r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 035772439731bbe3992c865f68e4b977
53fe2d0f678772b6b3e935aaca4d1ef82767e48f
9880ae6537e30af38e8d7ed612a5a44a54037d86686c63ef7eeebcc62cbda05f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9880AE6537E30AF38E8D7ED612A5A44A54037D86686C63EF7EEEBCC62CBDA05F"
Last-Modified: Sat, 01 Apr 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2813
Expires: Mon, 03 Apr 2023 16:26:45 GMT
Date: Mon, 03 Apr 2023 15:39:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c17f530e6db706fa5f9eb36a6cca4a4
446b60a425aae47b0adf5abd7e18e9f90f52c0bc
ccf1a90e945a18fb951654d29f128acdb3916d4dca315b0fad44ae8cc95be48e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CCF1A90E945A18FB951654D29F128ACDB3916D4DCA315B0FAD44AE8CC95BE48E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2832
Expires: Mon, 03 Apr 2023 16:27:04 GMT
Date: Mon, 03 Apr 2023 15:39:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Alert, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 03 Apr 2023 15:16:30 GMT
content-type: application/json
age: 1402
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 903ed2d58f1f33d069b70c4b53f1cb1f
0ef89cd6eb79a2ddd74434f9233cf486fffc1142
d8c984b50f04fcdb1ebc99d982502d85193302c85239ee7497666247edfc0061
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8C984B50F04FCDB1EBC99D982502D85193302C85239EE7497666247EDFC0061"
Last-Modified: Sun, 02 Apr 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2417
Expires: Mon, 03 Apr 2023 16:20:09 GMT
Date: Mon, 03 Apr 2023 15:39:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 95f61d351f5fc9533cc78e255ce9bc06
fba284117f347782ac23c51d141d7e3ec15a867e
7fcc5f9e52e389d8d7c6df7f1f2a1291ae0aaae8e554f3022239ab092b2ef3c3
GET /chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cZSK3qycduaMofx/eQdcnwHKtoJqWek0kJ/ljXBJ3Rvt4PNEhcm32cjJkDbVQSmzFlgNO8FvXC8=
x-amz-request-id: 8KW3CDF9P69RCA4H
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 03 Apr 2023 14:52:47 GMT
age: 2825
last-modified: Fri, 31 Mar 2023 17:04:39 GMT
etag: "95f61d351f5fc9533cc78e255ce9bc06"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 03 Apr 2023 15:39:52 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Pragma, Backoff, Expires, Last-Modified, Content-Type, Alert, Retry-After, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 03 Apr 2023 15:14:43 GMT
age: 1509
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2820ca2dae3aed6a76736f236502749b
d2e4995fdd0fbb64d9051f50be93023a752ef449
0ac73659b8f464575a3596da96a94fc6dbc26a4d5a90bec1331a5df5ad796006
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AC73659B8F464575A3596DA96A94FC6DBC26A4D5A90BEC1331A5DF5AD796006"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16017
Expires: Mon, 03 Apr 2023 20:06:50 GMT
Date: Mon, 03 Apr 2023 15:39:53 GMT
Connection: keep-alive
napgamefreefire.vn/
103.57.221.31301 Moved Permanently 705 B IP 103.57.221.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash fd6b297fa9dfd1caab7acf9125ffe6cc
53618902b83e471846929795850792ad6c6f24c2
192e86338fba742ce408db1ddcf4511efbfb53e3032a8fef640c6b373b2ec652
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET / HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 705
Date: Mon, 03 Apr 2023 15:39:52 GMT
Server: LiteSpeed
Location: https://napgamefreefire.vn/
push.services.mozilla.com/
54.190.133.153101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.190.133.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N0g3rjXRI8u5J+q6VdG23Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YxlIKfV3kCnRbo3VhrdoNEOQI+E=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a14757b634e96cbfbd435f088e40a279
3418ca0a1ab5e92f1e5b27fd0a09ec27dacb48b1
eb176a074a0fec90c6a39e8a7cabb21cbc82831125e4939a1f2067c8970387de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB176A074A0FEC90C6A39E8A7CABB21CBC82831125E4939A1F2067C8970387DE"
Last-Modified: Mon, 03 Apr 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 03 Apr 2023 21:39:53 GMT
Date: Mon, 03 Apr 2023 15:39:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5743
Expires: Mon, 03 Apr 2023 17:15:37 GMT
Date: Mon, 03 Apr 2023 15:39:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5743
Expires: Mon, 03 Apr 2023 17:15:37 GMT
Date: Mon, 03 Apr 2023 15:39:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5743
Expires: Mon, 03 Apr 2023 17:15:37 GMT
Date: Mon, 03 Apr 2023 15:39:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 869fe4a8dc549ffa1023d3adc184e4f2
37b95d88dd3f6f251bb651b130e09b202850033f
9387d0291fa66cc98248bae7724ec34f884c766302d2a99e734585cc591ad304
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9387D0291FA66CC98248BAE7724EC34F884C766302D2A99E734585CC591AD304"
Last-Modified: Mon, 03 Apr 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5743
Expires: Mon, 03 Apr 2023 17:15:37 GMT
Date: Mon, 03 Apr 2023 15:39:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0936bac9-0505-47a5-932e-eb63ee65f17f.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0936bac9-0505-47a5-932e-eb63ee65f17f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 440bc52fc1e8c12ac8264a1ee47fc525
00e85bb08fa00deac46dd33bc11e9358c948ecf5
7fd89896357506803bafdb71eccab202b1c492d6489efb4ebb05fb4b367194ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0936bac9-0505-47a5-932e-eb63ee65f17f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6494
x-amzn-requestid: e032a9b8-7231-424c-9bcf-3e376fac5c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CxM52GoDoAMFnUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6429f50b-5b86488c35a3bb1d297bb989;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Sun, 02 Apr 2023 21:35:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 1XR1LgB0FVddFK4itAeNjjuF7gKNDmJ3nTJgLo0Zi8ytbF8epYKXjw==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Apr 2023 22:00:43 GMT
age: 63551
etag: "00e85bb08fa00deac46dd33bc11e9358c948ecf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: wlc65ytdELa_faMSddEDHZNsbtF1_CgMOho3W3BvkaOSrFyAkKUagg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 10:48:38 GMT
age: 17476
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c5995f5-c9d0-47d9-a99c-ea2229b26283.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c5995f5-c9d0-47d9-a99c-ea2229b26283.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c192b5eb00aae7400b34378cce4cb2b3
562374b6269de69273ecde1bb481bd2fd0b8a322
2844cf5ee63912d6965f0e6752aa85caf52f857e7a383af25b782430020d1c0b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c5995f5-c9d0-47d9-a99c-ea2229b26283.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7550
x-amzn-requestid: 99a579f7-2f41-42c3-a0a2-8e9417b0c457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CvNUUEkHIAMF7sA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642928e8-43beae7027e46dac7552eabc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Sun, 02 Apr 2023 07:04:08 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: n2LbtTRmpX2zD1fU5yX5TAds4mdrQATAHkSItbl6VKYW8X4exCq3Dg==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 07:42:31 GMT
age: 28643
etag: "562374b6269de69273ecde1bb481bd2fd0b8a322"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47fd3671-846b-41b7-ae64-e6b64f82f7d8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47fd3671-846b-41b7-ae64-e6b64f82f7d8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c336ed2e672fe0edcb712e592929b95
89a751e033d9301f43e055316f48eefe3b35d3d0
8db54300bf1738af35a23222068ed212566ed15f499207e4ac3f4f37c357a87a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47fd3671-846b-41b7-ae64-e6b64f82f7d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10050
