r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13241
Expires: Fri, 25 Nov 2022 08:41:46 GMT
Date: Fri, 25 Nov 2022 05:01:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6608
Expires: Fri, 25 Nov 2022 06:51:13 GMT
Date: Fri, 25 Nov 2022 05:01:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2112
Cache-Control: max-age=108318
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:05 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:06:23 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IYc9Z0kMJZ8xJ8A9l5u0p22RJ/tOyUgYnYgkkYUsbtrWAwqM4dG2+NezjkVkNpSoclySMJ9M5h0=
x-amz-request-id: DCMARP1P4NXQVWWH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 04:43:42 GMT
age: 1043
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 04:19:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2522
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 05:01:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 04:11:11 GMT
cache-control: public,max-age=3600
age: 2995
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3869
Cache-Control: max-age=105012
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:06 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:11:18 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
chesuoigiang.vn/css/common.css
125.212.221.113200 OK 1.7 kB URL HTTP/1.1 chesuoigiang.vn/css/common.css
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 10cf29b6898d9acda28a5248d5888f4c
1f6c5e237d23292143ec926cc76f69984b87d3da
767e80d081f777b0e345e85f2706c4e85789197ad4c4e698a081db23e39de5bc
GET /css/common.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:24 GMT
Accept-Ranges: bytes
ETag: "69a9281e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 1720
www.googleadservices.com/pagead/conversion.js
142.250.74.162200 OK 17 kB URL HTTP/1.1 www.googleadservices.com/pagead/conversion.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (2772)
Hash 66d15569d62036ed6fe2267dfbf9058f
c8c197520baf682bceeb58a33fa8cf27e46fa87d
33845683646c35e8b24272efcc4f08fe61b8e3e529e2b6c9d955cfdfbf6c05e5
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 25 Nov 2022 05:01:06 GMT
Expires: Fri, 25 Nov 2022 05:01:06 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 16359567893097152046
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 17401
X-XSS-Protection: 0
push.services.mozilla.com/
35.163.114.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.114.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dEbkzGYtMtNAhlBnYzBZPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jFlKbIXMDKfVeGnZkZBf6YWI+bs=
chesuoigiang.vn/js/utilities.js
125.212.221.113200 OK 947 B URL HTTP/1.1 chesuoigiang.vn/js/utilities.js
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 59e3674a8715d0167674832750ea7dc6
1041077c704ec40212456278ea0b7c3395a00051
b571cf4212aaca6674a40ccfffd159da656b7106ba2f1d23b1ce1ae49a699133
Analyzer Verdict Alert fortinet Malware
GET /js/utilities.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 26 Aug 2016 01:35:25 GMT
Accept-Ranges: bytes
ETag: "806c2e1e3affd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 947
chesuoigiang.vn/css/theme.css
125.212.221.113200 OK 4.2 kB URL HTTP/1.1 chesuoigiang.vn/css/theme.css
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type ASCII text, with CRLF line terminators
Hash 190426c03c396881727a5be667f7f73b
1cc6608e16d2c1ed920ddda856e7b95604499bc6
027ee5fb1e80ebe684446606d6aa2560c782e86c92663611cf3b62cba3bcec84
GET /css/theme.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Fri, 26 Aug 2016 01:35:24 GMT
Accept-Ranges: bytes
ETag: "0d6951d3affd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 4177
download.skype.com/share/skypebuttons/js/skypeCheck.js
23.38.200.142200 OK 21 kB URL HTTP/1.1 download.skype.com/share/skypebuttons/js/skypeCheck.js
IP 23.38.200.142:0
File type ASCII text, with very long lines (16243)
Hash 5132cacba394327180641ceacd2ff941
1cb9c7f60a242c70a2497f3f1142b506e2274d8b
195ef2d533633828585f31fbc97983f55b8457c19a37f88594353f8221959d6f
GET /share/skypebuttons/js/skypeCheck.js HTTP/1.1
Host: download.skype.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 200 OK
Content-Length: 21434
Content-Type: application/javascript
Content-MD5: UTLKy6OUMnGAZBzqzS/5QQ==
Last-Modified: Fri, 23 Sep 2016 13:35:37 GMT
ETag: 0x8D3E3B6809EC797
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 950433c4-401e-013e-3308-c23018000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Cache-Control: max-age=86400
Date: Fri, 25 Nov 2022 05:01:06 GMT
Connection: keep-alive
chesuoigiang.vn/ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8
125.212.221.113200 OK 15 kB URL HTTP/1.1 chesuoigiang.vn/ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6f57548a974752f293bf893943f57390
c61de2a3bfd552521f58734b9f6e93d5ec9ba0f0
93103bf999819b0f4f1617561d15218551d89fcb5941ffa38ab245694187cbd8
GET /ScriptResource.axd?d=eNnNb2xJVk5vWW5UDN06QxirmoE7z2gV_eMz2GnGpiYhnrL56lQB9muZolx33G7Pmv4mbB8b8jX6HVO6GuZ5tGKKrnpIJyNXILvopOoRWNWSR8mOq9bpXw66juozpNw_RHTx40veu5F0umSJFjl8o2re3PTE8RWZ_LcT1yV60UXTWBIgAQQ3LWQ9PHauXHhVSjVl0g2&t=49337fe8 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sat, 25 Nov 2023 19:00:16 GMT
Last-Modified: Fri, 25 Nov 2022 19:00:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 15431
chesuoigiang.vn/js/jquery-1.3.2.min.js
125.212.221.113200 OK 46 kB URL HTTP/1.1 chesuoigiang.vn/js/jquery-1.3.2.min.js
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type ASCII text, with very long lines (46986), with CRLF, LF line terminators
Hash 7a246d4a61085f1343603cdfd4094802
15ee77ec2bee6f2fcd52b583eb7c633f2a597105
f89033ad602166d1a217a04122c78f4e140ed104f77f3107c5a9084227105e12
Analyzer Verdict Alert fortinet Malware
GET /js/jquery-1.3.2.min.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 26 Aug 2016 01:35:25 GMT
Accept-Ranges: bytes
ETag: "806c2e1e3affd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 46017
chesuoigiang.vn/ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8
125.212.221.113200 OK 48 kB URL HTTP/1.1 chesuoigiang.vn/ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6e77a05ce1d5e8d19aa218e5a251e73f
af19b89b4228d9d552692cd3756f9fa740ea133c
0391959ff727c700b4f08adad1ea60c1d293be1851cf918cb1dc6ba1380d8f30
GET /ScriptResource.axd?d=caWFW8CVefPGrvziD1Oya_y7VyGe2eZZI2FZBlITmQaPtfRouqVhUIbcJFVuRMbNul0bXnFDVeEVpTTH3StYMUeW4f2pzXucqpgXH6X3z0Cv4CiDLhmURAGbpJBhoQOvuRlEJEJmKuFKrYIwgbTEELROfVA9kDTOuWPDUqbvIAEfsgtU0&t=49337fe8 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sat, 25 Nov 2023 19:00:16 GMT
Last-Modified: Fri, 25 Nov 2022 19:00:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 47752
chesuoigiang.vn/ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38
125.212.221.113200 OK 12 kB URL HTTP/1.1 chesuoigiang.vn/ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (313), with CRLF line terminators
Hash 10114761f3c8787d3f4049d73f2e4967
9868cf3681bdb1ca18576ee9db8eec01d66ccd3a
24ff88dceb35066e303bb183c403a674b08d46d91e03f0a3cd9cdaa343643646
GET /ScriptResource.axd?d=3GqxxixrkVNDJ4PtWd4Au1Dh3vPS4sQPUbFai7MVHqOWPMIxeQ2AbEGNtqANbWigggk5wHPPZyHmUXdSqJ3hkf_Dq2ozmJnCXrdCujA5HKT3khy0uJc0SkoCQoLv7OngWXxNlRQ9q6LaFeyhaxZGQs32DkA1&t=ffffffff87636c38 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Sat, 25 Nov 2023 19:00:16 GMT
Last-Modified: Fri, 25 Nov 2022 19:00:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 12329
www.googletagmanager.com/gtm.js?id=GTM-W6SNN9
142.250.74.168302 Found 250 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-W6SNN9
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c72d2496df6f1e9536aaf1737be0152a
dabe01094217f439b22e3c6f2adf1a45dd451e18
591e34f9d7cb0bff9ad24f63b633f5823d30ab1fbdc6781e142adeb90dd48061
GET /gtm.js?id=GTM-W6SNN9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-W6SNN9
Cross-Origin-Resource-Policy: cross-origin
Date: Fri, 25 Nov 2022 05:01:07 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 250
X-XSS-Protection: 0
trongraulamvuon.com/wp-content/uploads/2013/04/tra-xanh.jpg
104.21.1.162301 Moved Permanently 0 B URL HTTP/1.1 trongraulamvuon.com/wp-content/uploads/2013/04/tra-xanh.jpg
IP 104.21.1.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2013/04/tra-xanh.jpg HTTP/1.1
