r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3516
Expires: Wed, 28 Sep 2022 04:04:06 GMT
Date: Wed, 28 Sep 2022 03:05:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 02:15:37 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: R4k_X0I74oCgjkYZYQ7r6FzfDx0mSxYYUdAagR3XAtt11L1lm9B4ng==
Age: 2993
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13043
Expires: Wed, 28 Sep 2022 06:42:53 GMT
Date: Wed, 28 Sep 2022 03:05:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vLlCO5lukMR6R2e7A4MEvMkwOvLQPvWmgozLRGuprwW1l+ojSYZd9Hp2ji4E6tFOWbMUYPZZVKs=
x-amz-request-id: 7ARMY1SWEJXJNFF9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 02:49:48 GMT
age: 942
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
gshock-vietnam.vn/
112.78.1.97301 Moved Permanently 162 B IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Sep 2022 03:05:30 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://gshock-vietnam.vn/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 02:10:46 GMT
Expires: Wed, 28 Sep 2022 02:12:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sjTjbFZnUNWHGdmANrbfP8cuOFguEAq44G2VW6hEhFdqm_-Sbts1Tg==
Age: 3285
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4978
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:31 GMT
Last-Modified: Wed, 28 Sep 2022 01:42:33 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 18a946116849dde6fef9ee62eee7eacd
4d1473e9a4c0eae33654aa5d11ab2b03c35503b7
54c6a1ce7f930314d141e26b85da80243d3ba59b68fffe75072219f5177b0513
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54C6A1CE7F930314D141E26B85DA80243D3BA59B68FFFE75072219F5177B0513"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21533
Expires: Wed, 28 Sep 2022 09:04:24 GMT
Date: Wed, 28 Sep 2022 03:05:31 GMT
Connection: keep-alive
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1uatYeJeaG0U4j92wCbL+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zabnM5sDhm0oqc2H6WHNpR09AyU=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11715
Expires: Wed, 28 Sep 2022 06:20:47 GMT
Date: Wed, 28 Sep 2022 03:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11715
Expires: Wed, 28 Sep 2022 06:20:47 GMT
Date: Wed, 28 Sep 2022 03:05:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 0ceafc65-764c-4367-b031-257061eb65d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF00oAMFUpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-0d46481b7394081b14a81131;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ve8l6PxpMuBLt5BxwywNpqM2ISt0zy2r_gweYnVw4X65PBEhpMbckg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:00 GMT
age: 19172
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d039db0b842a4cbbaefdaab98bc6722b
78b1a603c4f7f2d6fbad15d7a4cd1397554339e9
65a3c7b0515cfd2a723f3bc3147cb98f3dd75ce1ecfce915c7c8e9ba5ae0bf2d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14018
x-amzn-requestid: fb0f02e7-1ce0-4861-9446-13d60df06f24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xSEhCIAMFWkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-79f482493d204a1208fad00f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZAov4fpWAjIBhHfeYEwu39wJTG58HnW7ebekpIoNSgA7PLIs5b7sSg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:28:52 GMT
age: 16600
etag: "78b1a603c4f7f2d6fbad15d7a4cd1397554339e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1fa8cb4f4be5057788cd1a2a4d0e76d6
1aec1d67a36867bee8069a144fb1b0d95ff2cb54
5193131db8040ef254554d59109002ec7b8cfc2eab1e872b63e5f65db7cf5105
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5944
x-amzn-requestid: 040b4452-4120-4ae5-9ad2-c5b341abbb13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34BFdmIAMFmew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cff-103adde82b57535e4f3fb16a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: q03mXCSikJcsTBGqk1Xq7452EiDz4t9PFbp5Qj4xwobiFgqtPwGCBw==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:21:35 GMT
age: 17037
etag: "1aec1d67a36867bee8069a144fb1b0d95ff2cb54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vak91l2UKRnX0Go62y1yPwJ8E-Af7XBurmQATw5MSZXBqhUJrIgOCQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 04:59:08 GMT
age: 79584
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gshock-vietnam.vn/
112.78.1.97301 Moved Permanently 8.5 kB IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 28 Sep 2022 03:05:32 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-redirect-by: WordPress
set-cookie: PHPSESSID=8t3n40t21c2803qj5au56ap6qm; path=/
location: https://www.gshock-vietnam.vn/
x-cache-status: MISS
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccfb4931d41ca01aa55b4b8e9ef6b4e1
2351d2547f4bd0aac45bb21a5aa8277e80ef15f2
89de9954ee2874b476c907810189812efe13234a46910180f34f68082429260f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ISJfVYtY7kLIm87GZEvqMmEr3D4vYcZDi-WJAu4GyaxLQKRUDbVjg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 19169
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/
112.78.1.97200 OK 27 kB IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash c1fb27ec87b8a6d3fa74814c5db09ece
0ec5e9899c9653ac8d10c29d0ee6a487f29c9a9d
db9a5043f64c8335479a718db74f48590d68ffc3275a65c1ccf359dc5811ea7c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/html; charset=UTF-8
content-length: 26918
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.gshock-vietnam.vn/wp-json/>; rel="https://api.w.org/", <https://www.gshock-vietnam.vn/wp-json/wp/v2/pages/369>; rel="alternate"; type="application/json", <https://www.gshock-vietnam.vn/>; rel=shortlink
set-cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; path=/
vary: Accept-Encoding
content-encoding: gzip
x-cache-status: MISS
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-145079288-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-145079288-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (2039)
Hash b6c76f36c66954e1bb7172910419dbc6
41e500bba71323924541d9048fe7a25e7aa0d4e5
12c96f105bfd0b6d1495e6361cda7a6f97b26d42fdac118f665f0650ad121b51
GET /gtag/js?id=UA-145079288-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 03:05:34 GMT
expires: Wed, 28 Sep 2022 03:05:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42334
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-831407616
142.250.74.72200 OK 47 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-831407616
IP 142.250.74.72:0
File type ASCII text, with very long lines (2039)
Hash c038cf0d1a73c802db052128f2e88d13
5a5baf591363f9448a3ee629fdf1713eb2b76417
3227a125a8b43171fa05d24008a7fd652f1998252968571a183428e579b9e486
GET /gtag/js?id=AW-831407616 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 03:05:34 GMT