x-amzn-requestid: 83a2e3cd-74d3-4aed-9088-19e8063e9b21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ct6liHj_IAMF3hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6428a489-3dd275df7bec7a2c75eefd0c;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Sat, 01 Apr 2023 21:39:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: VoijySB-GVwnyK3i43cQPVPenabxB4QyZ9gLNpJTjoWDOs73CHBZnQ==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Apr 2023 23:17:26 GMT
age: 58948
etag: "89a751e033d9301f43e055316f48eefe3b35d3d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F341f7e43-f7f1-460d-b07c-cfb6a69af4b1.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F341f7e43-f7f1-460d-b07c-cfb6a69af4b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b6c2e8349f7c1d56d8353eecb7e2c97
d54350d7eef6d0d5291f41850363549b4b65552c
33f24d9dfe5df649cda7fae727b719b869100ee3f88a7222358257f85885d9ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F341f7e43-f7f1-460d-b07c-cfb6a69af4b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8895
x-amzn-requestid: ee1aef2f-2606-4d76-85be-12401e34f380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CxM74FifoAMFm9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6429f518-466b67241c73844c0a09c21d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Sun, 02 Apr 2023 21:35:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: HBBNP6o-ewdn7SzZQxmnA1td3FCXnCQU0kxQm7GdP97sg0wQqEiIQw==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Apr 2023 21:58:58 GMT
age: 63656
etag: "d54350d7eef6d0d5291f41850363549b4b65552c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e421b58-eee4-4dc7-81c0-2d96120d8950.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e421b58-eee4-4dc7-81c0-2d96120d8950.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 50c5edd2a6ef5c0560c229935677ca09
6241f7dab794ef6fe2af3922fd4b7f3539898cad
5ad2e855be49fc982e27aaef20483edd40a048282d97665d4f95f981d65fa1d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e421b58-eee4-4dc7-81c0-2d96120d8950.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6136
x-amzn-requestid: e1ae4e9e-f298-409f-aa10-30e40068322f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CxM54F0BIAMF0cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6429f50b-1ccc6fcc3a8705f24e9b956c;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Sun, 02 Apr 2023 21:35:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: -XN0GjiEwF-btu_88QbyHkjPArCbwHF7rHzK4vdINK_OH67EtZl-5A==
via: 1.1 1cbc126937aab64e42a05f9bf2f8daee.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Apr 2023 22:00:43 GMT
etag: "6241f7dab794ef6fe2af3922fd4b7f3539898cad"
content-type: image/jpeg
age: 63551
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0af311e913e9c4417fceb5309471bdcf
7c13a0ec4c9fae2a9dc9a45b270a04e037660bb1
3fc4a668c865a537063605370a704b59ca0822a440edb7506e498210466330fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0af311e913e9c4417fceb5309471bdcf
7c13a0ec4c9fae2a9dc9a45b270a04e037660bb1
3fc4a668c865a537063605370a704b59ca0822a440edb7506e498210466330fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0af311e913e9c4417fceb5309471bdcf
7c13a0ec4c9fae2a9dc9a45b270a04e037660bb1
3fc4a668c865a537063605370a704b59ca0822a440edb7506e498210466330fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0d5f428e8d604eb9e7c5646c4ced7a86
a49e33793421f755c0c56474d5b4507c9fdda931
8736f26b0ca7a66472d862c300071dcc08620ed84ee03e0bd9990f9629b6eb83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-Z2NG0B4NRP
216.58.207.200200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Z2NG0B4NRP
IP 216.58.207.200:0
File type ASCII text, with very long lines (19390)
Hash 7f3b757cb07d6630ae009aa84b2bef05
b9afce9b431ba5e1fca62063081a2782081d52cd
1e938a6a6e835214aa7ef1201376deef23f01d6570a287b652284fb07b426e47
GET /gtag/js?id=G-Z2NG0B4NRP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 03 Apr 2023 15:39:55 GMT
expires: Mon, 03 Apr 2023 15:39:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0af311e913e9c4417fceb5309471bdcf
7c13a0ec4c9fae2a9dc9a45b270a04e037660bb1
3fc4a668c865a537063605370a704b59ca0822a440edb7506e498210466330fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0d5f428e8d604eb9e7c5646c4ced7a86
a49e33793421f755c0c56474d5b4507c9fdda931
8736f26b0ca7a66472d862c300071dcc08620ed84ee03e0bd9990f9629b6eb83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
103.57.221.31200 OK 4.2 kB URL HTTP/2 napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
IP 103.57.221.31:0
File type HTML document, ASCII text, with very long lines (11084), with no line terminators
Hash 5c2621edd6b69b3db6fe58c0eb4c246b
92bcfa2249b11b406b08196d08985314bc1bd444
492d97b4a8d4d514a77ee82be0af9fb8aff7fd75f6b8eef12b6ea80963d30d18
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: application/javascript
last-modified: Mon, 04 May 2020 16:13:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4238
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/css/bootstrap-multiselect.css
103.57.221.31200 OK 296 B URL HTTP/2 napgamefreefire.vn/Content/css/bootstrap-multiselect.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (1149), with CRLF, LF line terminators
Hash 25e27345b04aefe056f6ef2c293ec29a
c72665025cdb6a580a3aac5f4b23c40d2d8479ba
671633e7afdc2644c1158728be4b4e7d039263e35228654af31e1ab3a1517967
Analyzer Verdict Alert openphish Garena
GET /Content/css/bootstrap-multiselect.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 296
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/css/bootstrap.min.css
103.57.221.31200 OK 21 kB URL HTTP/2 napgamefreefire.vn/Content/css/bootstrap.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (580)
Hash 570a9f2697660b762db04fea2e1811c1
742d3fc8352caa6bc41b93b21260a8034ff8d28a
874c71e0c9532e338740f869ffb24cd18e16f89f4332e195037cd5373f8f111f
Analyzer Verdict Alert openphish Garena
GET /Content/css/bootstrap.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20956
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
103.57.221.31200 OK 5.5 kB URL HTTP/2 napgamefreefire.vn/Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM
IP 103.57.221.31:0
File type assembler source, ASCII text, with very long lines (441)
Hash 66609aacea230598d645e566af7cf768
8fc560719faab2defe2712e0b0e554be24c15a64
a9cd20cbbb656ddbfe9fb6fe2268bffa6c7ffacfb1ac0483ba3ccd019063e5b8
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /Content/css/style_naptienf97a.css?v=3/25/2020%205:56:25%20AM HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5470
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/css/owl.carousel.css
103.57.221.31200 OK 1.5 kB URL HTTP/2 napgamefreefire.vn/Content/css/owl.carousel.css
IP 103.57.221.31:0
File type ASCII text, with CRLF, LF line terminators
Hash 62c8e55be01f76f5277db9de058e3375
a365ef9a52f1dfc685f4d4e9de2204f6203967e6
6813261ecc33da7ddc07bc43843f478e7acbbfd0a94953ea26a5eac3af12653a
Analyzer Verdict Alert openphish Garena
GET /Content/css/owl.carousel.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1478
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/
103.57.221.31200 OK 14 kB IP 103.57.221.31:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (489)
Hash b81c67107427f61afea5b730b30bebfd
19ae57ee4629dd3538c3d808a000284e370c844d
39a3e11d9c65396c08a8020a7aa225bd765b5dc3ec538046aaa2aa9e983d153d
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET / HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Mon, 03 Apr 2023 15:39:53 GMT
server: LiteSpeed
alt-svc: quic=":443"; ma=2592000; v="39,43,46", h3-Q039=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-23=":443"; ma=2592000
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/js/jquery-1.9.1.min.js
103.57.221.31200 OK 32 kB URL HTTP/2 napgamefreefire.vn/Content/js/jquery-1.9.1.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32089)
Hash 49ab99e7825dd66c1c2087bb44d2d200
d41d8c362b166f8390431ab47febd8ac08b94b36
3c97de860c3deef95481e8a2d7cadf25872dbdafa44aaf47bcdd469c6dcde074
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /Content/js/jquery-1.9.1.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31834