Host: trongraulamvuon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 05:01:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 25 Nov 2022 06:01:07 GMT
Location: https://trongraulamvuon.com/wp-content/uploads/2013/04/tra-xanh.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LlgYjxuUX2vyanqMxKLlwHXUrvX6vHDSCyRQDYDRpXhcctTxC%2FS1Ih%2B37%2F2DOyyFmss3CDPB8vMG4TTYoP9OPYMvYfLo8f0%2FGyLYKHlW%2BY6jEYfbgmMMxRR3AOxwk16BYYoTrnNq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f7d3174b94b51d-OSL
alt-svc: h2=":443"; ma=60
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/88276402_554944865375556_1715989565333831680_n.png
125.212.221.113200 OK 7.1 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/88276402_554944865375556_1715989565333831680_n.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash ca9d8deec09d7b1e1f5d2eb99c5662c1
e7f5b35b6d51d65b6e008d2d83e2c9bba3681d52
29e28b1a5149f1ff7becd9ab9d3ce4614e93162c1bb74fa4e5bc28608b64fd84
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/88276402_554944865375556_1715989565333831680_n.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 7060
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-W6SNN9
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-W6SNN9
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 4bddad5cdeb3364d37507861065f1707
10cd1977f5175c4e2ea44a5b07c380f3ef73416f
cc924d7e9c541492ca1eb4e840d99327cf0c21635b9f34cff7de0c0fa36825f3
GET /gtm.js?id=GTM-W6SNN9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 05:01:07 GMT
expires: Fri, 25 Nov 2022 05:01:07 GMT
cache-control: private, max-age=900
last-modified: Fri, 25 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chesuoigiang.vn/ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38
125.212.221.113200 OK 4.9 kB URL HTTP/1.1 chesuoigiang.vn/ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (9936), with CRLF line terminators
Hash 1608a79b0c1dcd440b2c5431e471da10
14fd56a499d143e151133799ab810c7c9951e896
1a2388d7446f51910bac2ca1d1a7a9687e8773204ef9beed4d80ac2933aac968
GET /ScriptResource.axd?d=WRyh4G9jKD7MTCA0glSzNFOnrWQ5HnIjCiXdDB2sUvxrq6Tk_NMGxFay6pSnGFgTcuo5B5d43Qnf3EI3ITOnpmvdront2Lp0q8IhY4hZG_RaU-h7f7A-klgyHqdt0NTrEM4bYuWExB56RuRR19bg2inOMhzGhsHCrAVHTt22PT-fr0BY0&t=ffffffff87636c38 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Sat, 25 Nov 2023 19:00:16 GMT
Last-Modified: Fri, 25 Nov 2022 19:00:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 4880
chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
125.212.221.113200 OK 64 kB URL HTTP/1.1 chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13652), with CRLF line terminators
Hash 6d8e832e414ac7c3a26afee9d6da678f
afb26b654c3ba746d1aed97c9cc5fb020da5ef34
4a7d366ca1f2264e818650eb4b8ece56e562684752d1736b9302622a126a8b84
Analyzer Verdict Alert fortinet Malware
GET /11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; path=/; HttpOnly; SameSite=Lax
lang=VIE; expires=Sun, 25-Dec-2022 19:00:55 GMT; path=/
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:55 GMT
Content-Length: 63488
static.addtoany.com/menu/page.js
104.22.70.197301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 05:01:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 25 Nov 2022 06:01:07 GMT
Location: https://static.addtoany.com/menu/page.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 76f7d318bdd315ec-ARN
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
chesuoigiang.vn/ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38
125.212.221.113200 OK 3.2 kB URL HTTP/1.1 chesuoigiang.vn/ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 438d8d97d1a8632dbff33af60dcb8dfc
a3c044611d8d7e070d575c53e50de05eef578f3c
1def3724a340c252195ea314600ac4f778b416f6204b7641a1d27565a79cb29e
GET /ScriptResource.axd?d=_fJsUrEmCwgiKJMzqZ-wHGA0GOe17fT_f7eHbeYFS-bvcLQVfBIDcrCWMssDgWdgNjUYu8JO5EN0iFf5J26EsK8k0C7BXF32UQydFqSuec3nK1FztxjyUp8zLz7kmWi7YabYrW9lC8cMPETs7D-11wV1p5TFs4Kjfcubc182qyfJZMTPxwO-VDMZh73dVz9EHf5B4Q2&t=ffffffff87636c38 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Sat, 25 Nov 2023 19:00:16 GMT
Last-Modified: Fri, 25 Nov 2022 19:00:16 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 3166
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 627c68a63bc2b5501fec5d03ad0c5b26
844ff7f2036992978fbfe6ca33616be8d158fd3d
b9604b0d348a4d614f76bea0584d11cbe1a636187f1f9f72d8fa1d6d0c247ca0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5192
Cache-Control: max-age=131179
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Etag: "637f9536-118"
Expires: Sat, 26 Nov 2022 17:27:26 GMT
Last-Modified: Thu, 24 Nov 2022 16:00:54 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
trongraulamvuon.com/wp-content/uploads/2013/04/tra-xanh.jpg
104.21.1.162200 OK 27 kB URL HTTP/2 trongraulamvuon.com/wp-content/uploads/2013/04/tra-xanh.jpg
IP 104.21.1.162:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 350x293, components 3\012- data
Hash cb594ffc84a2294bde38771d73d59d5a
f6257bbe1dba4bd22d4b5acc05bcb0da6a95c33b
71e7af96e5822556ff64fcfd1d768f8e43714d7596ce6981e8540cf8199b767f
GET /wp-content/uploads/2013/04/tra-xanh.jpg HTTP/1.1
Host: trongraulamvuon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 05:01:07 GMT
content-type: image/jpeg
content-length: 26827
last-modified: Sat, 18 May 2013 05:48:42 GMT
etag: "5197163a-68cb"
expires: Sun, 25 Dec 2022 05:01:07 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ox1Tbyf809pPLrZig1vSj%2F9%2FWbwv%2BXICudgkJC6eri5QZDYs0IzwQ5tanpaCrkje6l%2F%2FNKm5pMsZxwHtLxj6iaaEILO07jwCB7aXfdZCtm4bMny12L%2Ff%2BaatCYOjhJrvzmCHa4IR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7d3177aa1b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 627c68a63bc2b5501fec5d03ad0c5b26
844ff7f2036992978fbfe6ca33616be8d158fd3d
b9604b0d348a4d614f76bea0584d11cbe1a636187f1f9f72d8fa1d6d0c247ca0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5192
Cache-Control: max-age=131179
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Etag: "637f9536-118"
Expires: Sat, 26 Nov 2022 17:27:26 GMT
Last-Modified: Thu, 24 Nov 2022 16:00:54 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
chesuoigiang.vn/WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080
125.212.221.113200 OK 23 kB URL HTTP/1.1 chesuoigiang.vn/WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type ASCII text, with CRLF line terminators
Hash 90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db
GET /WebResource.axd?d=Pl9L4y03UTbn2jXHENJuBSKQRlBdYblGi_oPOOlgHZmPDEeMsmERfKUQNvGLSapaOaSz9jLPMW1AJ8oOMi_dVLscoxM1&t=637814365746327080 HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Expires: Sat, 25 Nov 2023 19:00:16 GMT
Last-Modified: Sat, 26 Feb 2022 09:42:54 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 23063
chesuoigiang.vn/pic/web/theme/bg.gif
125.212.221.113200 OK 829 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/bg.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 1 x 1100\012- data
Hash 1f7f200c6208492ca97d98632924f37e
fdfcdf85e19c8e99a460c9651731e3136008f94b
ff2e7399718c74fa4cfbeba03c0cfe16710889cab76378ca01446c980bcdda4e
GET /pic/web/theme/bg.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "6c6cab413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 829
static.addtoany.com/menu/modules/core.9b4ec89f.js
104.22.70.197301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/modules/core.9b4ec89f.js
IP 104.22.70.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/modules/core.9b4ec89f.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://chesuoigiang.vn
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 05:01:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 25 Nov 2022 06:01:07 GMT
Location: https://static.addtoany.com/menu/modules/core.9b4ec89f.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 76f7d319eca795f6-ARN
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chesuoigiang.vn/themes/1/js-image-slider.css
125.212.221.113200 OK 3.2 kB URL HTTP/1.1 chesuoigiang.vn/themes/1/js-image-slider.css
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type ASCII text, with CRLF line terminators
Hash 4187a6368c17aa8e39ff01240c40aa8c
fb9adb1916f167895e6a2e6c645ee35a77a580d4
98768cd1c690371972a5f3647af1d10984a74bc98fabbe5af4384dc568ae30e7