expires: Wed, 28 Sep 2022 03:05:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46790
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c7202376a8015ebca615238a9177858b
4e2d413775cacb00891e97954839ecd42bb880b2
b2eb7d9cc7f76d49c15817ce58b0ebf687d43a29cdea4f1b446f9f72a4fe3003
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2EB7D9CC7F76D49C15817CE58B0EBF687D43A29CDEA4F1B446F9F72A4FE3003"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2212
Expires: Wed, 28 Sep 2022 03:42:27 GMT
Date: Wed, 28 Sep 2022 03:05:35 GMT
Connection: keep-alive
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.6
112.78.1.97200 OK 1.3 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.6
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (7074), with no line terminators
Hash f539fd76422f9223459357ff2bed657a
8e7a592918a9a115b222fd6ac20bcca8c5c7df2a
0de65dfe6df546c7e9ca163686a5cee635a2284ff35579154af88bf5ae0edbd2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.6 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: text/css
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-1ba2"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4
112.78.1.97200 OK 2.2 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (14615), with no line terminators
Hash 59df237f67e83801a446bbe480b513de
6699f3e3f7bd1d792ff0513eab69eead10e9c6fa
41083e7fe66cc75c6cca22237fd05754eb35cc17708ef0a79a888444a269a8a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-3917"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086
112.78.1.97200 OK 624 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (426)
Hash 4b6d35a5c778d1d4e8eb19ea81fcba9e
17fb1beec6f05255d16169bfbb73262b64d7221f
ab354c0fdc9dee0a335ea906a84e36619cc25674799b22ebab2bb43a5ddcd962
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Wed, 09 Mar 2022 03:56:54 GMT
etag: W/"62282586-1ab"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 545487
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
112.78.1.97200 OK 36 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 024746f266a73471cc0a473c55c81964
467d304c7efa3a06560d6b828617bebd06c4e463
3f32301c6069f7f99d5808db84bdd17b19b01be15c3e66f7be2d161dcc12a8fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-33805"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:35:48 GMT
expires: Thu, 21 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 545387
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
112.78.1.97200 OK 7.3 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (10435), with no line terminators
Hash 0cb7acda80c14fbab2f40dcc4947ab1f
4eeeff2ab6864bfdf82a818fc570a279454aa6da
aba7f3ce78a9aae7131e7627bf1a10abb4e239766c64ca4e29a109ac1101149c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-28c3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gshock-vietnam.vn/wp-content/uploads/2019/08/logo_gshock_min.png
112.78.1.97200 OK 17 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/logo_gshock_min.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 1200 x 1200, 8-bit colormap, non-interlaced\012- data
Hash cde3aab5231e66cd6135ba63cbc4084d
0626da466565618a22ca1323738f4c26b6c237a3
e48e084483d2fd0c3c9674aaad2c2281a4982ded523424615c76ef4da6406747
GET /wp-content/uploads/2019/08/logo_gshock_min.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/png
content-length: 17440
last-modified: Tue, 27 Aug 2019 16:22:24 GMT
etag: "5d6558c0-4420"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
gshock-vietnam.vn/wp-content/uploads/2019/08/gfactory-1.jpg
112.78.1.97200 OK 23 kB URL HTTP/2 gshock-vietnam.vn/wp-content/uploads/2019/08/gfactory-1.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], baseline, precision 8, 623x225, components 3\012- data
Hash 7264e334b89c59e98af7d3725c7bfaa4
9621f55b897547c7ebc52e9e8355ff1b13490986
5a0de5a82608210c2d66fd40066d8fd0671e50ee5fe4789d9b8d1945b9e1b10d
GET /wp-content/uploads/2019/08/gfactory-1.jpg HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=8t3n40t21c2803qj5au56ap6qm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 23179
last-modified: Thu, 29 Aug 2019 13:11:26 GMT
etag: "5d67cefe-5a8b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/images/icons/39.png
112.78.1.97200 OK 1.8 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/images/icons/39.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 12b0c5f1f9853cf73006e2b82df8526f
e72461b85d336ae77c3ac812ba1e15103a5dd937
35fcc04d3f5b363d7d706fb2451fdd63fccb0a3c5e005f6138cffc10cfb11376
GET /wp-content/plugins/wpfront-scroll-top/images/icons/39.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/png
content-length: 1793
last-modified: Wed, 09 Mar 2022 03:56:54 GMT
etag: "62282586-701"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/zxcvbn-async.min.js?ver=1.0
112.78.1.97200 OK 5.8 kB URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/zxcvbn-async.min.js?ver=1.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (316)
Hash a4b09cbb67a5bd08a80ca5d61c09ce04
6a394fdfbc9398e6bfcf15f32b270e6d64d37867
3a755bae9976711401c564906357b67181974d465e4a35eef4b552bea1e1950e
GET /wp-includes/js/zxcvbn-async.min.js?ver=1.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:33:43 GMT
etag: W/"60780877-15f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
cdn.autoads.asia/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
171.244.15.40200 OK 2.3 kB URL HTTP/1.1 cdn.autoads.asia/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6384), with no line terminators
Hash 40852cdf248e435f4ebc6a32850ee0d1
f3505ec06b6ba427d18a3711e3ce2e747b911571
b5f7a8a6e3e4832a374966166086f3d25a32808033bc73bc9fa7698b70661b1a
GET /scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5 HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Fri, 25 Dec 2020 10:59:07 GMT
Accept-Ranges: bytes
ETag: "808f2af7acdad61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Wed, 28 Sep 2022 03:04:26 GMT
Content-Length: 2330
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn21_2; path=/
www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0.jpg
112.78.1.97200 OK 325 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x816, components 3\012- data
Size 325 kB (325383 bytes)
Hash 2c30871b493e9377a501bc942804ce63
f11f8aa1339396da40c42fafa82e23040a40ccf6
3b0772babc57acb613cfb9d311968decb94dafd0a393cc6c17cf8c196bc38af3
GET /wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 325383
last-modified: Fri, 09 Sep 2022 04:38:16 GMT
etag: "631ac338-4f707"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2
112.78.1.97200 OK 6.5 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type Web Open Font Format (Version 2), TrueType, length 6536, version 1.0\012- data