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css
103.57.221.31200 OK 2.8 kB URL HTTP/2 napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (6454), with CR line terminators
Hash f3656694ccc00ca877d46ea0ae680771
f4e6d12250120efe88964542b3e8d93842922fd7
a72ad6481395e54f30f43c168d51df2ddad1b06fedc350f2f998f8a2ae6faf25
Analyzer Verdict Alert openphish Garena
GET /cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: text/css
last-modified: Mon, 04 May 2020 16:17:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2807
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js
103.57.221.31200 OK 2.0 kB URL HTTP/2 napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js
IP 103.57.221.31:0
File type ASCII text, with very long lines (5215)
Hash e4e30263278fbc1395a8cd9a1b381cee
138cfdff9d1c597c67814a3613c32cb9f41042fa
f96f68eff9d11d4c0c3d1d6a88099a1d0cb07da4639b9f39a80cea93fda3204e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: application/javascript
last-modified: Mon, 04 May 2020 16:17:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2024
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css
103.57.221.31200 OK 2.0 kB URL HTTP/2 napgamefreefire.vn/cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css
IP 103.57.221.31:0
Hash e3b6d5c3fc8ac1f6a835c2dec7730369
dbf86a6937d6c7b3e98e70a98c53381593c8f280
a93860321c994de5b572ffa0d6a274a55bb2585871a1707d69451578b6a5771d
Analyzer Verdict Alert openphish Garena
GET /cdn.rawgit.com/t4t5/sweetalert/v0.2.0/lib/sweet-alert.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:54 GMT
content-type: text/css
last-modified: Sun, 07 Feb 2021 12:06:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1966
date: Mon, 03 Apr 2023 15:39:54 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c5855af789369a9b0da3ae3d0ff5b7f0
393f65405b0231d85849bb2de71f53e4a935e14b
216bda1ec06919da765b408640b1841f048a3ac507a3c25786f0ec8b938837fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:23 GMT
expires: Wed, 27 Mar 2024 10:31:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 536912
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c5855af789369a9b0da3ae3d0ff5b7f0
393f65405b0231d85849bb2de71f53e4a935e14b
216bda1ec06919da765b408640b1841f048a3ac507a3c25786f0ec8b938837fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgamefreefire.vn/unpkg.com/sweetalert%402.1.2/dist/sweetalert.min.js
103.57.221.31200 OK 11 kB URL HTTP/2 napgamefreefire.vn/unpkg.com/sweetalert%402.1.2/dist/sweetalert.min.js
IP 103.57.221.31:0
File type ASCII text, with very long lines (40808), with no line terminators
Hash d7e78f52022130781f8ab56e5d2a3f30
8ea87e09e28af89bea8fb08785191e32e081f623
d389209f14d88a5601669701ca8ee3ab4d1c7c99ea5579ced8e461401bb41313
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /unpkg.com/sweetalert%402.1.2/dist/sweetalert.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11427
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/loader/css.css
103.57.221.31200 OK 430 B URL HTTP/2 napgamefreefire.vn/assets/Scripts/loader/css.css
IP 103.57.221.31:0
Hash 9ad24f14374bc84f225646167f9bea32
994394505df6a51096bd6d564b10358318ee0fe7
cb3bc256322348cbca4f4f616f4478609471b42884d31d69b4a2f83810a5d9ba
Analyzer Verdict Alert openphish Garena
GET /assets/Scripts/loader/css.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 430
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/loader/pace.js
103.57.221.31200 OK 4.1 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/loader/pace.js
IP 103.57.221.31:0
File type ASCII text, with very long lines (12345)
Hash 26add4a09b7e712a2595e400c9beb458
677f9eb521e898a72b673cad3403d5d47a32b895
398452b7e9f50fbdd16cb7cca2c37999fbcc06126289e1a7158b8eb6331bec32
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/loader/pace.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4077
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/sweetalert/sweetalert.min.js
103.57.221.31200 OK 5.2 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/sweetalert/sweetalert.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (16977), with CRLF line terminators
Hash a93be8169af13df4db3b9cfa35dbc92f
be1137d3c41e76bfbbeedcec2f04fa4419f1c75f
3312a8164991b7f515cc1ebec6a94f4167ee3b4b4971da4be4d3488804b6a59c
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/sweetalert/sweetalert.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5156
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
103.57.221.31200 OK 9.7 kB URL HTTP/2 napgamefreefire.vn/maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
IP 103.57.221.31:0
File type ASCII text, with very long lines (37481)
Hash 1f6093a22755cb0e1bb594c2964a8bb9
56e8c2cccefe98676e0ad584749e3c6a3c8cea22
7e542223615fc8d2740283eae47edc3c610e992a373684c81e70318792447e2d
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Fri, 14 Dec 2018 05:14:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9659
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/loadingoverlay/loadingoverlay.min.js
103.57.221.31200 OK 12 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/loadingoverlay/loadingoverlay.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (17017), with CRLF line terminators
Hash f0efe1833c370fc544594f789fab04db
c82e018b323df1021444edd41cb1b6cb0747d061
708dab0f21245bcc69ea5e3b6b17496a80b06cdaf9f693b5d97083401649e181
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/loadingoverlay/loadingoverlay.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11575
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js
103.57.221.31200 OK 471 B URL HTTP/2 napgamefreefire.vn/assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (741), with CRLF line terminators
Hash 5097a17c52a6efcfb0ab93c8a4ff0d89
b512929edfb59ac6bc9dcee000b9774ec052eb53
c5ad9554b3189c1939be2985fa0732c3449864e8d516011ed0fef28617c431db
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/loadingoverlay/loadingoverlay_progress.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 471
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/socicon/socicon.css
103.57.221.31200 OK 242 B URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/socicon/socicon.css
IP 103.57.221.31:0
File type HTML document, ASCII text, with CRLF line terminators
Hash f87cb208c060cf8f39d86470917e4586
f582aaa927cf2edc86c6aee28dff6ec6622d02a8
206e895ac0a2103f68089b2ddca7676e3c4335ce10321a2f96fc05686dd538c5
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/socicon/socicon.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 242
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/sweetalert/sweetalert.css
103.57.221.31200 OK 3.5 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/sweetalert/sweetalert.css
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash d1b685b278be80969cc9dedd96ed1dc3
843088d16667656ca23ee6e4a750700dfb117fdd
99f50f9c36bb49b816f064ec5ee34da487add2b0017fcee13897241078334e77
Analyzer Verdict Alert openphish Garena
GET /assets/Scripts/sweetalert/sweetalert.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3492
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
103.57.221.31200 OK 5.7 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (26679), with CRLF line terminators
Hash 7f2507274e72302e24c4259d567dd890
b9878aa90f50a3927cc805cc86f3e244bcacfd27
0f78ec9f26c68e084fa79a5da340e5234fd851cd73b03fda69e73c89a56920c4
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5743
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
103.57.221.31200 OK 2.0 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (9531), with CRLF line terminators
Hash 23975d5ed500f29ef7aa4cc40ff816c4
ba73a36a6dc19b147a623b1cf93c8efbde89215c
99380f970991e45468f99afef61af562701147925d533c92bb423cc89637c0e0
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2043
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/animate/animate.min.css