GET /themes/1/js-image-slider.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:35 GMT
Accept-Ranges: bytes
ETag: "8b65b3243affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 3204
static.addtoany.com/menu/eso.9b4ec89f.js
104.22.70.197301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/eso.9b4ec89f.js
IP 104.22.70.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/eso.9b4ec89f.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 05:01:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 25 Nov 2022 06:01:07 GMT
Location: https://static.addtoany.com/menu/eso.9b4ec89f.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 76f7d31a9ee215ec-ARN
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
chesuoigiang.vn/themes/1/js-image-slider.js
125.212.221.113200 OK 7.2 kB URL HTTP/1.1 chesuoigiang.vn/themes/1/js-image-slider.js
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
Hash 5cb92e7b318d8fb03548d0412469bb54
85b5ff3b05ac332df14d7f4edca2ef283035e6e0
4b8d2e36f4c5d12526106d0e34543f2e3c842e1b3a07b4fa262613a0d7044b4b
Analyzer Verdict Alert fortinet Malware
GET /themes/1/js-image-slider.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 26 Aug 2016 01:35:35 GMT
Accept-Ranges: bytes
ETag: "804d24243affd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 7162
chesuoigiang.vn/themes/generic.css
125.212.221.113200 OK 874 B URL HTTP/1.1 chesuoigiang.vn/themes/generic.css
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 570b3638c0f62364b87e001b3f0dbf58
c28ded9562957191c99b74b2405a1b85d7484e3b
39b03f559ec7f197601cbdb1b8d55f7678a2a721bb5f16f809456ed2ad4b3b12
GET /themes/generic.css HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Fri, 26 Aug 2016 01:35:25 GMT
Accept-Ranges: bytes
ETag: "39ca801e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 874
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/4eb6b35d/www-player.css
142.250.74.14200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/www-player.css
IP 142.250.74.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7a4f3bc144a58504dd2185dae5f909bb
8f3e87d706fb3687047486cbe1b0abed9a06d811
a0b1b06622d124308fce2daa3ab851e057ff08126ba85cef596d279ffc2de6a5
GET /s/player/4eb6b35d/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Hu0sjSK6IZI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:52:58 GMT
expires: Tue, 21 Nov 2023 15:52:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/css
age: 306489
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4eb6b35d/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.14200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/4eb6b35d/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Hu0sjSK6IZI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:52:58 GMT
expires: Tue, 21 Nov 2023 15:52:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 306489
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4eb6b35d/player_ias.vflset/en_US/base.js
142.250.74.14200 OK 592 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/player_ias.vflset/en_US/base.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (517)
Size 592 kB (592489 bytes)
Hash c740b1903f51ecd2b32decf2a4b39ce1
50dc029c1d7cca728c9313ebe98e0d700ad6a36e
283d481df642787ffb565d6a7554d44b9b0cba77d21b59d9d85defe06e9c9399
GET /s/player/4eb6b35d/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Hu0sjSK6IZI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 592489
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:55:44 GMT
expires: Tue, 21 Nov 2023 15:55:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 306323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4eb6b35d/www-embed-player.vflset/www-embed-player.js
142.250.74.14200 OK 279 B URL HTTP/2 www.youtube.com/s/player/4eb6b35d/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.14:0
Hash 91ba8e39952a16f2ba8703b1d865ec3d
eb7f4692c11caed3a1ee4d6cd2b258e0ac1ac7fd
4897d9c6718061b63c0c3d9b1108075e6b9fa6336709352f5cbaca88d42d1869
GET /s/player/4eb6b35d/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Hu0sjSK6IZI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99035
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:52:58 GMT
expires: Tue, 21 Nov 2023 15:52:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 306489
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chesuoigiang.vn/autopopup/main.js
125.212.221.113200 OK 1.0 kB URL HTTP/1.1 chesuoigiang.vn/autopopup/main.js
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type ASCII text, with CRLF line terminators
Hash 67f71ec3f0da7be4dacb28c9e9b06bbe
8f5915c5811c1b45675b936a93171d211530977c
3b59287b854bfc0da11963183f2b77a44a1d6b25d8e027d9bc62f79824e396d9
Analyzer Verdict Alert fortinet Malware
GET /autopopup/main.js HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Fri, 26 Aug 2016 01:35:20 GMT
Accept-Ranges: bytes
ETag: "936b5b1b3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 1002
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.dmca.com/badges/dmca.css?ID=997ccc30-ad0f-41b5-9642-6af27c9e93dd
151.139.128.10200 OK 475 B URL HTTP/1.1 images.dmca.com/badges/dmca.css?ID=997ccc30-ad0f-41b5-9642-6af27c9e93dd
IP 151.139.128.10:0
File type ASCII text, with very long lines (829), with no line terminators
Hash ee475b948e19d08c09b8217d177966f8
8116eba634c0c0bb5edde40f02687c4508296d84
4916684239da77340c44d93cb89a7756d279531420c0884bd935d7d9f5f5b352
GET /badges/dmca.css?ID=997ccc30-ad0f-41b5-9642-6af27c9e93dd HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 05:01:07 GMT
Content-Encoding: gzip
Content-Type: text/css
Last-Modified: Wed, 06 Apr 2011 05:58:45 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Cache-Control: public,max-age=31536000
ETag: "594d7db01ff4cb1:0"
X-Powered-By: ASP.NET
X-HW: 1669352467.cds246.sk1.h2,1669352467.cds230.sk1.c
Link: <http://www.dmca.com/badges/dmca.css>; rel="canonical"
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Length: 475
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 26091
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 491349
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/repeat_left.gif
125.212.221.113200 OK 93 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/repeat_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 15 x 1\012- data
Hash 3fc85d4668bec0e9fdb02f3acb850923
c7a095b4e0dc06017c118ad0787399a0f7eca6e6
aade0e51d88d0e8dd89fecddd18bb061e7408daf771878913435b152d99099b4
GET /pic/web/theme/repeat_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "8478f9413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 93
chesuoigiang.vn/pic/web/theme/body_top_right.gif
125.212.221.113200 OK 682 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_top_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 19 x 20\012- data
Hash e92448f49637120b919c887839e3160f
1a862cd61a91fbcdc9f60e846c33b0819581e5bc
c0bb6273bc499dfdcc0f8cad942c73fe928210e726a7e039cca66c3b29ad482e
GET /pic/web/theme/body_top_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "3caac9413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 682
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16066
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 05:01:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16066
Expires: Fri, 25 Nov 2022 09:28:54 GMT
Date: Fri, 25 Nov 2022 05:01:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rKROwsZ-X8yDd4iVaYBaNFe6bgHaThxafIt76PBgLoOTrPMqAVQ9iQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:22:43 GMT
age: 23905
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 37 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
Hash 52c79a6264320f9b22fcf035b4b714ee
799de07e5589e62f72097584e9d643af63536ecc
7400df70d0e2c81d0417fb3b5414aa5f5cd60ac6db03560b663060db3e644137
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 86200
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/repeat_right.gif
125.212.221.113200 OK 93 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/repeat_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 15 x 1\012- data
Hash 273f9fd4fde6844461d4684ff1115123
a62e9b4e64b41b03702e9ad9710d7c5900ea9d2b
9261709bfce43c2ccf692f07bf9ba876f8a8259247f4cd0e670649ee82da9cc4