Hash 21c4c69602dadee988f10c502b44d1c1
7d28ed1775492300f859296ef85ce371c26a6ff3
815e5395652e03d7051b767baade615d279fe3644bbf8f8bbdc54a8b9573be67
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: font/woff2
content-length: 6536
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: "5fb22eb2-1988"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707780545667_7687b4c22b6e7708610d5082cc1103ca.jpg
112.78.1.97200 OK 247 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707780545667_7687b4c22b6e7708610d5082cc1103ca.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x816, components 3\012- data
Size 247 kB (246809 bytes)
Hash 4e362ca7929f654c4bcf8eaa13aab15c
52c881b50fa6760c5f6f7628513c19e57e1a467b
dfaaeed177191f063c4238ef69027a3d8e9ee9e7aa018bb75dc17d62b820adbd
GET /wp-content/uploads/2022/09/z3707780545667_7687b4c22b6e7708610d5082cc1103ca.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 246809
last-modified: Fri, 09 Sep 2022 04:38:13 GMT
etag: "631ac335-3c419"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3Aregular%2Cregular%2Cregular%2C500%2Cregular&display=swap&ver=3.9
142.250.74.10200 OK 78 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3Aregular%2Cregular%2Cregular%2C500%2Cregular&display=swap&ver=3.9
IP 142.250.74.10:0
Hash 6b26a0ef7bddbd9e970f241d1683cca3
a1e532772d8a5ea45cb73d758e15ccad43fb884b
166097875270ce6debd1cb9ff45b1b0606b3b6a3867aa440a32d33210dab4f4c
GET /css?family=Roboto%3Aregular%2Cregular%2Cregular%2C500%2Cregular&display=swap&ver=3.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 03:05:34 GMT
date: Wed, 28 Sep 2022 03:05:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/bg-2.jpg
112.78.1.97200 OK 218 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/bg-2.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size 218 kB (218172 bytes)
Hash 76a7f31c3ba5859c5eb7c51f8c2c05e1
24c6448d6582ae0c34cf8f190891b7bb4c59d17d
ecd5434f8d9b6ef70d0b43a4c47ca3f43de852190eb0bc4ac1306c043d6865db
GET /wp-content/uploads/2019/09/bg-2.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 218172
last-modified: Fri, 06 Sep 2019 08:26:24 GMT
etag: "5d721830-3543c"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
gshock-vietnam.vn/wp-content/uploads/2019/07/footer-pattern-1.png
112.78.1.97200 OK 66 kB URL HTTP/2 gshock-vietnam.vn/wp-content/uploads/2019/07/footer-pattern-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 1440 x 381, 8-bit colormap, non-interlaced\012- data
Hash 7025c1f55f5757be3f1adead97a7fa34
82b5e733e8c6000af788d18c741dd1b21ebe135e
9e48da7938359a0b5386a98dad49e4d4c8ae6695c53830a37c93da3388450e49
GET /wp-content/uploads/2019/07/footer-pattern-1.png HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=8t3n40t21c2803qj5au56ap6qm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/png
content-length: 66175
last-modified: Sun, 21 Jul 2019 08:39:18 GMT
etag: "5d3424b6-1027f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg-1.jpg
112.78.1.97200 OK 282 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg-1.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size 282 kB (282331 bytes)
Hash 1c579d6a23b7deab6397f4693e1432f5
448d34a202b7b5bfc21483651900f64f6de76b1c
0006acdd01fbaa97ce77d8c2495c1f39386b452d67b04cbf980420547dd88b2f
GET /wp-content/uploads/2019/08/bg-1.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 282331
last-modified: Tue, 27 Aug 2019 17:45:44 GMT
etag: "5d656c48-44edb"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
112.78.1.97200 OK 54 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (3008)
Hash c58a6a236b8ba9d572c35b4f705d1551
a5e20fd2cd26c889e03d125ef831c05f09661129
9b417ad557967d3fe03d73f6b3070bc59fc7c75f8bb69dc40a234746b66d5dec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-cdc"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/libs/infinite-scroll.pkgd.min.js?ver=3.0.4
112.78.1.97200 OK 56 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/libs/infinite-scroll.pkgd.min.js?ver=3.0.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (25283)
Hash c4ed48dc20d18b992b4d17da5027e725
72f14b5e044338fc19bab168e093fe65f7ddaf34
2013f11142a87f923488104dc80cbb4aac93a9446a560115d56b4d0d27c60459
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/libs/infinite-scroll.pkgd.min.js?ver=3.0.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-63b1"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg_maudacbiet.jpg
112.78.1.97200 OK 543 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg_maudacbiet.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x780, components 3\012- data
Size 543 kB (542607 bytes)
Hash ff7f8de095e962a9fb4f07c3e48db3de
295e4cab97f6e1106eb826a16209a0f968963bfd
880e4c943262fea4412d3981744b4ee19dcfeb00f853b892d1bf87013192a5ec
GET /wp-content/uploads/2019/08/bg_maudacbiet.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 542607
last-modified: Thu, 29 Aug 2019 12:00:52 GMT
etag: "5d67be74-8478f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0-1400x595.jpg
112.78.1.97200 OK 175 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0-1400x595.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1400x595, components 3\012- data
Size 175 kB (174964 bytes)
Hash d47722c9e9b91b2066b0f60f61ee975b
176959850fee4c70493eaf42e42018d85d287f81
784ad9d4177d2f681c24ee1d9225d1a2fc4144d2c0c992e0768390c417273fe1
GET /wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0-1400x595.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 174964
last-modified: Fri, 09 Sep 2022 04:38:17 GMT
etag: "631ac339-2ab74"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-B2100BD-1A.jpg
112.78.1.97200 OK 192 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-B2100BD-1A.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:09:06 18:49:15], baseline, precision 8, 500x600, components 3\012- data
Size 192 kB (191996 bytes)
Hash e5d64259ef8998a374c75cc06478e7dd
abd24cb39179508e6c4ff02700ddb02bed2d7b63
f8576d2e8ce7941129f1c90c5da03e722a1ca23c996c6c68baaa6403c0a20c0d
GET /wp-content/uploads/2022/09/GM-B2100BD-1A.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 191996
last-modified: Wed, 07 Sep 2022 09:47:35 GMT
etag: "631868b7-2edfc"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-2100G-1A9.jpg
112.78.1.97200 OK 220 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-2100G-1A9.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:09:06 16:47:22], baseline, precision 8, 500x600, components 3\012- data
Size 220 kB (219598 bytes)
Hash 4b5c810da9e744f8161fc6e368a1f394
5ba835a01e1156fc4f63a7bcedd5202f6f8c1adc