103.57.221.31200 OK 3.6 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/animate/animate.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (55788), with CRLF line terminators
Hash 98a86eb50dd42ce837110973e56bacc8
1000aee543615df403aece302af5378035bcedbe
17992ba3ee284f18d89f192a830904a44de9b6b19b45084b3ffd88936b66c410
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/animate/animate.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3616
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
103.57.221.31200 OK 1.7 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash 7c5d08afcc837d9c892155145ce466ad
ba7f955f2d3a5fbfbd22531692de21a4654d6b8e
a7dc4146a4483a037a37704e44d86fb9060b92536fbca0cc95f66ed84ec8d183
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/global/plugins/magnific/magnific.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1683
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
103.57.221.31200 OK 11 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (65241), with CRLF line terminators
Hash 873df488a135f008e6a1de8083867e15
e2586e21a025126b5bab9cfb9d7270362978cb06
189cbe9adb106fbcd630cb22d235adf4d21f671bb40e31b41604fee1f98d0665
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11140
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
103.57.221.31200 OK 1.3 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash 2b783645fccef89c0275d3543ee23231
5cc14a403cf175ec5de51a93d356109c41b6a72a
d12745d0cce32de68dd79164c764814b61a9e3e58a7de1d38b41443d8b1d613f
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1271
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/demos/default/css/themes/default1336.css?tom=88536935
103.57.221.31200 OK 1.8 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/demos/default/css/themes/default1336.css?tom=88536935
IP 103.57.221.31:0
File type ASCII text, with very long lines (615), with CRLF line terminators
Hash 845ec6d3d2e7883235b5536bf76c26dc
2c0d309d0ed13f0b3cdeb056d8ba03afb7a6064f
23566138ca785bf1c629ee195623724e0a602ed56752b4df500d958a33fe2492
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/css/themes/default1336.css?tom=88536935 HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1802
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/demos/default/css/custom08cb.css?tom=35693241
103.57.221.31200 OK 459 B URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/demos/default/css/custom08cb.css?tom=35693241
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash 9fb789a692a5e3e8ecc92ccaaa54391d
36e1f5af4bbba2dd5426e36f2d4e7941b07e0ab5
0c8ea0e87b64800bbfc623108c0b1be1afd08021c3183206382668eef7c09fe4
GET /assets/frontend/theme/assets/demos/default/css/custom08cb.css?tom=35693241 HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 459
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/css/vongquaykimcuong.css
103.57.221.31200 OK 294 B URL HTTP/2 napgamefreefire.vn/assets/frontend/css/vongquaykimcuong.css
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash b9a6ac2af733b04aedd151e7f9504c8e
c6bc04edf7965bdd73a5044bd9b2342f3aca1ca9
d639716352fdf24c1948010e9e17ce7b1bc480874553603035d193d2eafee310
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/css/vongquaykimcuong.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 294
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
103.57.221.31200 OK 9.5 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32033), with CRLF line terminators
Hash e27cc00971498bdcc9690d0bbdd21d44
bdd83ec6be67c0264e7580486952d03847dd4420
e7e32b0e6641f606fca61325c72c478e7d70d673693b3f8986d39a8a7a2cd458
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9533
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/plugins/owl-carousel/slider.js
103.57.221.31200 OK 460 B URL HTTP/2 napgamefreefire.vn/assets/frontend/plugins/owl-carousel/slider.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 378b0a7a9e8b96d8afe4e3f84dffbef6
982311594e5af42ce88c8b55e6beef79e6338cc6
f5a192e8a0bf4fef237e16130e9be5aebb6cf79fa221bc45c473d1d51593ceb3
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/plugins/owl-carousel/slider.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 460
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
103.57.221.31200 OK 1.3 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9a1975a91eef2c9b0c3c284316a9e600
fa01f24614fee98cbc7f6097d956ae7c740f4366
61dcb620d77fec858f5eaf9124a738ca368d6da1c9b2f73b42afe27aa11f5c68
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/plugins/jquery-cookie/jquery.cookie.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1256
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/css/style9b14.css?tom=83347504
103.57.221.31200 OK 5.1 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/css/style9b14.css?tom=83347504
IP 103.57.221.31:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 7ef0fd22a50bcc6ac7b661b9d4dc3b08
bda0425d9a2dc8408c76379b0376c87bb02cda90
b301708b973e2638d77001bc827659f39af449f6d960cb1ebdb0f0f6a1ecc405
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/css/style9b14.css?tom=83347504 HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5100
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/css/util.css
103.57.221.31200 OK 6.3 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/css/util.css
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash ee12f5f8e7465b986015bf940772f42a
08c717c859a9d483ca65f8a65cce38d1d6eb7363
a6845244f0c459686f398c7e5f71777d642103556549e42ebecbb7de06fbc629
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/css/util.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6275
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
103.57.221.31200 OK 3.8 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9959), with CRLF line terminators
Hash 45a1a38dd9888858b48d0af22aabdd7d
45afe18e4514143ffad0ad92f1b5fe38f7336de2
ea893a736b2212f67063cfb9c8976de95ec97c431d4083c877680819e36b2582
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/jquery-migrate.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3836
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/jquery.easing.min.js
103.57.221.31200 OK 1.7 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/jquery.easing.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3323), with CRLF line terminators
Hash 9a73eb2027eb9d40cb44a1188a25fbfc
d435880df8ea79105ae545cb116246c7f89b4268
86dea26a2b2cdf4aa00f395d23c9a61470018a888c8454afd5ebcf8bb17783b8
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/jquery.easing.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1694
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
103.57.221.31200 OK 3.4 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 79429831b559a5e58b7f62522b69c09a
83b48c1544f75cf482ddc4581574fa264849bfe8
d86117d6495bf68e9f09680fbb4bed2f249526089dcb062ce8863300e8603852
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/reveal-animate/wow.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3423
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
103.57.221.31200 OK 247 B URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9eab03b73040a03cdef611e9fa8eaf9a
dcde0c480a1e71f0f6a6e1ea577f2461db51a3e9
c3776ca82f563f873f2693344a1ed5331449539c0fadd46ac80d3871cef4d018
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 247
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
103.57.221.31200 OK 7.3 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (22205), with CRLF line terminators
Hash 3459bccd217de428c0093bd34e681d06
48c24825730571b817d3ea2656f45f075ccc1e3b
88308ae6549e809d15aac3e03b3e88fb1540036d8c4e5b755cd2324f618470ae
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/global/plugins/magnific/magnific.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7321
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
103.57.221.31200 OK 510 B URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (904), with CRLF line terminators
Hash 0428ff1673b161419a94328905a78a6d