GET /pic/web/theme/repeat_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "ea6f7413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 93
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 25589
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f59a591b222397ff0f01c22a0786e660
6a8504212141af411a18ce58960c8bb52e8116ac
624847cfdfcd770d2dee8a2b85f3c7c480cda58ba2aef1135184f3dffc30d1f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8277
x-amzn-requestid: e84a5668-cd91-42af-b6de-5eb694ea56e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-KFtmIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38d-64513fb257d83b9847c82929;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O4PtH20kVWgH-Jf_TivPqMqjnwrZB_8XvZAkDDzLLFPXVjqzkz1YJw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:59:22 GMT
age: 25306
etag: "6a8504212141af411a18ce58960c8bb52e8116ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6b9b5ebc32235ed8f3e15df013963f0
46ee95ebee3d60f64d2b7f568673b13ea27a42a3
4fdf6f239f6931442d93a00acd8af1f5192f77143885945c27e137ef3683338e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11586
x-amzn-requestid: 30d340e5-328d-4f00-8cd4-3cb6e2b50265
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JtyEIHoAMFdnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2324-09bb4d434ff852b456537e15;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:08 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: TYDelnop2OJO_fQdmSzyZJLYx94FU1GxYpDjWCTp3moRS7qzibvTSA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:56:21 GMT
age: 75887
etag: "46ee95ebee3d60f64d2b7f568673b13ea27a42a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 2288
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/body_right.gif
125.212.221.113200 OK 6.0 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 15 x 1011\012- data
Hash bb5530f0323a1cdfeca4d6e217774491
da4a5e66ce87efdbfea4c2f24fed8c0ed777fbca
3be86eccda5683aad16c991bd59b6a07b0fa01b7a3c3182795dbb653b7a72bb9
GET /pic/web/theme/body_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "9d38c7413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 6045
chesuoigiang.vn/pic/web/theme/header_tet.png
125.212.221.113200 OK 59 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/header_tet.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 1366 x 129, 8-bit/color RGBA, non-interlaced\012- data
Hash 43411038577e9d427f24500a681dac4d
90fe1940eec43e1c81514d8ad88db551e509e355
02f8364b3e932d8feab7204bcb08d1431a823e852d098a3eba9bedc5a4d68a01
GET /pic/web/theme/header_tet.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/common.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "201deb413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 59145
chesuoigiang.vn/pic/web/theme/textbox_bg.png
125.212.221.113200 OK 1.1 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/textbox_bg.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 107 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 4acba4bff4c1cb2101f646cef5d1f12b
76b56ad69ef3a7af095d12be8f7b01e7e9f9d049
bf6a970988977d13f216a60fdc77f20d2319d851749531bc1a4807d5c9b937a0
GET /pic/web/theme/textbox_bg.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "685d423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 1142
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 05:00:21 GMT
expires: Fri, 25 Nov 2022 05:15:21 GMT
cache-control: public, max-age=900
age: 47
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 91ba8e39952a16f2ba8703b1d865ec3d
eb7f4692c11caed3a1ee4d6cd2b258e0ac1ac7fd
4897d9c6718061b63c0c3d9b1108075e6b9fa6336709352f5cbaca88d42d1869
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3828
Cache-Control: max-age=127653
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Etag: "637f8cc5-117"
Expires: Sat, 26 Nov 2022 16:28:41 GMT
Last-Modified: Thu, 24 Nov 2022 15:24:53 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
googleads.g.doubleclick.net/pagead/id
216.58.211.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 25 Nov 2022 05:01:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.tawk.to/586b4c224160416f6db9d58f/default
104.22.24.131200 OK 1.1 kB URL HTTP/2 embed.tawk.to/586b4c224160416f6db9d58f/default
IP 104.22.24.131:0
Hash d8fdf676170ad5707edcedc807486c04
d384928ea8fe3f6f977f95c53cbcaa0750484f91
21d7a9c88cfc456f5b1d26855dcf9fb497bdc5b28f44532e86bf416a859381de
GET /586b4c224160416f6db9d58f/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://chesuoigiang.vn
Connection: keep-alive
Referer: http://chesuoigiang.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 05:01:08 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-637ddf31c8f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7d31bfbf91c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chesuoigiang.vn/pic/web/theme/bgmn.gif
125.212.221.113200 OK 5.8 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/bgmn.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 173 x 54\012- data
Hash 6e9b633b3a3ccd0f4ac387ce8515b1d3
3003717ea675d4a00cf6943c0a5806346333d5dc
50dc61bcec499165133cea0ef2c64c259b51091a55c7aabc731bbd293141ecfb
GET /pic/web/theme/bgmn.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "86a1ae413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 5834
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 25 Nov 2022 05:01:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 76a12e084d35675e9072a9eb5ff5081a
07b99331e1b0cf15f5a5d59c4f05bc902afbc3ee
16fa1eba22986adf250b9ee903ad1f7e91fe0c04dc80e8ae976b25c4b2ca5632
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 05:01:08 GMT
server: ESF
cache-control: private
content-length: 30978
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/tel40.jpg
125.212.221.113200 OK 1.3 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/tel40.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 40x40, components 3\012- data
Hash 27c65074003d07247ea4b2dc95830ff1
b09aab4ad5ef67b5961bb6c6a7137f55c91c6ed3
365e08e1eca509719fb7e38ea4c74e12eed8855a80151cedeb47ad3cac5ced16
GET /pic/web/theme/tel40.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "1fbba423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 1336
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 05:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dulichsuoigiang.com/wp-content/uploads/2016/06/ban-tra-dien-da-nang-dt04.jpg
14.225.238.227200 OK 93 kB URL HTTP/1.1 dulichsuoigiang.com/wp-content/uploads/2016/06/ban-tra-dien-da-nang-dt04.jpg
IP 14.225.238.227:0
ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 2x2, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, height=554, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=750], baseline, precision 8, 640x271, components 3\012- data
Hash 4cc0524c4bd51e8e45081645c8d08d37
50773518b60f32f33bc8b6c66106e9ebcf6c3198
77ee5c96fff89b2731c807262a840949ff253c08de1cb185e87aec29332161d3
GET /wp-content/uploads/2016/06/ban-tra-dien-da-nang-dt04.jpg HTTP/1.1
Host: dulichsuoigiang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 25 Nov 2022 05:01:07 GMT
Content-Type: image/jpeg
Content-Length: 93271
Last-Modified: Fri, 14 Apr 2017 10:33:38 GMT
Connection: keep-alive
ETag: "58f0a582-16c57"
Accept-Ranges: bytes
chesuoigiang.vn/pic/web/theme/top_box.gif
125.212.221.113200 OK 260 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/top_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 1 x 37\012- data
Hash ffc6d52fc1732a9c8ea751a764739484
b2ac2911ef0bb4f3434fb04afd0d031900842d9b
4d0d5893a9ed2d5618f022f71a715e28fe7513a8829b4eb520fae4fe58a6995c
GET /pic/web/theme/top_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "4e65e423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 260
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 25 Nov 2022 05:01:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/left_box.gif
125.212.221.113200 OK 1.9 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/left_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 43 x 37\012- data
Hash d86f9dc91c1e4ab38a33a9543f34f3fd
8ce81dd983052784caa4e86d15d9a18f14916e31
f248998d81864ac2b7f33f9400490d9d2525116ddea5b0983b1f201f2c19126e
GET /pic/web/theme/left_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "b68eed413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 1939