5fb86f48dfb7fc35465436935ae8355b92e92d7ad1d1c29871f20272b9196d04
GET /wp-content/uploads/2022/09/GM-2100G-1A9.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 219598
last-modified: Wed, 07 Sep 2022 08:21:41 GMT
etag: "63185495-359ce"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-5600G-9.jpg
112.78.1.97200 OK 368 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-5600G-9.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:09:06 11:35:05], baseline, precision 8, 500x600, components 3\012- data
Size 368 kB (368021 bytes)
Hash 8dbcb153cf72f77dc7cb11af86a77202
3dcaac916960c05ccd29c46dc176a83bc242b101
a9f482bf082c51676ea63dcab8756061b441a876df24759d86591862ea5b032d
GET /wp-content/uploads/2022/09/GM-5600G-9.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: image/jpeg
content-length: 368021
last-modified: Wed, 07 Sep 2022 03:48:38 GMT
etag: "63181496-59d95"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/js/yith-wcan-shortcodes.min.js?ver=4.14.0
112.78.1.97200 OK 463 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/js/yith-wcan-shortcodes.min.js?ver=4.14.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (37170), with no line terminators
Size 463 kB (462814 bytes)
Hash dd3d43802957d25f33091d9b00ebd8e8
e5063069ec3cfc68c6cded326b9c7c57b28dba66
06d17c4a5bfb7f1a3f19430ee1dcbe78b3d87cb016bbfc511717249aead6dd83
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-ajax-navigation/assets/js/yith-wcan-shortcodes.min.js?ver=4.14.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 18:24:39 GMT
etag: W/"632a0567-9132"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400D-1A.png
112.78.1.97200 OK 408 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400D-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 408 kB (407979 bytes)
Hash 1c5ece75f09a465553c308e1ea67da2f
9e5d62a960d86b1d48dbf7c34f66853c150687a3
70f4fd7722c87a2d13d265d364693b419efd04d9f7994401f3e959d1041cdcdb
GET /wp-content/uploads/2021/06/GST-B400D-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 407979
last-modified: Thu, 17 Jun 2021 05:23:59 GMT
etag: "60cadc6f-639ab"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400BD-1A2.png
112.78.1.97200 OK 357 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400BD-1A2.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 357 kB (356838 bytes)
Hash 74b4ea96df7f38a631fc5f2c14397493
c5c471c24da53a25f1d1af1c6e6eb1dc54798f6d
f91ddd4c316ceda62950e5ef3d9b953aa0146bb8cd16f22ad1e3e7cf0c2c9cd4
GET /wp-content/uploads/2021/06/GST-B400BD-1A2.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 356838
last-modified: Thu, 17 Jun 2021 05:23:58 GMT
etag: "60cadc6e-571e6"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400AD-1A4.png
112.78.1.97200 OK 386 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400AD-1A4.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 386 kB (386518 bytes)
Hash dce1074c6b812e91602c25487414b022
8a0ef760f1ea06285e58e40d6675858a29b4aeca
ab511cbd6dabc79a0912ab319d1b124fb0fbf455c26f8bef5a50c37ef6a23edc
GET /wp-content/uploads/2021/06/GST-B400AD-1A4.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 386518
last-modified: Thu, 17 Jun 2021 05:23:56 GMT
etag: "60cadc6c-5e5d6"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400-1A.png
112.78.1.97200 OK 411 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 411 kB (411235 bytes)
Hash 2cc96c8d727b1babf16d6ad146e06c57
fc995605c8772f7d5d4b517cd70a643dc7325bfd
93510c9a940bb1522f366cb0bdb5e480e4a4cb08ce0f3d49f39e43df38b8fcf9
GET /wp-content/uploads/2021/06/GST-B400-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 411235
last-modified: Thu, 17 Jun 2021 05:23:54 GMT
etag: "60cadc6a-64663"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-5A.png
112.78.1.97200 OK 371 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-5A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 371 kB (371073 bytes)
Hash c1a46d1b1ff0b8c92c3ff434f4152e56
b6143bafa01acc52a6dff24c9b263de647b6e756
082beb622addc7a791d6d82eae92aeb981ab14e930c39f7fe3161f1e1d27e759
GET /wp-content/uploads/2021/06/GA-900HC-5A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 371073
last-modified: Thu, 17 Jun 2021 05:23:44 GMT
etag: "60cadc60-5a981"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-3A.png
112.78.1.97200 OK 381 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-3A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 381 kB (380940 bytes)
Hash 3e9be9e20e0193f4be2f71577bc76b8c
29a6bc639baf540b61f39e383c48be28e2b1c2c9
ed62f7482bf5ed8444b7c18f5e3e8eb82cf80f736df8f8568521a7af3857a890
GET /wp-content/uploads/2021/06/GA-900HC-3A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 380940
last-modified: Thu, 17 Jun 2021 05:23:42 GMT
etag: "60cadc5e-5d00c"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-4A.png
112.78.1.97200 OK 388 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-4A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 388 kB (388420 bytes)
Hash 96e6bfc39b786188620ca1afc173097b
92b99d1ddc5fb7daecd180e6f4fb7ed09a0c9477
cba3ae2032158067d46599f7280775574725c988a6db70f3ba7316e8f80607b2
GET /wp-content/uploads/2021/06/GA-2100HC-4A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 388420
last-modified: Thu, 17 Jun 2021 05:23:52 GMT
etag: "60cadc68-5ed44"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-2A.png
112.78.1.97200 OK 416 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-2A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 416 kB (416005 bytes)
Hash d93605fa080d4a9f359e6d5c43e37afe
b22c4aa3863207e5e09409064735e4fea8b6db09
1099dc773e2d1858204ca92e99370357894fb61d4816d7cc5fe18760a374f1c7
GET /wp-content/uploads/2021/06/GA-2100HC-2A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 416005
last-modified: Thu, 17 Jun 2021 05:23:50 GMT
etag: "60cadc66-65905"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/?wc-ajax=get_refreshed_fragments
112.78.1.97200 OK 337 B URL HTTP/2 www.gshock-vietnam.vn/?wc-ajax=get_refreshed_fragments
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JSON data\012- , ASCII text, with very long lines (636), with no line terminators
Hash 6480d7eec717fd68209c611174213cb0
001542f970b8a056bba654482894856234160646
dc9a418db27b3dc2924f815d8ba0fc1e55edf68a925986d622297e17e4c0174c
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: application/json; charset=UTF-8
content-length: 337
pragma: no-cache
access-control-allow-origin: https://www.gshock-vietnam.vn
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2000HC-7A.png
112.78.1.97200 OK 385 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2000HC-7A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 385 kB (384650 bytes)