6237a5d68f2cf5065cb6393798cd8b8638294022
09cb7b1dcfd6f87234dcfcf51012bc3f9c728998eae19a7f0e7f7984d6f284cd
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 510
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
103.57.221.31200 OK 2.5 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (7808), with CRLF line terminators
Hash acabfe2b75ff7883988262bef03758ca
f80ca6dbe9f26bfde462484c6154f51d015093a2
91ea93635d083541bab378bfe93cf53415f1b030bb01d5357d56752f3838067a
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2483
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
103.57.221.31200 OK 8.3 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (645), with CRLF line terminators
Hash f58be9d6f98789f3de7fd231a1c18d25
7cd4753d2e69c3ebdca9ab0fea9bb2876bc32755
968cbf37cbdbe1949661c37a9295a399e8f4b6aa1bed55708348d46f412427c4
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8283
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
103.57.221.31200 OK 2.6 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
IP 103.57.221.31:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash abc72d78fc024bfd857f1a09dc142a92
512433cf38b842ab5cc8806780f1669f8a27b66d
5b6f131b6e3fdf6853545f352df9025bfec1b92e0b472369c07809c356547e0e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2597
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
103.57.221.31200 OK 1.4 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 97f7051a084a29b9d11f8a197c323ee3
a3f5d1d3c0ac31f3a5b417dd4cd9940ba010782f
012305a6f48f44bebad4a514e5ffd3d971548992c0cd1ea4ee1d8619856fb5d8
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1363
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/base/js/components.js
103.57.221.31200 OK 5.6 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/base/js/components.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 1c1df7eaedd95271b8e17c6dfb14296f
1334f47d1b65a045c7cc026c6b1de0d52a0ceb7f
1ef8f985f159049b44bc5fab10189cfcc701c3d1c23f459e9f0f96258a3dfa2f
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/base/js/components.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5585
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/base/js/app.js
103.57.221.31200 OK 3.5 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/base/js/app.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 0ea1b748f19e25763c0f920bef69f49d
4d5795db00fb506520eccaa3e41708a584dd5f98
057702428d511c009a05b7c249b619a82c25fbeaae07ffe6a69d947507b4479f
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/base/js/app.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3506
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/plugins/bootbox/bootbox.min.js
103.57.221.31200 OK 3.5 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/plugins/bootbox/bootbox.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9748), with CRLF line terminators
Hash 7a55a8496e769e8f771206e0a4cde351
192727fbfa154733bfe531b7b6155b3855a00bee
cdd62c9d580443ba7eef1cbfa24a5aa2b0a463f14cbab403cdf16a999cc5b820
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/plugins/bootbox/bootbox.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3539
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/moment.min.js
103.57.221.31200 OK 12 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/moment.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32005), with CRLF line terminators
Hash 42e2103c552cdc1e2d4604b449d2c4ee
de7225a757fc064f1f872a1ce7fc7a430bbd5994
667bef7c1dfd62e310fb356cae6444138d6e379a0f58a1a5d655a75a6793e2ec
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/moment.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12234
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/js/common.js
103.57.221.31200 OK 577 B URL HTTP/2 napgamefreefire.vn/assets/frontend/js/common.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ac52128ef64980c5b0087a4892a4ec43
e04e145f43d01e7f495f6bab6f21c9eaac91c68e
930a6de0b583d2b3daa807cb11bcbd83cf8a37c3e0f405560dcfbb035c3e7ae1
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/js/common.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 577
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/bootstrap-filestyle.min.js
103.57.221.31200 OK 1.8 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/bootstrap-filestyle.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6327), with CRLF, LF line terminators
Hash 4cf41cecc21de2e9853196eb08731171
8f80e99cc46297a11f9a4a22adee9954b2466ea9
49d7f14d5a13f956ed767aa4bc5226e9a69bf9634ab7136443bd5852f2d22dfb
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/bootstrap-filestyle.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1756
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
103.57.221.31200 OK 6.7 kB URL HTTP/2 napgamefreefire.vn/cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 103.57.221.31:0
File type ASCII text, with very long lines (31167)
Hash c3bd634b08d3f71675d490c7cc8d5daa
bbe7a8cacc2de4bc0fcee83d42c6220d993d1c00
1972ca7e135ce49f8645dcd57605be66d6cebc97617a8dff3ebb566b0c5fdced
Analyzer Verdict Alert openphish Garena
GET /cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Mon, 04 May 2020 16:10:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6692
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/css/custom.css
103.57.221.31200 OK 185 B URL HTTP/2 napgamefreefire.vn/assets/frontend/css/custom.css
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash 510ccf3e98d40be66d72d28e2a83b0b3
c1eaabcf7519b3b1d1e61aed451256b0f44c374c
6538e872fca4b60f79e835857b2c03ad1ae9bc86ccf5e8625c35ec37898d3a2f
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/css/custom.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 185
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/rotate.js
103.57.221.31200 OK 3.0 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/rotate.js
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash 421983d26113916e22fc9b11780b391b
f736a2ce5c15ad295e360983ecb9898461e6cc9d
a8694be63fdcf587b2b3e37e1671c63212b32977ba12b9daa9ce197588172896
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/rotate.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2983
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/css/popup/conggame.css
103.57.221.31200 OK 451 B URL HTTP/2 napgamefreefire.vn/Content/css/popup/conggame.css
IP 103.57.221.31:0
File type ASCII text, with CRLF, LF line terminators
Hash 115502a5ca9f9dbd83809c6ee77268c9
51cf893aca192ada7d5e944f34ebf904c3aa1d9d
33f3a43ec3adfc379719913e1db26a74958a95d2c0e5d2a98be6c96cd8f36b53
Analyzer Verdict Alert openphish Garena
GET /Content/css/popup/conggame.css HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 451
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/css/bootstrap-select.minf97a.css?v=3/25/2020%205:56:25%20AM
103.57.221.31200 OK 1.4 kB URL HTTP/2 napgamefreefire.vn/Content/css/bootstrap-select.minf97a.css?v=3/25/2020%205:56:25%20AM
IP 103.57.221.31:0
File type ASCII text, with very long lines (6344), with CRLF, LF line terminators
Hash bab569703feea2d410682996bf6e902e
b81d91e1947ddcb86c495f8f34e423ee1069d909
5647a1b21b8129b38561cf952502230b33126e099c3e7377b4eee7956dfa2586
GET /Content/css/bootstrap-select.minf97a.css?v=3/25/2020%205:56:25%20AM HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1407
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/js/bootstrap-select.js
103.57.221.31200 OK 15 kB URL HTTP/2 napgamefreefire.vn/Content/js/bootstrap-select.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text
Hash 10932dea273ec32b81ac16a7d9665fa4
09244c783f9c95525fffd310b894b96b3cd2eec0
e44f94043a54bfd77938e2ac0cdedd91fcc4974854b1ffdda92a7a3b1e159667
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /Content/js/bootstrap-select.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14828
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