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e47be189da819614d67ba76327f48211
9ec42775abdd9f124d6cd63a5de426785f6504e7
c10faf93b531c139c1828cbacff92c606cb7cf62d9a1515b4e718d3e566f58a5
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1024
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 05:01:08 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/body_left.gif
125.212.221.113200 OK 5.9 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 15 x 1011\012- data
Hash f290e991358376cf16cb6572b04a91e3
bd18b788a462044f64e053f500f1979cacd657fa
29586133aff664318a0790c960606686744fc90c50d4f5bf110ca44a727d4bdd
GET /pic/web/theme/body_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "ea9fc4413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 5933
chesuoigiang.vn/pic/web/theme/right_box.gif
125.212.221.113200 OK 659 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/right_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 9 x 37\012- data
Hash c992536effbddb242181b1ce3a98c6ce
f3f13f3ed86ab9057cb82091568344cfb6a02fd4
94394cd0ea88543d88de4d5d6a47f6fac5346120d6cb8dfd02a01af2f2039a28
GET /pic/web/theme/right_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "8478f9413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 659
chesuoigiang.vn/pic/web/theme/center_box.gif
125.212.221.113200 OK 317 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/center_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 1 x 112\012- data
Hash dc73a1ec38d36ed7fe2c8896eb1da456
5b50afffa87e29720bf6199ba47fc1864a463542
fee8a2d7e59caad911ef7fa3638480a581be0e37fbee40ed8e94c7f5f4cb85eb
GET /pic/web/theme/center_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "2326d1413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 317
chesuoigiang.vn/pic/web/theme/listbg_leftmn.png
125.212.221.113200 OK 867 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/listbg_leftmn.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 14 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash ed89ded9aba15bff2fd98d0f5e2da80a
e04674540f46a56d75e727035ee44a4b10229c1f
4f914c18a3b211e06ada1ab36499205dbb0bc5a1090b929460c4d289edf9d992
GET /pic/web/theme/listbg_leftmn.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "9deeee413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 867
chesuoigiang.vn/pic/web/theme/bottom_center_box.gif
125.212.221.113200 OK 65 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/bottom_center_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 1 x 9\012- data
Hash fbd02014771445547ac1c1954f4afb5d
5e68352ac2c628cb4e82dd1f8ced42ce1b6d2d8c
d542a51a37878fcd92c39082d8f3e94ab05d0c80dda5eb07803830ec68c59660
GET /pic/web/theme/bottom_center_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "ef42cc413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 65
chesuoigiang.vn/pic/web/theme/bottom_left_box.gif
125.212.221.113200 OK 284 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/bottom_left_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 11 x 9\012- data
Hash 4a446f59c082061da5cb5ad62d58aa73
3b6530271b45e55c37e75c36938963bbcb813bc2
07c840d19e1a091ccd335ca65bafb8f92bad9f5fc1b28bfb28cf449bce2c7f33
GET /pic/web/theme/bottom_left_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "ef42cc413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 284
chesuoigiang.vn/pic/news/tin%20tuc/co-gai-hai-che-truong-lan-phuong.jpg
125.212.221.113200 OK 50 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/co-gai-hai-che-truong-lan-phuong.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Hash f201664bcfbf71cac5b541de67ec869d
e5128f54a132f810d0357a62ae8fe638fe8e0807
cf1043bba52fff33bffc4971dba91f4f286d99c6f4661ace45ea7b2cd610b880
GET /pic/news/tin%20tuc/co-gai-hai-che-truong-lan-phuong.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "bd576d2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:58 GMT
Content-Length: 49963
chesuoigiang.vn/pic/web/theme/consulting_listbg.png
125.212.221.113200 OK 996 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/consulting_listbg.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 19 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ce000093c3f3bb2a7836f304a11bb413
c029e4862d15217aa75a6ac28191f3ca778a3477
abc6d60d4c3907d7e1af13e24b90a102b334107e155f2b8b446d04e5767c6c0a
GET /pic/web/theme/consulting_listbg.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "6b22d3413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 996
chesuoigiang.vn/pic/web/theme/Tea-S_03.gif
125.212.221.113200 OK 127 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/Tea-S_03.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 990 x 225\012- data
Size 127 kB (126761 bytes)
Hash 15b5fd108166ca803e620ee83c855588
ef2764598f1c66ed6e186b42915cc67983148091
71170ca571f7a7d626b7133e95681825943a15bf64d90818534b545990e77d9a
GET /pic/web/theme/Tea-S_03.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "56708423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:56 GMT
Content-Length: 126761
chesuoigiang.vn/pic/web/theme/off.png
125.212.221.113200 OK 6.3 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/off.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 54 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a18b77eb6e18b9ffa1132237c68f2ac
b75a9f13f7af29eb63322a9734040f14dc6262bf
0938a7a21c2b6ac84228d13ad7b19ad215e2f32c832b2b0b6c2940c612f38f4e
GET /pic/web/theme/off.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "399f2413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:57 GMT
Content-Length: 6293
chesuoigiang.vn/pic/web/theme/bottom_right_box.gif
125.212.221.113200 OK 283 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/bottom_right_box.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 11 x 9\012- data
Hash 20c777c78c28f04b3734efde9de555be
af20e3ccdf0f11946a84149451c01252d0e7ccdb
225b26e9db1f53dfb12a64ded4f9be663055358ce853c875f6354325a387211d
GET /pic/web/theme/bottom_right_box.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "2218ce413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 283
chesuoigiang.vn/pic/news/tin%20tuc/10888425_366964073486636_8440687492118977109_n.jpg
125.212.221.113200 OK 95 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/10888425_366964073486636_8440687492118977109_n.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Hash 3f9ddda90afe0ef02d03bdcb8806c24c
a1c4910a6d3a7a1442941e9687663481bbb8e0e2
c800f3aeaa3c64e06e4550ab83d122167600fe629086cfe9162cf1c2e885e181
GET /pic/news/tin%20tuc/10888425_366964073486636_8440687492118977109_n.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:44 GMT
Accept-Ranges: bytes
ETag: "819cc9293affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 94601
chesuoigiang.vn/pic/news/tin%20tuc/che%20co%20thu%20suoi%20giang%20loai%201.jpg
125.212.221.113200 OK 49 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/che%20co%20thu%20suoi%20giang%20loai%201.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Hash 72ea5aa6f33912aa532054064a96f784
fe2e59e46f60e8402d3ee3f3110708e06b4e2f3a
f8913c474f1d1e6608c90de6b5fdc35ba91f0081c399e71ee3659774044b6313
GET /pic/news/tin%20tuc/che%20co%20thu%20suoi%20giang%20loai%201.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "4e543a2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 49244
chesuoigiang.vn/themes/1/loading.gif
125.212.221.113200 OK 9.5 kB URL HTTP/1.1 chesuoigiang.vn/themes/1/loading.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 120 x 7\012- data
Hash 3eb63d6867e720e525cca07b3e33afbc
a8f7e932184af78689021b9856294bf6f11357d1
92f83b8019abf0f93f7e51d04ebd33aa2ca447f68df7ecd2c08637af77551b05
GET /themes/1/loading.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/themes/1/js-image-slider.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:35:36 GMT
Accept-Ranges: bytes
ETag: "d94bd243affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:00 GMT
Content-Length: 9548
chesuoigiang.vn/pic/web/theme/content_top.gif
125.212.221.113200 OK 65 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_top.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 1 x 10\012- data
Hash ab143566e26fae81e06a710152f26d48