Hash 60f952a8aa5d7ab90eee52fba55a3e93
ca7170a44b8aa91277a51475af51ef7b5e3e4a96
c36df8bb7df1b3b11d7fe9f65b59dba42b8e7b30cfb3c9509b9c785b03edfa44
GET /wp-content/uploads/2021/06/GA-2000HC-7A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 384650
last-modified: Thu, 17 Jun 2021 05:23:48 GMT
etag: "60cadc64-5de8a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
112.78.1.97200 OK 419 kB URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size 419 kB (418741 bytes)
Hash f1a2ce19dff2691b5ef233f55b46f90b
039625616cb61e5dbb03a9050858ae6764355db3
39288007e5c4a1d47f3c4b88a24fbb56323a1a9e5e348bfa5d747bebd8d29572
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-4ac6"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/MTG-B2000PH-2A.png
112.78.1.97200 OK 427 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/MTG-B2000PH-2A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 427 kB (427236 bytes)
Hash b7e7735abd20196f8a53ba0666b693c7
950c37158eddd8a21e33756cbfb65d12278d4db4
a48f7e3a3e67a9f8404249a2d4d55f4936b7d2bef49b1e9808648fa7c09705d0
GET /wp-content/uploads/2021/06/MTG-B2000PH-2A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 427236
last-modified: Thu, 17 Jun 2021 05:24:01 GMT
etag: "60cadc71-684e4"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
api.autoads.asia/maxlead/api/Gateway/GetScript?business_id=f6685fa394084cb98943016236c7dbb5&preview=false
171.244.15.40200 OK 218 B URL HTTP/1.1 api.autoads.asia/maxlead/api/Gateway/GetScript?business_id=f6685fa394084cb98943016236c7dbb5&preview=false
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type JSON data\012- , ASCII text, with no line terminators
Hash 54b5a38bcdea6e688bbfa4bd286b0327
ff1a5ff63b73d21acfad4566d4b20aca1ccd93ed
00f0d369824fadca2536230437e588ace94c490b7c90258cac689486fba12458
POST /maxlead/api/Gateway/GetScript?business_id=f6685fa394084cb98943016236c7dbb5&preview=false HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 28 Sep 2022 03:05:37 GMT
Content-Length: 218
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api20_2; path=/
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GMW-B5000G-2.png
112.78.1.97200 OK 302 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GMW-B5000G-2.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 302 kB (301747 bytes)
Hash 066dd81031579d192b1b2a1ac24b53a3
31d795c2941165442af74c1fc48672b745ea8a15
a0666a1d431bb6a3d4f6a7301ae99dcad2912ddc70b2013eac2cf974502328a6
GET /wp-content/uploads/2019/09/GMW-B5000G-2.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 301747
last-modified: Tue, 17 Sep 2019 09:05:48 GMT
etag: "5d80a1ec-49ab3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GW-B5600BL-1.png
112.78.1.97200 OK 323 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GW-B5600BL-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 323 kB (323066 bytes)
Hash a46281e0eb2d0dde5afb7dc0a9257fad
9a14aa18f1fc833c1e65ce1a371c9dbdceb589f4
91701444f78962afb332b28ce6d73e87510a5493de805bcebcf671735fd5c74d
GET /wp-content/uploads/2019/09/GW-B5600BL-1.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 323066
last-modified: Tue, 17 Sep 2019 09:07:48 GMT
etag: "5d80a264-4edfa"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2020/10/GMW-B5000G-1.png
112.78.1.97200 OK 276 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2020/10/GMW-B5000G-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 276 kB (276352 bytes)
Hash 603715952b63214279f15f3f04d97b86
1fd2a21124036efa8e6c489da7935c1aa7bb7428
abf084df5b63b1b264a899236e028a85bf0b65245733542b2a5f3e4c8ecc601f
GET /wp-content/uploads/2020/10/GMW-B5000G-1.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 276352
last-modified: Thu, 22 Oct 2020 11:48:56 GMT
etag: "5f9171a8-43780"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200B-1A.png
112.78.1.97200 OK 361 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200B-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 361 kB (361350 bytes)
Hash 5ae855a5eec4b2abad8d55e9a478645b
5e07a8b589aa0538ba544e71d1e622009036c726
bc6ee0cb0ce51d6a1ca5e9b6e11a352a947d8da0bb19b84d2b6eb40cbe5be6de
GET /wp-content/uploads/2019/09/GST-B200B-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 361350
last-modified: Tue, 17 Sep 2019 09:06:48 GMT
etag: "5d80a228-58386"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/GST-B100BNR-1A.png
112.78.1.97200 OK 408 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/GST-B100BNR-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 408 kB (408463 bytes)
Hash 4a3a0f73700c3f8a60dd9987bc4b3b0c
5815c9bea517ae92178ded7b7d00392797a255de
a3773555a23512602fba7460d4e79bce2fe8b3976860630ff55ed5fbf05c1e92
GET /wp-content/uploads/2019/08/GST-B100BNR-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 408463
last-modified: Mon, 08 Jun 2020 04:11:23 GMT
etag: "5eddba6b-63b8f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200D-1A.png
112.78.1.97200 OK 364 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200D-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 364 kB (364440 bytes)
Hash f466fc83adddd3509ff8e237932f4326
c622ebb7d8d557b08833fb577d26aa66bc4b213b
b2b93817e8d50240ea4fd2fb7f81e3a6d9c15549c8ef46b56b3d8510abbc8b48
GET /wp-content/uploads/2019/09/GST-B200D-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 364440
last-modified: Tue, 17 Sep 2019 09:06:50 GMT
etag: "5d80a22a-58f98"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/02/GST-S330AC-2A.png
112.78.1.97200 OK 425 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/02/GST-S330AC-2A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 425 kB (424649 bytes)
Hash 31c6852e3bbcca7aaf57848a861f4625
ed731fe1ed1c0e4dab6378819b806711016b5ff8
d46fb46d620e1456f998fdc424777c11063852e6807fc45f0b1398389a15f5a0
GET /wp-content/uploads/2021/02/GST-S330AC-2A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:36 GMT
content-type: image/png
content-length: 424649
last-modified: Sat, 27 Feb 2021 08:36:32 GMT
etag: "603a0490-67ac9"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.autoads.asia/PushNotification/AutoAdsPushNotifyNoneSDK.js
171.244.15.40200 OK 3.9 kB URL HTTP/1.1 cdn.autoads.asia/PushNotification/AutoAdsPushNotifyNoneSDK.js
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (11551), with no line terminators
Hash 52b239b7673761fa8324e791f38d7965
aa4c156bc467bda13d39041cf0e65c37dad79f6c
9946bf813a718803389020246cd92a358194f570c71cb1e03534a76ceccdf2fe
GET /PushNotification/AutoAdsPushNotifyNoneSDK.js HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Wed, 24 Feb 2021 08:56:27 GMT
Accept-Ranges: bytes