103.57.221.31200 OK 567 B URL HTTP/2 napgamefreefire.vn/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 103.57.221.31:0
File type HTML document, ASCII text, with very long lines (1238)
Hash 7cfd438ec1e0ef5e12877e9194a55b45
eb666e2be5715bb7b96d0de5bc719af6c9354f70
3010c27c7edfdf5ce8bcd986bf9417effb06536355bf595bbbee315108e9f620
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Mon, 25 Jan 2021 17:22:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 567
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/js/bootstrap.min.js
103.57.221.31200 OK 9.1 kB URL HTTP/2 napgamefreefire.vn/Content/js/bootstrap.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32405), with CRLF, LF line terminators
Hash f0374f2db56c266c59da88240c5fcc01
6e8aefe0a8ec633fc1e2910f8f3d5ec25cf0d9fe
6a77f868d39d48ad4cb39a8a9c4dfb6b8a138aedb3bdc642f06a515999f5f5c9
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /Content/js/bootstrap.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9076
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/js/owl.carousel.js
103.57.221.31200 OK 9.6 kB URL HTTP/2 napgamefreefire.vn/Content/js/owl.carousel.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash af886b183eaf69ed2d4a6c8d3f68ef05
890140b9f3fc4a4d4aae89ba2a3334d2b9bc852a
8f0de04850fc0bba1f111a54792ebc707fae4222514de44af51860b3f173154b
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /Content/js/owl.carousel.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9611
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/Scripts/toastr/toastr.min.js
103.57.221.31200 OK 1.8 kB URL HTTP/2 napgamefreefire.vn/assets/Scripts/toastr/toastr.min.js
IP 103.57.221.31:0
File type ASCII text, with very long lines (4918), with CRLF line terminators
Hash 3ec69c4d90111734c285712f2c33d57d
c9333c24dfaef2861bf2c698fb4185562b90d8e4
44edd562214a226e21e1019d5d85fc323d5495a98e5f44b9df4a4166b7155530
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/Scripts/toastr/toastr.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1786
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/js/jquery.min.js
103.57.221.31200 OK 29 kB URL HTTP/2 napgamefreefire.vn/assets/js/jquery.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32180), with CRLF line terminators
Hash 6824c0e91d64eb4571d57ea1a0848003
f9e6fccf85c9e233c9d55bf8b7797414eae6bb4c
6d27c4485782a898308b0b88ee2a5f14b7b604400af341c0e21e39cf26677a8e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/js/jquery.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 28838
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
103.57.221.31200 OK 30 kB URL HTTP/2 napgamefreefire.vn/ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 103.57.221.31:0
File type ASCII text, with very long lines (65451)
Hash fb2fa79a9c7027aa0e9dd8b23a607d29
1f254951fbbbf3490feef1a8eb28d1cdb1c35258
d43f300aa3d25a8f356e19496df590a60a2e23c09d4d768c40fc68a9ad1c96b6
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Mon, 13 May 2019 14:37:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30047
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/demos/default/css/components8a56.css?tom=71151587
103.57.221.31200 OK 50 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/demos/default/css/components8a56.css?tom=71151587
IP 103.57.221.31:0
File type ASCII text, with CRLF line terminators
Hash 58d874c8b55881fc582f480c287e9b16
7d8c6e25f0b80e3c35e9bcd33080d5aca3b4c6bf
e50584c6768fa9fe8a1027fd9c16a2928b3d54adb3ae21ee21575cf387df5b52
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/css/components8a56.css?tom=71151587 HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: text/css
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 50053
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
103.57.221.31200 OK 17 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
IP 103.57.221.31:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32172), with CRLF line terminators
Hash 0ef74c40abaeef252075698aaa51c93b
79fd3285d04f4e1a2af9ecbadc5ad6077d905c0c
0320e3ed4c225877f33b01cbcb85ac889d421b818f2bc0e1478fd76a87e22a0e
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17277
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js
103.57.221.31200 OK 28 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js
IP 103.57.221.31:0
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 (with BOM) text, with very long lines (647), with CRLF line terminators
Hash ab901c02db10d25f6364173e494e312d
ca546f78242071a8869792a305db54ecf97fe6bd
410ec69c49c1b055dd18f53bc54fa80a76f881e5cc8711be4775234b150aeb91
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /assets/frontend/plugins/Inputmask/jquery.inputmask.bundle.js HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: application/javascript
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 28538
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/images/logo_garena.png
103.57.221.31200 OK 13 kB URL HTTP/2 napgamefreefire.vn/images/logo_garena.png
IP 103.57.221.31:0
File type PNG image data, 320 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 49001578457a1e70183ce1fcab1927e9
ba5736c69537da347c9180abd052fca7df689d13
499825d57d392f79ec43d382a5cb594b6965d3a1e9fd54290fbf34a9f2656542
Analyzer Verdict Alert openphish Garena
GET /images/logo_garena.png HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2629000, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/png
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-length: 12994
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/i.imgur.com/3yEHndV.gif
103.57.221.31200 OK 926 B URL HTTP/2 napgamefreefire.vn/i.imgur.com/3yEHndV.gif
IP 103.57.221.31:0
File type GIF image data, version 89a, 31 x 15\012- data
Hash b582de04ae02234a3f92c5fa7bb52c98
2838236c08a2dca516e3f9e5f568c7f4c7d38caa
aceefb0d9ded396d40b8c188e7114260c74f23b7ddabd53cf1b1bd9f3bda2486
Analyzer Verdict Alert openphish Garena
GET /i.imgur.com/3yEHndV.gif HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2629000, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/gif
last-modified: Fri, 15 Feb 2019 16:57:48 GMT
accept-ranges: bytes
content-length: 926
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/images/icon_app.png
103.57.221.31200 OK 1.7 kB URL HTTP/2 napgamefreefire.vn/Content/images/icon_app.png
IP 103.57.221.31:0
File type PNG image data, 47 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b3ad26521239ac5cf48fc9b9daefae5
f40e61dfd4653a1d35fd3ff85ee030239cf2acc1
b7e2c179239fbc16bac652ad3dddde44f99f14971bcf7babc90754312f5643d0
Analyzer Verdict Alert openphish Garena
GET /Content/images/icon_app.png HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2629000, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/png
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-length: 1724
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/Content/images/icon_and.png
103.57.221.31200 OK 2.2 kB URL HTTP/2 napgamefreefire.vn/Content/images/icon_and.png
IP 103.57.221.31:0
File type PNG image data, 81 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ad43402c80cb539d5f347142e62932eb
1e2c6e2e863d2da3d6576f92fab2145eeb4697a0
669534c65c1fffce29310bf77e3e95300cec502ef316d729d904f45d2d7b9e00
Analyzer Verdict Alert openphish Garena
GET /Content/images/icon_and.png HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2629000, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/png
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-length: 2162
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/images/3.png
103.57.221.31200 OK 66 kB URL HTTP/2 napgamefreefire.vn/images/3.png
IP 103.57.221.31:0
File type PNG image data, 248 x 211, 8-bit/color RGBA, non-interlaced\012- data
Hash 74efd59661f5192ecd6c737c7d5004a5
f82e9759b767b2eb3e8ee3c5fb5300f93c9cfd0c
f5893298c05346b8c6510a6cf6b880b2077610fd6f333b7c549ff63cc2c61a53
Analyzer Verdict Alert openphish Garena