052719a2a470c18105a842c00814534845e508a7
baf9465eb71c7843761e8bad14d626b118ddd1aa698481a616cb3e54149c7207
GET /pic/web/theme/content_top.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "5b9eda413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:00 GMT
Content-Length: 65
chesachvn.com/wp-content/themes/Che/images/bgbottomsingle.png
38.55.155.153301 Moved Permanently 162 B URL HTTP/1.1 chesachvn.com/wp-content/themes/Che/images/bgbottomsingle.png
IP 38.55.155.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/themes/Che/images/bgbottomsingle.png HTTP/1.1
Host: chesachvn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 25 Nov 2022 05:01:10 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://chesachvn.com/wp-content/themes/Che/images/bgbottomsingle.png
Strict-Transport-Security: max-age=31536000
chesachvn.com/wp-content/themes/Che/images/logotea.png
38.55.155.153301 Moved Permanently 162 B URL HTTP/1.1 chesachvn.com/wp-content/themes/Che/images/logotea.png
IP 38.55.155.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/themes/Che/images/logotea.png HTTP/1.1
Host: chesachvn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 25 Nov 2022 05:01:10 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://chesachvn.com/wp-content/themes/Che/images/logotea.png
Strict-Transport-Security: max-age=31536000
chesuoigiang.vn/pic/web/theme/content_top_left.gif
125.212.221.113200 OK 677 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_top_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 20 x 19\012- data
Hash 3579873ff0d45258d40363ed5a6a6cf4
e4785c5e93d05e202c4cc44fb59c192440caa9b2
a2332a5d2b24d84ba50e748539893f63c7edd4148c47ae3aa6d47392f9396da4
GET /pic/web/theme/content_top_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "3dcdf413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:00 GMT
Content-Length: 677
chesuoigiang.vn/pic/web/theme/content_top_right.gif
125.212.221.113200 OK 679 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_top_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 20 x 19\012- data
Hash 43ef4282452e5d5a2c3514e27ce433d3
34c7429dd80023f5298053563e062343697ddd7f
52ff7b5ffe9d002055c2eea82e212814817a255629399bfb0a3d9e653fd457ac
GET /pic/web/theme/content_top_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "f1a4e1413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:00 GMT
Content-Length: 679
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash acd91574178e8883d216180ec06f76e4
534eb2eb0ae2fcc1e769ccec4ba351cb54e26d4f
b9fcbbe8f981e9279b816eeee2ef4fb4406563dc977c7f99086fd621e165e5c9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9FCBBE8F981E9279B816EEEE2EF4FB4406563DC977C7F99086FD621E165E5C9"
Last-Modified: Thu, 24 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 25 Nov 2022 11:01:11 GMT
Date: Fri, 25 Nov 2022 05:01:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash acd91574178e8883d216180ec06f76e4
534eb2eb0ae2fcc1e769ccec4ba351cb54e26d4f
b9fcbbe8f981e9279b816eeee2ef4fb4406563dc977c7f99086fd621e165e5c9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9FCBBE8F981E9279B816EEEE2EF4FB4406563DC977C7F99086FD621E165E5C9"
Last-Modified: Thu, 24 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21496
Expires: Fri, 25 Nov 2022 10:59:27 GMT
Date: Fri, 25 Nov 2022 05:01:11 GMT
Connection: keep-alive
chesuoigiang.vn/pic/news/tra%20suoi%20giang/hai-che-1.jpg
125.212.221.113200 OK 66 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tra%20suoi%20giang/hai-che-1.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 718x310, components 3\012- data
Hash 2f093803390759421065efcafc232e53
cdbbdb2bd646107ebf20e91f882f58db00a45d6b
5a0543fe19e331e5fb9a1cee1b9238b38cb0e0f7e9b4026b546a47b3de319c6d
GET /pic/news/tra%20suoi%20giang/hai-che-1.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:51 GMT
Accept-Ranges: bytes
ETag: "e7ddbc2d3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:00 GMT
Content-Length: 66101
chesuoigiang.vn/pic/web/theme/content_ct_left.gif
125.212.221.113200 OK 64 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_ct_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 8 x 1\012- data
Hash 0cc981a53421d72edc76566015b65739
e82e0577b649d899066c36701e3ac39178f82957
c2bc0c889f0a9d612bc22773a4e6852268ee22b8fbdc4e189f3de0d84767fbfe
GET /pic/web/theme/content_ct_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "bd2cd8413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 64
chesuoigiang.vn/pic/web/theme/content_ct_right.gif
125.212.221.113200 OK 65 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_ct_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 9 x 1\012- data
Hash 7c308b834dcf354db5ed5239e26d2194
4f3e91aaaab97d4e582f3cf4a1b1dee47a12f046
af5863408cdabf9e8db5da84160a2013fd4c898b23e59bbf72f159f3576475bb
GET /pic/web/theme/content_ct_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "5b9eda413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 65
chesuoigiang.vn/css/images/telbottomsingle.png
125.212.221.113404 Not Found 1.2 kB URL HTTP/1.1 chesuoigiang.vn/css/images/telbottomsingle.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /css/images/telbottomsingle.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 1245
chesuoigiang.vn/pic/web/theme/content_bt.gif
125.212.221.113200 OK 132 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_bt.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 20 x 6\012- data
Hash de4f794ffe3a6989ce61bacb07e09fa5
4e07706d529f05b3e129df3ac6bd3dee9bd7f0c8
cd3eded7cdee47bb7585a3df3a03de7dd92e784122c18d2db2271cfc83723f8b
GET /pic/web/theme/content_bt.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "3c5bd4413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 132
chesuoigiang.vn/pic/news/tin%20tuc/che-mot-bup-suoi-giang-2.jpg
125.212.221.113200 OK 74 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/che-mot-bup-suoi-giang-2.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Hash 19f7e94884ee5c5a6f69f5d90c32869e
c83a53109b66f97928dda4074125a87ee7848249
33eafebce542f56616d2124565b9152941fcc847207db968b070c053093caedc
GET /pic/news/tin%20tuc/che-mot-bup-suoi-giang-2.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "d52a5b2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 73687
chesuoigiang.vn/pic/web/theme/content_bt_left.gif
125.212.221.113200 OK 666 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_bt_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 20 x 19\012- data
Hash 64580be2021a625e35ba37fd25a8fec9
aa733a950c6ebea2743a7bc6fa4108af76fe6bbf
653cbc4e602f70c08d9bd201d8c400b4b4b2330637773745013168cee0329e4a
GET /pic/web/theme/content_bt_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "594d5413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 666
chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20h'mong%20tra%20shan%20tuyet%20co%20thu.jpg
125.212.221.113200 OK 76 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20h'mong%20tra%20shan%20tuyet%20co%20thu.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Hash 32bfd5095dc8e05794858e128e7e4c68
12d83ae1b97a5b6395ecd4ab7e8e4b07bd9d4e09
c874ea4012fe9a3b747c2126f4c0c28ec7dc2503ebd3539cf8726ddc34aac293
GET /pic/news/tin%20tuc/co%20gai%20h'mong%20tra%20shan%20tuyet%20co%20thu.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "f989672a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 75878
chesuoigiang.vn/pic/web/theme/content_bt_right.gif
125.212.221.113200 OK 671 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/content_bt_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 20 x 19\012- data
Hash cb9f8cc8cd7f9d44b40315bfa0e4c834
221fd77b9bdf1cb3ce89ce67040cf6f45e64a74e
22fa3d28506458f0ae51f955fd658a37c3a3c30561ff31f7a36e8add733a1dbd
GET /pic/web/theme/content_bt_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "5690d7413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 671
chesuoigiang.vn/pic/web/theme/ft_center.gif
125.212.221.113200 OK 551 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/ft_center.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 1 x 129\012- data
Hash fd823db5ea88f32df35acefd2b3734a5
3b05347e47dbe04a10847168c43847de336f8d17
a47532b527f8d6618a2f7b96fc8a5a6d6b46e41dc76a5e70efa4858e5a3fde4d
