo_freefire.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/png
Last-Modified: Sat, 01 Aug 2020 17:20:50 GMT
Accept-Ranges: bytes
Content-Length: 11787
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 26 Jan 2023 10:22:12 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d284ad55d77eb78fe75cb579c1789287
0fc91bee507b06831cf8badaa6b3f83489cd0ee2
7bdaf99bacdfe0d2c46de2970a0d0e25990530e9dd073df565863c43c49b6e0d
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1243
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 26 Jan 2023 10:22:12 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
napthefreefire.com.vn/Content/images/icon_app.png
42.112.25.89200 OK 1.7 kB URL HTTP/1.1 napthefreefire.com.vn/Content/images/icon_app.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 47 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b3ad26521239ac5cf48fc9b9daefae5
f40e61dfd4653a1d35fd3ff85ee030239cf2acc1
b7e2c179239fbc16bac652ad3dddde44f99f14971bcf7babc90754312f5643d0
GET /Content/images/icon_app.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Length: 1724
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
yt3.ggpht.com/ytc/AL5GRJVnTlRtwrHHc33SJMOjg8Gu5Y4S7RVN3JFyqiiA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 5.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJVnTlRtwrHHc33SJMOjg8Gu5Y4S7RVN3JFyqiiA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 2cfae01369266437c4c25a2f3e0deb37
91a894b918308bfab5838063725d0679104db6bf
00f3682fe4c23a693f6cd3c687480bc89aea2377d483f472531ac74127be7d14
GET /ytc/AL5GRJVnTlRtwrHHc33SJMOjg8Gu5Y4S7RVN3JFyqiiA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v5"
expires: Fri, 27 Jan 2023 10:22:12 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 26 Jan 2023 10:22:12 GMT
server: fife
content-length: 5419
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
napthefreefire.com.vn/Content/images/icon-phone.png
42.112.25.89200 OK 1.3 kB URL HTTP/1.1 napthefreefire.com.vn/Content/images/icon-phone.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash bbe20f8b50473d0df52c4402270d7b3d
943fbfd61a6563d6ff1ef548ca23076eafc20501
077885d37a9bf4f409aa1a4551dc02a198dd31135f55b4bf014a8d032b188350
GET /Content/images/icon-phone.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Length: 1258
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/images/icon_and.png
42.112.25.89200 OK 2.2 kB URL HTTP/1.1 napthefreefire.com.vn/Content/images/icon_and.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 81 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ad43402c80cb539d5f347142e62932eb
1e2c6e2e863d2da3d6576f92fab2145eeb4697a0
669534c65c1fffce29310bf77e3e95300cec502ef316d729d904f45d2d7b9e00
GET /Content/images/icon_and.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Length: 2162
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f3ebba38babe4484f955dedf12d71e2
4fc3d61579aa2e035bf84b9439cc1933fe564ca8
b34dc34d61bb90a46615c1f99dd079bb05f662da984beb44233a85f7d3546a47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:22:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napthefreefire.com.vn/ajax/history.php
42.112.25.89503 Service Unavailable 719 B URL HTTP/1.1 napthefreefire.com.vn/ajax/history.php
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash d9062c361de80f13aed449664860f6de
f25debfe0834c2c31d5bbb306e9908dd1bb7b446
2c28f93538552cfbeaaf8a2ad524de82faa061910d2bea0bec5e7985fe48e6c7
Analyzer Verdict Alert fortinet Phishing
GET /ajax/history.php HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 503 Service Unavailable
Connection: close
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 719
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/images/email-black.png
42.112.25.89200 OK 15 kB URL HTTP/1.1 napthefreefire.com.vn/Content/images/email-black.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 17 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 6506447f8eb017229397e1469cc339a9
a67c6a70ed5b7e72a24fbcdd047f15542ea179ae
163006a4836e5390075ce4472f0c3d735727647616f33da76489344c416833ea
GET /Content/images/email-black.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Length: 15176
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
napthefreefire.com.vn/static.xx.fbcdn.net/rsrc.php/v3/yC/r/Y_2rPZLlNeZ.png
42.112.25.89200 OK 150 kB URL HTTP/1.1 napthefreefire.com.vn/static.xx.fbcdn.net/rsrc.php/v3/yC/r/Y_2rPZLlNeZ.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 194 x 4220, 8-bit colormap, non-interlaced\012- data
Size 150 kB (150422 bytes)
Hash 5d30b3b26db283a7913d73fc5ebac2cb
9095b0dac52cf4165957aaea3e4ba662741f6e14
96b50e2a65b72a3e870406880559918c5f0c2497e81e785b3c3152b9af182e55
GET /static.xx.fbcdn.net/rsrc.php/v3/yC/r/Y_2rPZLlNeZ.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:11 GMT
Content-Type: image/png
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Accept-Ranges: bytes
Content-Length: 150422
Date: Thu, 26 Jan 2023 10:22:11 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/images/icon-fb.png
42.112.25.89200 OK 1.2 kB URL HTTP/1.1 napthefreefire.com.vn/Content/images/icon-fb.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 98a52b681978d665a81572e52eec60ca
f615a2cc8cdf1ee1cef188c58f1614e5b7127a5b
3dbe1ad22c6c79e1b5cc97d5eb09ffa5038f1bd59f8321ffd8fe82d67973a7c2
GET /Content/images/icon-fb.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Length: 1227
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
napthefreefire.com.vn/Content/images/icon-hotro.png
42.112.25.89200 OK 1.4 kB URL HTTP/1.1 napthefreefire.com.vn/Content/images/icon-hotro.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 13f83f4ebac5aaa8345cdf4e791b77a3
c3b4994d49cefc6e672a41aa307f8e6a78878e9a
199af4166c6fdaf6101019e99fe627ed965e49dd9e9caa684432280c303f5a74
GET /Content/images/icon-hotro.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Mon, 21 Sep 2020 11:18:28 GMT
Accept-Ranges: bytes
Content-Length: 1386
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
napthefreefire.com.vn/ff.garena.vn/wp-content/themes/freefire/images/game-icon.png
42.112.25.89200 OK 7.5 kB URL HTTP/1.1 napthefreefire.com.vn/ff.garena.vn/wp-content/themes/freefire/images/game-icon.png
IP 42.112.25.89:0
ASN #18403 FPT Telecom Company
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 1789ff951436242bfa79d90abf0dc7ca
4060419c2f09fae7ba786068a168c5c3285aec1e
66f162bfa11d9d8878cabd5ae5f7c3bc9a6291c7d4f5b2ed234208cf23d89e5b
GET /ff.garena.vn/wp-content/themes/freefire/images/game-icon.png HTTP/1.1
Host: napthefreefire.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: max-age=2629000, public
Expires: Thu, 02 Feb 2023 10:22:12 GMT
Content-Type: image/png
Last-Modified: Thu, 03 May 2018 09:05:02 GMT
Accept-Ranges: bytes
Content-Length: 7537
Date: Thu, 26 Jan 2023 10:22:12 GMT
Server: LiteSpeed
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700&subset=vietnamese
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,300,400,500,700&subset=vietnamese
IP 142.250.74.138:0
GET /css?family=Roboto:100,300,400,500,700&subset=vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://napthefreefire.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 10:22:09 GMT
date: Thu, 26 Jan 2023 10:22:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2