firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 20:15:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 71gBkJNc2rkPrvB678wSNlQ3dMB3HDxD71hsBKXILMv4tdudCMy2zQ==
Age: 3019
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5918
Expires: Mon, 26 Sep 2022 22:44:18 GMT
Date: Mon, 26 Sep 2022 21:05:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ecqog3MojdHf5MPiH5Jfv_A9ryRn8mEXIOu5ONyDs0olUsCk7x6OJA==
age: 59425
X-Firefox-Spdy: h2
gshock-vietnam.vn/
112.78.1.97301 Moved Permanently 162 B IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 26 Sep 2022 21:05:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://gshock-vietnam.vn/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 20:10:46 GMT
Expires: Mon, 26 Sep 2022 20:29:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5hLml3o7KvESm1RJCNzgSEk3ifawTU9YqqSBrvXpKgSXY5r9vSBN4Q==
Age: 3294
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4539
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:40 GMT
Last-Modified: Mon, 26 Sep 2022 19:50:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8332623fec62596db9294bee454e8557
ab9fbfce6996c27dea599583c9310b523dbe98b0
371b6a6f538ed178a2884fc9756323e3ef8086d1928c3f2459084b133a14ddc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "371B6A6F538ED178A2884FC9756323E3EF8086D1928C3F2459084B133A14DDC9"
Last-Modified: Sat, 24 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Tue, 27 Sep 2022 03:04:53 GMT
Date: Mon, 26 Sep 2022 21:05:41 GMT
Connection: keep-alive
push.services.mozilla.com/
54.187.160.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.160.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e27JE3V6px/lQbm7qLpacw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PMfrHNBxVbBE5fn+4129kFUaDIk=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8736
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:05:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8736
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:05:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8736
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:05:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8736
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:05:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8736
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 21:05:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZRG0Axnhc5RY5rDbnnbauco9dpPeFdkP01UxkpNYI5pgSbfGKWcikw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:16:26 GMT
age: 82156
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 83746
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 82526
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:14 GMT
age: 83308
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 82765
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gshock-vietnam.vn/
112.78.1.97301 Moved Permanently 13 kB IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 26 Sep 2022 21:05:41 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-redirect-by: WordPress
set-cookie: PHPSESSID=pl4qp3gmr15rkc7s173qcgfsp5; path=/
location: https://www.gshock-vietnam.vn/
x-cache-status: MISS
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/
112.78.1.97200 OK 27 kB IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 86acba2c40ba8ceeeb1e4fff0bbb9d9f
7d97d260434848a51c5fc3824a8e9544084ae4cd
4c70b28aaed34012fd6ab711b1ad0c6d8299096f2a53f49f5d1f545035b650a0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/html; charset=UTF-8
content-length: 26924
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.gshock-vietnam.vn/wp-json/>; rel="https://api.w.org/", <https://www.gshock-vietnam.vn/wp-json/wp/v2/pages/369>; rel="alternate"; type="application/json", <https://www.gshock-vietnam.vn/>; rel=shortlink
set-cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; path=/
vary: Accept-Encoding
content-encoding: gzip
x-cache-status: MISS
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-145079288-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-145079288-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 713120b01c560c4dbb9e7705737a9181
c38b7d286cbde58518825325c9abcd72b3c3346f
fe93ea56003828a013b5dbceb7138f6da276c21ffad51f4200714070b4ad1ae7
GET /gtag/js?id=UA-145079288-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 21:05:43 GMT
expires: Mon, 26 Sep 2022 21:05:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42208
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-831407616
142.250.74.72200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-831407616
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash cc514415610bb13e03ee63dc31328776
2906433b95f6adba99b37f3f024ec9b599ab9fd2
6da03af291ad98d6e15be644072a1a97df817c858bd4d1b88bfd3dbfb65d74d7
GET /gtag/js?id=AW-831407616 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 21:05:43 GMT
expires: Mon, 26 Sep 2022 21:05:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46464
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery-ui.js?ver=6.0.2
112.78.1.97200 OK 72 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery-ui.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (65536), with no line terminators