ETag: "806f76ef8aad71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Wed, 28 Sep 2022 03:05:37 GMT
Content-Length: 3875
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_2; path=/
cdn.autoads.asia/maxlead/1.6.x/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
171.244.15.40200 OK 59 kB URL HTTP/1.1 cdn.autoads.asia/maxlead/1.6.x/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65179), with no line terminators
Hash f781644d9fbf52d7c186c7080045451b
5121c43a966b320a44d03e1c040da1066fc44bd6
e11d0b7a24c02f47b12ba1b24cc84c06de6303776e30b5d4c4c0ce1838836a8b
GET /maxlead/1.6.x/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5 HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Fri, 01 Jul 2022 06:58:59 GMT
Accept-Ranges: bytes
ETag: "80fbc39188dd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Wed, 28 Sep 2022 03:05:37 GMT
Content-Length: 59409
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_1; path=/
cdn.autoads.asia/maxlead/1.6.x/content/aml-widget.min.css?v=1.6.x
171.244.15.40200 OK 16 kB URL HTTP/1.1 cdn.autoads.asia/maxlead/1.6.x/content/aml-widget.min.css?v=1.6.x
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 6f25ae980e1b31bb83dea8727cc88f6c
a49249e0ba6760cad06b8d62c35d15476302f9df
f53e436441acbc54a91b67157f9bb0b72f96763cc7e6e8ce60f5380b6abb2e33
GET /maxlead/1.6.x/content/aml-widget.min.css?v=1.6.x HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/css
Content-Encoding: gzip
Expires: -1
Last-Modified: Thu, 08 Jul 2021 06:50:54 GMT
Accept-Ranges: bytes
ETag: "05bcc98c573d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Wed, 28 Sep 2022 03:04:28 GMT
Content-Length: 16408
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn21_1; path=/
api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
171.244.15.40200 OK 0 B URL HTTP/1.1 api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken= HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-enter-journey,x-maxlead-ismobile,x-maxlead-ispostback
Referer: https://www.gshock-vietnam.vn/
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type,x-enter-journey,x-maxlead-ismobile,x-maxlead-ispostback
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 28 Sep 2022 03:04:28 GMT
Content-Length: 0
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api21_2; path=/
api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
171.244.15.40200 OK 5.4 kB URL HTTP/1.1 api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5215), with no line terminators
Hash 9a41fdd95a15968ce9d95cc116e3b69d
8afdb2d27f824ec592b43aa5de198b9b4f01ceef
cc4401de3b62c852d7b0f7bb37be618fe350a1318ee42df4772e924d51519997
POST /maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken= HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
X-MaxLead-IsPostBack: false
X-MaxLead-IsMobile: false
X-Enter-Journey: null
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 28 Sep 2022 03:04:29 GMT
Content-Length: 5443
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api21_1; path=/
alpha2.autoads.asia/js/autoads-tracking.js
171.244.15.40200 OK 1.8 kB URL HTTP/1.1 alpha2.autoads.asia/js/autoads-tracking.js
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 85c5ad182c81536e92f204bc0c63f4a4
9b3f06b6bdb62c549e5340b072b2ae37c6f95de6
2555da6178104f7afe86a4d4d5a28b2026d98534d939fe336212c5d9f30ca5e0
GET /js/autoads-tracking.js HTTP/1.1
Host: alpha2.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Mon, 03 May 2021 08:05:54 GMT
Accept-Ranges: bytes
ETag: "05dbe23f33fd71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Wed, 28 Sep 2022 03:05:38 GMT
Content-Length: 1835
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:38 GMT
Last-Modified: Wed, 28 Sep 2022 01:52:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:38 GMT
Last-Modified: Wed, 28 Sep 2022 01:52:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 02:41:09 GMT
expires: Wed, 28 Sep 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 1469
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1725
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:38 GMT
Last-Modified: Wed, 28 Sep 2022 02:36:53 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/vi_VN/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 9006d490af12607a8beefffaa1eb41b2
7398a21fa74ed21649b99c2553f6b9cc61577bf2
d7b55eadade1594bd501d1df9e01f391de2cad515921551061bdf52d98b34c37
GET /vi_VN/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 62ca7567875bc1bcd198e530a6fb8a26
etag: "1665cb0d74921f9a7cceea027a9be82c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 28 Sep 2022 03:24:06 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: kAbUkK8SYHqL7v/6oetBsg==
x-fb-debug: 9uUNxuK4560Hj61gPNog5SdSu6OLxtiEw9W0l9lkwIQxLjlk8sPi/7wZKB/KHPPX3t1vT/0Em0KD4VcVVD9dDQ==
content-length: 1686
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 03:05:38 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 28 Sep 2022 03:05:38 GMT
expires: Wed, 28 Sep 2022 03:05:38 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:38 GMT
Last-Modified: Wed, 28 Sep 2022 01:52:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
cdn.autoads.asia/maxlead//themes/tracking/index.html?origin=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4=&url=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4v&websiteId=55316&uid=&hasLead=false
171.244.15.40200 OK 1.7 kB URL HTTP/1.1 cdn.autoads.asia/maxlead//themes/tracking/index.html?origin=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4=&url=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4v&websiteId=55316&uid=&hasLead=false
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ff646fe3baf026018cd26eb937ff0742
638784c59eaa6ab4af08a410b55a16d247b0808d
0ff7e81183e0fa8d5126b9104246492b1c99f175ec2ce4f4a1d190593af5f0f3
GET /maxlead//themes/tracking/index.html?origin=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4=&url=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4v&websiteId=55316&uid=&hasLead=false HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Content-Encoding: gzip
Expires: -1
Last-Modified: Mon, 05 Jul 2021 08:22:10 GMT
Accept-Ranges: bytes
ETag: "06582d97671d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Wed, 28 Sep 2022 03:04:29 GMT
Content-Length: 1748
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn21_1; path=/
connect.facebook.net/en_US/sdk/xfbml.customerchat.js
157.240.200.14200 OK 93 kB URL HTTP/2 connect.facebook.net/en_US/sdk/xfbml.customerchat.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (20897)
Hash 4816ed0057409c746275e147d4421479
61863cf426c7c4e1a31c62cae97ce6d197cd7c98
409a1c10ee6df0b0090beb2c0b7d3946fd9c03a52f47f5328a66f5040f65ba50