GET /pic/web/theme/ft_center.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "247ae3413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 551
chesuoigiang.vn/pic/web/theme/ft_left.gif
125.212.221.113200 OK 2.0 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/ft_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 14 x 129\012- data
Hash cd3a80b66a48f9ba663353bdb39d9601
093c9e05ca8447fe8073202d281679242d6b23a2
343bbaa39220f9faf159212a7fcaa93b9bc9938eddf2e06113181ac8dbfc2a6f
GET /pic/web/theme/ft_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "f1b2e4413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 1994
chesuoigiang.vn/pic/web/theme/ft_right.gif
125.212.221.113200 OK 2.0 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/ft_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 15 x 129\012- data
Hash 834629f323811171eb339c49ea1d4caa
fbf1c596829ef4109b79f25fb621482586834d7e
81fba608fd65c7a79eaa4ae3989b7fb7a488443706a02ed80280c3f4a3d91df3
GET /pic/web/theme/ft_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "984be7413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 1954
static.addtoany.com/menu/page.js
104.22.70.197200 OK 1.6 kB URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
File type ASCII text, with very long lines (3076), with no line terminators
Hash e9fb2e7e407fa10ab9ba439cfe6d3b6b
869d4a063b0d4815c4652279d74237a13d45fa6b
17759bd0702549ef860fd7403c0efbea41332597da056baa2263e8d63cdfaf22
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 05:01:07 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 75104
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f7d3192a3c0a43-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/web/theme/body_top_left.gif
125.212.221.113200 OK 688 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_top_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 19 x 20\012- data
Hash bac9d57ad4d3c63bc335e20dbe332105
a7e1697a2d012ca2ff8f811deb80f6c5c6f1573a
8fe5eec48aba35f3bba178b58c583bae967f96477102024d417139088e57e497
GET /pic/web/theme/body_top_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "3caac9413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 688
chesuoigiang.vn/pic/web/theme/body_bottom.gif
125.212.221.113200 OK 228 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_bottom.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 19 x 16\012- data
Hash 5c672b0386f74e5f744aa983578c73b3
0edd8247181be727db25ecc41d568559e6cb5fff
3be56d3e05b7a3879800529536140456f10cb8ca9f2b67a050674890f1f55ca4
GET /pic/web/theme/body_bottom.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "2013b1413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 228
chesuoigiang.vn/pic/web/theme/body_bt_left.gif
125.212.221.113200 OK 685 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_bt_left.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 19 x 20\012- data
Hash e447f7bafbf70e91450a44de0e464b6f
4ba6267262ceb19bce1b50eb2945b73ffe4f07fb
3e359b1d6c5e3a6b425e8b2ab9093a6ec80b9eee09e64a8ff84d34266f60a3e6
GET /pic/web/theme/body_bt_left.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "3680c0413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 685
chesuoigiang.vn/themes/1/bullet.png
125.212.221.113200 OK 836 B URL HTTP/1.1 chesuoigiang.vn/themes/1/bullet.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 11 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 117c0297bac6096d62702893e7d7b840
944fdf3a34941372eec4b6f9abe9f614910c70ee
787b1b4739ed664e7023df554798b4dcb6e0d6a62e93323528dd9e854bec5130
GET /themes/1/bullet.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/themes/1/js-image-slider.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:35:35 GMT
Accept-Ranges: bytes
ETag: "2434ae243affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 836
chesuoigiang.vn/pic/web/theme/body_bt_right.gif
125.212.221.113200 OK 691 B URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/body_bt_right.gif
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type GIF image data, version 89a, 19 x 20\012- data
Hash d5aef2a18a009a01215508e9a300d501
7fc449fb0cc520a8eb45c7b98c3a4a469385a2f8
695c825444461fe71394b546f8a8c1a60d2b5aad9aa801631c2770bf595adec2
GET /pic/web/theme/body_bt_right.gif HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "2167c3413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 691
chesuoigiang.vn/pic/web/theme/btnSearch.png
125.212.221.113200 OK 2.8 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/btnSearch.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 78774e5df649e2d6d326e36184bd98a8
638bcb3b9e39f6f9e428bdd52d504708174489f0
bc3ed2fd7162d29a2f815fcdf35dd4e97107bd82b487cf058c2c7d3ff208a4ee
GET /pic/web/theme/btnSearch.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:24 GMT
Accept-Ranges: bytes
ETag: "84b4ce413affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 2771
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/thuong-can-kieu-cay-cau-canh-chu1.jpg
125.212.221.113200 OK 6.0 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/thuong-can-kieu-cay-cau-canh-chu1.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash f7271f5569b9eea76fe687bd056cb150
4db7d70fc30578d9ffad26f252285501e11ada56
0d15408b518034869706ee74f56dbff39150a15f0a839bd4cb79a30f919de789
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/thuong-can-kieu-cay-cau-canh-chu1.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 6047
chesachvn.com/wp-content/themes/Che/images/logotea.png
38.55.155.153301 Moved Permanently 162 B URL HTTP/2 chesachvn.com/wp-content/themes/Che/images/logotea.png
IP 38.55.155.153:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/themes/Che/images/logotea.png HTTP/1.1
Host: chesachvn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 25 Nov 2022 05:01:11 GMT
content-type: text/html
location: http://www.chesachvn.com/
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20nguoi%20mong%20hai%20tra%20tuyet.jpg
125.212.221.113200 OK 79 kB URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/co%20gai%20nguoi%20mong%20hai%20tra%20tuyet.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x304, components 3\012- data
Hash c8740a8f5d12667382c558b6536383a8
ec1c354487f9928e28b30140e196e073dd1e90b6
b0077fb52a8c8ccc3097b8cdf9de6ae3fa2713316b693dabf5d4d3117aa5dd64
GET /pic/news/tin%20tuc/co%20gai%20nguoi%20mong%20hai%20tra%20tuyet.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:45 GMT
Accept-Ranges: bytes
ETag: "a3226a2a3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 78638
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/72161862_1396732637146843_6574631500292030464_n.png
125.212.221.113200 OK 7.5 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/72161862_1396732637146843_6574631500292030464_n.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash 05c96775dc89ce053d80cb20a254680a
eec9b8393fd3d6041553eba5eebf4c0f7cb1924a
8ad22d7d71a62cc22d54c0b566a7e25b784a7ec96a9bad46d3744597829f2f27
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/72161862_1396732637146843_6574631500292030464_n.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 7485
www.chesachvn.com/
38.55.155.153200 OK 7.7 kB IP 38.55.155.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5506), with CRLF, LF line terminators
Hash 29721146f646058815910ec264dc30c9
1fa6c5d33ef8148ec04b840f3e4f00bfc0ce4e51
be2b3de6e0e78c6de4fa16355c3d2084543942ec6d31d909fedd8545d6dc55ee
GET / HTTP/1.1
Host: www.chesachvn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 05:01:13 GMT
content-type: text/html
content-length: 7664
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/tra-cothu-suoi-giang-duy-thinh-tea-10.png
125.212.221.113200 OK 8.1 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/tra-cothu-suoi-giang-duy-thinh-tea-10.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash 72d009ece18a1cd5316c92fd22eb6cfd
daf57fe7bec279509a719dd4a6740460a8002bb9
0f80aeee3d65807536d3466cfcf2afbf96e9be94ce271aa722f07ee2853a0d9e
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/tra-cothu-suoi-giang-duy-thinh-tea-10.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 8103
www.chesachvn.com/