GET /images/3.png HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2629000, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/png
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-length: 66198
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5da9a5ba55d79016c9c3f9e2c0d7945e
c8c09956eb8f4c40076cbd74807f431a315a78c5
c2e9633b8bf3bf634e08c6bce60c7ee29500ba5cae0beb7fcd556a8e5ad2895d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:32:57 GMT
expires: Wed, 27 Mar 2024 10:32:57 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
age: 536819
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Hash 7fa68490a833a8fa395e5f3bffafc052
1880e3743548106319713b937e7769eee6b1ce21
30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:41:57 GMT
expires: Wed, 27 Mar 2024 10:41:57 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
age: 536279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:32:45 GMT
expires: Wed, 27 Mar 2024 10:32:45 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
age: 536831
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:33:07 GMT
expires: Wed, 27 Mar 2024 10:33:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 536809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:10 GMT
expires: Wed, 27 Mar 2024 10:31:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 536926
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2
216.58.207.227200 OK 5.7 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 5696, version 1.0\012- data
Hash 85fc330e5d5f44827f71c9c87e20fc08
a12bad7ed537f664c3b4ec0c501b3cce2df55921
a443599b665cfcd9a13fc46056624c65f518c06ee47925c4a940c58164b1b799
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 12:45:15 GMT
expires: Wed, 27 Mar 2024 12:45:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:51:59 GMT
content-type: font/woff2
age: 528881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
napgamefreefire.vn/assets/frontend/images/loader.gif
103.57.221.31200 OK 429 kB URL HTTP/2 napgamefreefire.vn/assets/frontend/images/loader.gif
IP 103.57.221.31:0
File type GIF image data, version 89a, 800 x 600\012- data
Size 429 kB (429444 bytes)
Hash 12157a971a85d60ee138ac99560abafe
1b58d415488b751fd352f6e17580e993885881d3
3b22e7538fdc4dbe9a60ad55cbedf0af2111952e3fc7ce5edb6c86aaee17a683
Analyzer Verdict Alert openphish Garena
GET /assets/frontend/images/loader.gif HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2629000, public
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/gif
last-modified: Tue, 08 Dec 2020 15:00:50 GMT
accept-ranges: bytes
content-length: 429444
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto|Roboto+Condensed
142.250.74.106200 OK 10 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto|Roboto+Condensed
IP 142.250.74.106:0
Hash e8ca65e4bdf6a099f3180d401b3a0fea
34c923e87d08efb4611934b46f0f6e1962fef522
6a1a5a8cc03a8ef2a40c20cdf2329b2a9aa4f74c1f9135821d9de810c425924a
GET /css?family=Roboto|Roboto+Condensed HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 03 Apr 2023 15:39:55 GMT
date: Mon, 03 Apr 2023 15:39:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/8kiwWm-MA_c
216.58.207.206200 OK 30 kB URL HTTP/2 www.youtube.com/embed/8kiwWm-MA_c
IP 216.58.207.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58589)
Hash fc04cc3a0ab61a3bb5b2f70dffafc1f8
cc21ec63f8117885fe3c09a7de949e910fef2713
edf84612d9273320fc4a15944af0be93c46f09a70b836902d8445ae392b5cd67
GET /embed/8kiwWm-MA_c HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 03 Apr 2023 15:39:56 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=N-adi-uW72o; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=oJzRgUlKeAc; Domain=.youtube.com; Expires=Sat, 30-Sep-2023 15:39:56 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+613; expires=Wed, 02-Apr-2025 15:39:56 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/fa7eb95c/www-player.css
216.58.207.206200 OK 52 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/www-player.css
IP 216.58.207.206:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 40333c9d07daab8ba8a53f73ee3f974e
36c2b17a7c48fc28036534f445b79fca9658f0a4
998313664fbeab2403238a77e6c50a4541d20805b30533f67de1a12c624fee54
GET /s/player/fa7eb95c/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/8kiwWm-MA_c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 52099
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:22 GMT
expires: Thu, 28 Mar 2024 15:52:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 431255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/fa7eb95c/www-embed-player.vflset/www-embed-player.js
216.58.207.206200 OK 110 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/www-embed-player.vflset/www-embed-player.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (679)
Size 110 kB (110541 bytes)
Hash f7d0caf37d196733802d70ffde7306b0
29c3b2044acbe4ecd75557563fa647ca5ca953db
108dfb988d1c7838a44fafca3abc98945e7fc45a8c471d382b4450093b0d6045
GET /s/player/fa7eb95c/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/8kiwWm-MA_c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 110541
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:22 GMT
expires: Thu, 28 Mar 2024 15:52:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 431255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/fa7eb95c/fetch-polyfill.vflset/fetch-polyfill.js
216.58.207.206200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.207.206:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/fa7eb95c/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/8kiwWm-MA_c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:22 GMT
expires: Thu, 28 Mar 2024 15:52:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 431255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 104004e3d7a21944e524f286acfa5cb4
1b32bb0d973e13d33958002565fb2c735d7e4741
4a55bee9f1d92e0d0114dc90d3fd9bd54c4f1bfec0ca52e956ee4c0001915ec3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
napgamefreefire.vn/cmt.php
103.57.221.31200 OK 1.2 kB URL HTTP/2 napgamefreefire.vn/cmt.php
IP 103.57.221.31:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3721), with no line terminators
Hash 75565bf208babec1c60ac65a27b7e21d
5129b4b69fa4e0b774b6b93175f8224d64649456
7120ac887d7cd2a443f77fb89dd20241bda58c8a13cd1a647f922283833a5bb3
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /cmt.php HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
content-type: text/html; charset=UTF-8
content-length: 1242
content-encoding: br
vary: Accept-Encoding
date: Mon, 03 Apr 2023 15:39:57 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
napgamefreefire.vn/view/modal.html
103.57.221.31200 OK 362 B URL HTTP/2 napgamefreefire.vn/view/modal.html
IP 103.57.221.31:0
File type exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3533f91ede6680e51b34134fdf738bc2
4303252eb441fd856f70a7585af048d6c04beef2
29d1d2b1210642c1fea69ea3566b5bf39da90a30bd4d2a80b197e7687e3b26a6
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /view/modal.html HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Sun, 07 Feb 2021 12:06:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 362
date: Mon, 03 Apr 2023 15:39:57 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 03dc09edb9f589859f071a0f0676590e
9ca405f423d35858bc8e090d8dcd9112147381cf
15071e4e2729fd9eac3897e8ec18eab9b943dadda8ea5f831d5c8dec4dbeaca9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 90887bc52c80bbd314bb0487f19cdf4a
3af7500ea2d788783cb3440a75b88097a47d90d1
d1a1ea1e13375239a7e4e0cfa35ea03e3212063714ae370cbf70c67d8e24a88b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Apr 2023 15:35:12 GMT
expires: Mon, 03 Apr 2023 15:50:12 GMT
cache-control: public, max-age=900
age: 285
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Mon, 03 Apr 2023 15:39:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 03 Apr 2023 15:39:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2e6ced8c1056f4644bcb8464d37b831