GET /en_US/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1d93658faa5b359cd3d61083bf22e3c1
etag: "624d467d522992a992d988efda36d7de"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 28 Sep 2022 03:06:25 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: SBbtAFdAnHRideFH1EIUeQ==
x-fb-debug: xImBFvWOrB/8sTakP2EboVlCS1sFHr87c+nHh+inFXnW5nuPlk9B/HRDPnEQpyDdE7b/hjcxF7O+WfjiTWfmQg==
content-length: 92887
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 03:05:38 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (62321)
Hash 8b8d876e4c2d907274b2997757fd9564
218ad7b9bd49797f1f68f5583e6697f1da4323b9
24929a2938d8d438047c737b6928964e7b8c1feb024517befcd8f8eda8aaeb63
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: VEwYsGbAR2yf5C4UNzQjgk5rNAmDPBNu94vEX5VIorxnyumJq7ERVQ592uCAA0P6xyo+sBCsArOxV3rLLs2nGQ==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 03:05:38 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.autoads.asia/pushnotification/api/v1/GetPushConf?business_id=f6685fa394084cb98943016236c7dbb5
171.244.15.40200 OK 408 B URL HTTP/1.1 api.autoads.asia/pushnotification/api/v1/GetPushConf?business_id=f6685fa394084cb98943016236c7dbb5
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash 29fcf6f0e9970e6bc54996075db94de4
5ad15b416709b26cd903c36fdbc6348f7d61bc8c
9a738386a4cc8d952749b6a19bb05f3e044a9a1a3f8f5dcc43e6a8e297dbf61b
GET /pushnotification/api/v1/GetPushConf?business_id=f6685fa394084cb98943016236c7dbb5 HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gshock-vietnam.vn/
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 408
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 28 Sep 2022 03:05:38 GMT
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api20_1; path=/
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=6.0.2
112.78.1.97200 OK 1.2 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with CRLF line terminators
Hash c1f1c9e2edc62d6dbe35b9dc67fb3f71
5846e3bbaefb67ba0325e5bc635c895fc6767304
62021f03058ba9058c3df34a6160820a2e17c21323449f9d4531187b8d149648
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-110"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/vi_VN/sdk.js?hash=f7ae3d1d53ba26a148b0f1e7c3929a80
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js?hash=f7ae3d1d53ba26a148b0f1e7c3929a80
IP 157.240.200.14:0
File type ASCII text, with very long lines (13260)
Hash 4517c0e98bac48603ff4a72de7549d1e
92ce1866cbf3a00dcf088a87dabc331a6362f8c0
e8e887328f8b2e039e2ddbfdbc0f5716c1f604f13096c4e7d7e5f16731115201
GET /vi_VN/sdk.js?hash=f7ae3d1d53ba26a148b0f1e7c3929a80 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0e4ce07a0790ab36f3b4b41fdf5210d0
etag: "704c2d3ed899088a04dffc813840d9c9"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 28 Sep 2023 01:43:49 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: RRfA6YusSGA/9Kct51SdHg==
x-fb-debug: 6QbEd/RKPk7ZCgCYLTHlAqt+UWdrbKlgIr23dWqKJnrJA3mz7IV1ahl3+oDWOW/Xl3hyQ2Fjb0wTUf+9COFaPg==
content-length: 87499
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 03:05:38 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/831407616/?random=1664334336493&cv=9&fst=1664334336493&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9q0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&auid=275419680.1664334333&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/831407616/?random=1664334336493&cv=9&fst=1664334336493&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9q0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&auid=275419680.1664334333&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2652), with no line terminators
Hash 5223c138e674ec95bbc98fcd13ee6b37
4b1d1dc192ce07a34f3cc6011f48972b4b8695b3
6f908b4379bb768934b71554afe982627a1f97def609a872aa3767434958a1da
GET /pagead/viewthroughconversion/831407616/?random=1664334336493&cv=9&fst=1664334336493&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9q0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&auid=275419680.1664334333&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 03:05:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1118
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 03:20:39 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=167610954189790&ev=fb_page_view&dl=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&rl=&if=false&ts=1664334336640&sw=1280&sh=1024&at=
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=167610954189790&ev=fb_page_view&dl=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&rl=&if=false&ts=1664334336640&sw=1280&sh=1024&at=
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=167610954189790&ev=fb_page_view&dl=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&rl=&if=false&ts=1664334336640&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 03:05:39 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/831407616/?random=1664334336493&cv=9&fst=1664334000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9q0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&async=1&fmt=3&is_vtc=1&random=112052880&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/831407616/?random=1664334336493&cv=9&fst=1664334000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9q0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&async=1&fmt=3&is_vtc=1&random=112052880&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/831407616/?random=1664334336493&cv=9&fst=1664334000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9q0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&async=1&fmt=3&is_vtc=1&random=112052880&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 03:05:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:05:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
Hash 75ceb8644566bf91295c2cd1fc6cf8fc
204eb689fc3eec1e6d0ed9f50acde56e574e4587
6e0e450c26e4a77141dc123b71412cb8e2284d6c5cfdc57cafee7ae2555cc32e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 19021
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.autoads.asia/maxlead/1.6.x/scripts/collect.js
171.244.15.40200 OK 752 B URL HTTP/1.1 cdn.autoads.asia/maxlead/1.6.x/scripts/collect.js
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c675f50251e6564e08ff607c0e8030db
f7d96ba52170754c9c1ee7fa2c34768d9dc2ab8a
d8b850dba505dd03d17d6ce211b8e8fb385f1fd512d529d2814a2b7387a1c2ca
GET /maxlead/1.6.x/scripts/collect.js HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: __autoads_identity=166508fe-5cb2-4c0f-bcb2-12f2445d1f31
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Thu, 19 May 2022 10:08:16 GMT
Accept-Ranges: bytes