38.55.155.153200 OK 7.7 kB IP 38.55.155.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5506), with CRLF, LF line terminators
Hash 29721146f646058815910ec264dc30c9
1fa6c5d33ef8148ec04b840f3e4f00bfc0ce4e51
be2b3de6e0e78c6de4fa16355c3d2084543942ec6d31d909fedd8545d6dc55ee
GET / HTTP/1.1
Host: www.chesachvn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 05:01:13 GMT
content-type: text/html
content-length: 7664
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/33186871_1178716292265814_752749566163419136_n.jpg
125.212.221.113200 OK 7.3 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/33186871_1178716292265814_752749566163419136_n.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash 68928b328a14ccfae870213c05440398
97026cccf1f60fa08c009209690d2fd44ab71bba
da082d29a4b526475fc22fb0354c6a02a5c85490ee36734602f7c00d12c6871f
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/33186871_1178716292265814_752749566163419136_n.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 7302
chesuoigiang.vn/pic/web/theme/tea_logo.png
125.212.221.113200 OK 13 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/tea_logo.png
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type PNG image data, 103 x 129, 8-bit/color RGB, non-interlaced\012- data
Hash 76be923d2c99f548f908e96451b2d757
71f865bd3cc4f16778f0754010c7585d1d60e678
16405235dc175f6691c430b77b6e86e39c9c13b3ee37f90f9cf8bfcd8fb5175d
GET /pic/web/theme/tea_logo.png HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/css/theme.css
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "34228423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:01 GMT
Content-Length: 13211
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-viet-nam-dc-trao-giai-tra-the-gioi.jpg
125.212.221.113200 OK 6.0 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-viet-nam-dc-trao-giai-tra-the-gioi.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash cb55198c6e6d7cabb9f9e02744bd52ba
276ee883f526d1c6a6aebc204d61f9c93b99eed5
7f8b46b5bda7645a6741e6a9497ae10369deb10eb5acb445350cc21ddddb2927
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-viet-nam-dc-trao-giai-tra-the-gioi.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 6032
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=pic/news/UploadImage/hoi-thao-thuong-hieu-tra-viet636483242024037425.jpg
125.212.221.113200 OK 7.3 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=pic/news/UploadImage/hoi-thao-thuong-hieu-tra-viet636483242024037425.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash c17d8e56044f899db1b93e50bc14a76c
7d070881e6aa47a5288da98b4e84cc5dbc519647
7dca520bc3e17eb946372a3790816226f4dc5ff243f38004db0a824f3323ce17
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=pic/news/UploadImage/hoi-thao-thuong-hieu-tra-viet636483242024037425.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:03 GMT
Content-Length: 7270
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=https://che-sach.com/wp-content/uploads/2017/03/doi-tra-yen-bai4.jpg
125.212.221.113200 OK 0 B URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=https://che-sach.com/wp-content/uploads/2017/03/doi-tra-yen-bai4.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=https://che-sach.com/wp-content/uploads/2017/03/doi-tra-yen-bai4.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:03 GMT
Content-Length: 0
chesuoigiang.vn/pic/web/theme/website-da-dang-ky-voi-bo-cong-thuong.jpg
125.212.221.113200 OK 35 kB URL HTTP/1.1 chesuoigiang.vn/pic/web/theme/website-da-dang-ky-voi-bo-cong-thuong.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 368x205, components 3\012- data
Hash 237b78c288b729cfd8634cba07f5c6ca
67f2068c82437c0c4221029fd9899d9c68986a52
069e7a25fde8f605be50ae604d039e483345d4516e1e09b3945818f02cb84b14
GET /pic/web/theme/website-da-dang-ky-voi-bo-cong-thuong.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:36:25 GMT
Accept-Ranges: bytes
ETag: "97e811423affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:03 GMT
Content-Length: 34969
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tra%20suoi%20giang/co%20gai%20hai%20tra.jpg
125.212.221.113200 OK 6.6 kB URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tra%20suoi%20giang/co%20gai%20hai%20tra.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x60, components 3\012- data
Hash d30cda72261aaa1f2f4c45686906062a
49f7f5014c766122826015a0861a65052003cd2a
f194d26ef8a27c09232cbe56b5bf2c95ec59a8949395ef457c5cfb88052163b2
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tra%20suoi%20giang/co%20gai%20hai%20tra.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:03 GMT
Content-Length: 6564
chesuoigiang.vn/pic/news/tra%20suoi%20giang/thu-hai-che-6.jpg
125.212.221.113200 OK 0 B URL HTTP/1.1 chesuoigiang.vn/pic/news/tra%20suoi%20giang/thu-hai-che-6.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
GET /pic/news/tra%20suoi%20giang/thu-hai-che-6.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:51 GMT
Accept-Ranges: bytes
ETag: "4362142e3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:03 GMT
Content-Length: 50438
chesuoigiang.vn/pic/news/tin%20tuc/tra%20shan%20tuyet%20co%20thu%20suoi%20giang.jpg
125.212.221.113200 OK 0 B URL HTTP/1.1 chesuoigiang.vn/pic/news/tin%20tuc/tra%20shan%20tuyet%20co%20thu%20suoi%20giang.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
GET /pic/news/tin%20tuc/tra%20shan%20tuyet%20co%20thu%20suoi%20giang.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Fri, 26 Aug 2016 01:35:47 GMT
Accept-Ranges: bytes
ETag: "101ddf2b3affd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:00:59 GMT
Content-Length: 87581
chesachvn.com/wp-content/themes/Che/images/bgbottomsingle.png
38.55.155.153301 Moved Permanently 0 B URL HTTP/2 chesachvn.com/wp-content/themes/Che/images/bgbottomsingle.png
IP 38.55.155.153:0
GET /wp-content/themes/Che/images/bgbottomsingle.png HTTP/1.1
Host: chesachvn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chesuoigiang.vn/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 25 Nov 2022 05:01:11 GMT
content-type: text/html
location: http://www.chesachvn.com/
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-pham-diet-moi-cay-tra-suoi-giang.jpg
125.212.221.113200 OK 0 B URL HTTP/1.1 chesuoigiang.vn/DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-pham-diet-moi-cay-tra-suoi-giang.jpg
IP 125.212.221.113:0
ASN #38731 CHT Compamy Ltd
GET /DrawThumbImage.ashx?width=80&height=60&ImageName=/pic/news/tin%20tuc/che-pham-diet-moi-cay-tra-suoi-giang.jpg HTTP/1.1
Host: chesuoigiang.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chesuoigiang.vn/11099/c/d/che-xanh/tra-xanh-va-loi-ich-chung-mang-lai.aspx
Cookie: ASP.NET_SessionId=v4nhoosjimohk4vqwer4tydv; lang=VIE
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/jpeg
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: UrlRewriter.NET 1.8.0, ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 25 Nov 2022 19:01:02 GMT
Content-Length: 7631
www.youtube.com/watch?v=Hu0sjSK6IZI
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/watch?v=Hu0sjSK6IZI
IP 142.250.74.14:0
GET /watch?v=Hu0sjSK6IZI HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chesuoigiang.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 05:01:07 GMT
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ujf5C0YW6Tc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Sat, 29-Feb-2020 05:01:07 GMT; Path=/; Secure; HttpOnly; SameSite=none
__Secure-YEC=CgtNdkhGUE12WjZ6VSiTmIGcBg%3D%3D; Domain=.youtube.com; Expires=Mon, 25-Dec-2023 05:01:06 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+760; expires=Sun, 24-Nov-2024 05:01:07 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/Hu0sjSK6IZI
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/Hu0sjSK6IZI
IP 142.250.74.14:0
GET /embed/Hu0sjSK6IZI HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chesuoigiang.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 05:01:07 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=m4w_WXpGqt0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=X-VlveVPnCg; Domain=.youtube.com; Expires=Wed, 24-May-2023 05:01:07 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+231; expires=Sun, 24-Nov-2024 05:01:07 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2