c8b13349f64e9732aaa4297c745630ba6a600eda
cd6ce97d7d0477366ce2a59a9e753e33d64de71e7bd48a6ca8acdeb6b2d5404c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 84e7b5842ab4f31e253795aa0527065b
9844d04d120c22d861ff12e51a7e9cc01357cd9c
8be9981624f078ce36e5c9c74c3c31711dc83be745352d83849e06bba6c95c8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 90887bc52c80bbd314bb0487f19cdf4a
3af7500ea2d788783cb3440a75b88097a47d90d1
d1a1ea1e13375239a7e4e0cfa35ea03e3212063714ae370cbf70c67d8e24a88b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ee1219dfcd0f2e9ad92b8a2e9de5b168
f30cfe64fa30f398505609a3e1659a1a58298bb0
9d5dc34c4916dbb5282960623ad2ec980f38a6aebdb11cc8d785c816920a541c
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 03 Apr 2023 15:39:57 GMT
server: ESF
cache-control: private
content-length: 31184
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 361bd55171acd18758309f8bd2e66f6d
37e901558146b06fb52ebd39e0cb55bbc1f3d7df
2ae145f29547c5893da87815e284ddf0089faac45698b8b69946198e3821b28d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/23K_wv65UPCiABIo6r4TLz_7ITKDRTsdN0481kHWjEo.js
142.250.74.132200 OK 14 kB URL HTTP/2 www.google.com/js/th/23K_wv65UPCiABIo6r4TLz_7ITKDRTsdN0481kHWjEo.js
IP 142.250.74.132:0
File type ASCII text, with very long lines (36167)
Hash d8b5506abd01000a83e6365c2d6d6e43
4bcd0915a2299747e317e996a6ce6bbb3b4240f4
5bc9cc885f76c5246d72488920aa90fe6fb246bf101f3108e82d012cd3b161e9
GET /js/th/23K_wv65UPCiABIo6r4TLz_7ITKDRTsdN0481kHWjEo.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14353
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 05:04:47 GMT
expires: Sat, 30 Mar 2024 05:04:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 297311
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-Z2NG0B4NRP>m=45je33t0&_p=424939700&cid=1350740586.1680536397&ul=en-us&sr=1280x1024&_s=1&sid=1680536397&sct=1&seg=0&dl=https%3A%2F%2Fnapgamefreefire.vn%2F&dt=Trung%20T%C3%A2m%20N%E1%BA%A1p%20th%E1%BA%BB%20FREE%20FIRE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Z2NG0B4NRP>m=45je33t0&_p=424939700&cid=1350740586.1680536397&ul=en-us&sr=1280x1024&_s=1&sid=1680536397&sct=1&seg=0&dl=https%3A%2F%2Fnapgamefreefire.vn%2F&dt=Trung%20T%C3%A2m%20N%E1%BA%A1p%20th%E1%BA%BB%20FREE%20FIRE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Z2NG0B4NRP>m=45je33t0&_p=424939700&cid=1350740586.1680536397&ul=en-us&sr=1280x1024&_s=1&sid=1680536397&sct=1&seg=0&dl=https%3A%2F%2Fnapgamefreefire.vn%2F&dt=Trung%20T%C3%A2m%20N%E1%BA%A1p%20th%E1%BA%BB%20FREE%20FIRE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://napgamefreefire.vn
date: Mon, 03 Apr 2023 15:39:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 361bd55171acd18758309f8bd2e66f6d
37e901558146b06fb52ebd39e0cb55bbc1f3d7df
2ae145f29547c5893da87815e284ddf0089faac45698b8b69946198e3821b28d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/proxy/zOLNgN-13ZLOJRIVkEp5bbDgcK-W794ii3foOnG_ynR542LB23g4MwHQJ4vIOM1mccW2epCN0CRR84tSHyC9IunByqqebw=s0-d
142.250.74.97200 OK 1.0 kB URL HTTP/2 lh3.googleusercontent.com/proxy/zOLNgN-13ZLOJRIVkEp5bbDgcK-W794ii3foOnG_ynR542LB23g4MwHQJ4vIOM1mccW2epCN0CRR84tSHyC9IunByqqebw=s0-d
IP 142.250.74.97:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash aadc73afe28bd5cdb7b6b0fab984a909
f6a9e0f156f4ad059cbdb3b39e20a9b97b205ed0
04bf66874d07c20529e5ec772a6e51e5c37cbfae74db7a04960c1d1272df72f4
GET /proxy/zOLNgN-13ZLOJRIVkEp5bbDgcK-W794ii3foOnG_ynR542LB23g4MwHQJ4vIOM1mccW2epCN0CRR84tSHyC9IunByqqebw=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 04 Apr 2023 15:39:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 03 Apr 2023 15:39:58 GMT
server: fife
content-length: 1000
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 104004e3d7a21944e524f286acfa5cb4
1b32bb0d973e13d33958002565fb2c735d7e4741
4a55bee9f1d92e0d0114dc90d3fd9bd54c4f1bfec0ca52e956ee4c0001915ec3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Apr 2023 15:39:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 03 Apr 2023 15:39:58 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4c10ce3b390a28b3e1d0b095195c7d35
86d627cacc1357d927b816c2ddb34990001aa539
cedbd17adedbfd555c45c659e5c9cf58a5c2766a7f996ea8b630f868b25f9db1
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1252
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 03 Apr 2023 15:39:58 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJWH8bRBJfhU4TMyKyJvz-2tPJDRnA4WFFCZMTz6=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.9 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJWH8bRBJfhU4TMyKyJvz-2tPJDRnA4WFFCZMTz6=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 3dc5c304ca281d31ebc69e5d71b7bbb5
38ce6306b7a514c7222ad6730c234b33b68bf652
517452ac8e69067bbe93379c002af7a6f305ba30f5877f8fb5ef772365fff5bc
GET /ytc/AL5GRJWH8bRBJfhU4TMyKyJvz-2tPJDRnA4WFFCZMTz6=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v7"
expires: Tue, 04 Apr 2023 15:39:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 03 Apr 2023 15:39:58 GMT
server: fife
content-length: 3901
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
napgamefreefire.vn/images/unnamed.webp
103.57.221.31200 OK 0 B URL HTTP/2 napgamefreefire.vn/images/unnamed.webp
IP 103.57.221.31:0
Analyzer Verdict Alert openphish Garena
fortinet Phishing
GET /images/unnamed.webp HTTP/1.1
Host: napgamefreefire.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Cookie: PHPSESSID=51106ce977d5675c2a4afd5bf0abfbf9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 10 Apr 2023 15:39:55 GMT
content-type: image/webp
last-modified: Sat, 12 Dec 2020 08:20:00 GMT
accept-ranges: bytes
content-length: 61586
date: Mon, 03 Apr 2023 15:39:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/8kiwWm-MA_c/sddefault.webp
142.250.74.86200 OK 0 B URL HTTP/2 i.ytimg.com/vi_webp/8kiwWm-MA_c/sddefault.webp
IP 142.250.74.86:0
GET /vi_webp/8kiwWm-MA_c/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 54526
date: Mon, 03 Apr 2023 15:39:58 GMT
expires: Mon, 03 Apr 2023 17:39:58 GMT
cache-control: public, max-age=7200
etag: "1616765112"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700&subset=vietnamese
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,300,400,500,700&subset=vietnamese
IP 142.250.74.106:0
GET /css?family=Roboto:100,300,400,500,700&subset=vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 03 Apr 2023 15:39:55 GMT
date: Mon, 03 Apr 2023 15:39:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/5fa78f0d0a68960861bcc1ef/default
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/5fa78f0d0a68960861bcc1ef/default
IP 104.22.25.131:0
GET /5fa78f0d0a68960861bcc1ef/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://napgamefreefire.vn
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Apr 2023 15:39:56 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-641d54f6f05"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 3111
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b226840bcc7b918-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/s/player/fa7eb95c/player_ias.vflset/en_US/base.js
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/s/player/fa7eb95c/player_ias.vflset/en_US/base.js
IP 216.58.207.206:0
GET /s/player/fa7eb95c/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/8kiwWm-MA_c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 627457
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:22 GMT
expires: Thu, 28 Mar 2024 15:52:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 431255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext
IP 142.250.74.106:0
GET /css?family=Pacifico%7CWork+Sans:400,300,600,400italic,700%7CAmatic+SC:400,700&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://napgamefreefire.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 03 Apr 2023 15:39:55 GMT
date: Mon, 03 Apr 2023 15:39:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2