ETag: "72f1735b686bd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Wed, 28 Sep 2022 03:05:39 GMT
Content-Length: 752
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_1; path=/
www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 18:24:45 GMT
etag: W/"6310f8ed-2fb3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-72a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-5db"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-7ec"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 18:24:45 GMT
etag: W/"6310f8ed-25d0"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-2a4c3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/zxcvbn.min.js
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/zxcvbn.min.js
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/zxcvbn.min.js HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h; _gcl_au=1.1.275419680.1664334333; __maxlead_session=s0YA9XbL; _ga=GA1.2.2078663861.1664334336; _gid=GA1.2.102920310.1664334336; _gat_UA-145079288-1=1; __maxlead_uuid=166508fe-5cb2-4c0f-bcb2-12f2445d1f31; _fbp=fb.1.1664334336809.1439580531
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:39 GMT
content-type: application/javascript
last-modified: Sat, 26 Oct 2019 00:17:07 GMT
etag: W/"5db39083-c8bdd"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-admin/js/password-strength-meter.min.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-admin/js/password-strength-meter.min.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-admin/js/password-strength-meter.min.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 08:32:16 GMT
etag: W/"62286610-463"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
142.250.74.163200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 142.250.74.163:0
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:35:48 GMT
expires: Thu, 21 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 545387
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-85b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-27ee"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-48b9"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.css?ver=4.14.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.css?ver=4.14.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.css?ver=4.14.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 18:24:39 GMT
etag: W/"632a0567-8e18"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-widgets/assets/css/font-awesome.min.css?ver=4.7.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-widgets/assets/css/font-awesome.min.css?ver=4.7.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-widgets/assets/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:42:09 GMT
etag: W/"5fb22d51-777f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-148"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 08:32:17 GMT
etag: W/"62286611-15db1"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1
157.240.200.16200 OK 0 B URL HTTP/2 socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1
IP 157.240.200.16:0
GET /new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1 HTTP/1.1
Host: socialplugin.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://www.gshock-vietnam.vn
x-fb-debug: vZGPXFyprVybLpgfTH944ndx47xLyR1V9wBWevcn+F5xcjYs4LWJ46dUcTwIzUWzLS9C5GfgIdFvXRTxlot1nA==
date: Wed, 28 Sep 2022 03:05:39 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-b7a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 03:56:54 GMT
etag: W/"62282586-719"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-194b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-5712"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 08:32:17 GMT
etag: W/"62286611-2bd8"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-132e"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1
157.240.200.16200 OK 0 B URL HTTP/2 socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1
IP 157.240.200.16:0
GET /new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1 HTTP/1.1
Host: socialplugin.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://www.gshock-vietnam.vn
x-fb-debug: T0XvuhSjpDDldc1Gyr60q95xA9UjtWIDcSmtfyHQ27j4SusKJ1P0QhqPCOcKoYPYKutvvNwNOQZvbCBo9LRfig==
date: Wed, 28 Sep 2022 03:05:39 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery-ui.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery-ui.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/js/jquery-ui.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-4e9b1"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-2525"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-infinite-scroll/flatsome-infinite-scroll.js?ver=1.5
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-infinite-scroll/flatsome-infinite-scroll.js?ver=1.5
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/flatsome/inc/extensions/flatsome-infinite-scroll/flatsome-infinite-scroll.js?ver=1.5 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-b2a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/woocommerce.js?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-3967"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-23a2b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/edificevietnam/style.css?ver=3.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/edificevietnam/style.css?ver=3.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/edificevietnam/style.css?ver=3.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: text/css
last-modified: Sun, 21 Jul 2019 08:38:34 GMT
etag: W/"5d34248a-12f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-bdd"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 18:27:27 GMT
etag: W/"62cdbd0f-15b64"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.9-wc.6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.9-wc.6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.9-wc.6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-12d2b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-3e04"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:34 GMT
content-type: text/css
last-modified: Thu, 01 Sep 2022 18:24:45 GMT
etag: W/"6310f8ed-aab"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery.ui.touch-punch.min.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery.ui.touch-punch.min.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/js/jquery.ui.touch-punch.min.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=ng3ed29go0lhmlkne3tfch494h
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:05:35 GMT
content-type: application/javascript
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-50b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2