Hash a5d2c670552e8b6f680707b63bc2cb8a
d4bf231c517991cd8c01147df4e63feea45cae22
d6b73b6963b2748cfd848b83107adace45d07ad0001d46ed96c36343613c3f98
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/js/jquery-ui.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-4e9b1"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
112.78.1.97200 OK 3.3 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (9680), with no line terminators
Hash 916c99f5082dc71f22f77ca684778713
d2a67e9de035ec44d147c360639b92aefee710c4
3558b742cb3abcf773dabede9a4e01fbd764430316b1b139cec6171bc1a4535b
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 18:24:45 GMT
etag: W/"6310f8ed-25d0"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
112.78.1.97200 OK 1.1 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (2139), with no line terminators
Hash db8b1436a526c282c7a43eca03e082dd
350920e0387fbc0a9bf1b7259f7a77df33f6f6d7
79b49017194db53e1ab39b2c461098a834ebcc7e9b254a2bebac18ad87999717
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-85b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
112.78.1.97200 OK 1.4 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (1668)
Hash 75da69b53c94b3033647d52dc1cc8ea4
6f82d5c9a00d676dcbb615b4255a120ae6626928
32f3355431228a412f1f6ece80292fb8d204522ad583df660e741c29f5939414
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-72a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 437496
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:35:48 GMT
expires: Thu, 21 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 437396
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 18:14:12 GMT
expires: Mon, 25 Sep 2023 18:14:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 96692
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
112.78.1.97200 OK 16 kB URL HTTP/2 www.gshock-vietnam.vn/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (43771)
Hash b61761734becb6a0aff1ecb26d41a36a
39b0364c2a01825cd624262fbf197d1da98f7de3
e1d294e87d4d31c813abd3ad01250b2c6a215ad19460fddfd2955fa9343dbb26
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 18:27:27 GMT
etag: W/"62cdbd0f-15b64"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
112.78.1.97200 OK 14 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (10435), with no line terminators
Hash dc221f07a801f9f809c6432568f89a5d
8d8c4320dd5543316026408570176d7287568c7b
8895ce827c985fc2763d95399b9bcb24102d7b02b6dadd6d4507fd1d5ad5964a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-28c3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/logo_gshock_min.png
112.78.1.97200 OK 17 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/logo_gshock_min.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 1200 x 1200, 8-bit colormap, non-interlaced\012- data
Hash cde3aab5231e66cd6135ba63cbc4084d
0626da466565618a22ca1323738f4c26b6c237a3
e48e084483d2fd0c3c9674aaad2c2281a4982ded523424615c76ef4da6406747
GET /wp-content/uploads/2019/08/logo_gshock_min.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: image/png
content-length: 17440
last-modified: Tue, 27 Aug 2019 16:22:24 GMT
etag: "5d6558c0-4420"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
gshock-vietnam.vn/wp-content/uploads/2019/08/gfactory-1.jpg
112.78.1.97200 OK 23 kB URL HTTP/2 gshock-vietnam.vn/wp-content/uploads/2019/08/gfactory-1.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], baseline, precision 8, 623x225, components 3\012- data
Hash 7264e334b89c59e98af7d3725c7bfaa4
9621f55b897547c7ebc52e9e8355ff1b13490986
5a0de5a82608210c2d66fd40066d8fd0671e50ee5fe4789d9b8d1945b9e1b10d
GET /wp-content/uploads/2019/08/gfactory-1.jpg HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=pl4qp3gmr15rkc7s173qcgfsp5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: image/jpeg
content-length: 23179
last-modified: Thu, 29 Aug 2019 13:11:26 GMT
etag: "5d67cefe-5a8b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/images/icons/39.png
112.78.1.97200 OK 1.8 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/images/icons/39.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 12b0c5f1f9853cf73006e2b82df8526f
e72461b85d336ae77c3ac812ba1e15103a5dd937
35fcc04d3f5b363d7d706fb2451fdd63fccb0a3c5e005f6138cffc10cfb11376
GET /wp-content/plugins/wpfront-scroll-top/images/icons/39.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: image/png
content-length: 1793
last-modified: Wed, 09 Mar 2022 03:56:54 GMT
etag: "62282586-701"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
142.250.74.163200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5604, version 1.0\012- data
Hash 7cda2cfee99d697daf8c14819d9004eb
76f4002863493c93454a9f17424942f321287cba
0948409a22b5979aa7e1ec20da9e61f12e7d403800b541ece053881bd2542b70
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 20:01:06 GMT
expires: Thu, 21 Sep 2023 20:01:06 GMT
cache-control: public, max-age=31536000
age: 435878
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0.jpg
112.78.1.97200 OK 325 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x816, components 3\012- data
Size 325 kB (325383 bytes)
Hash 2c30871b493e9377a501bc942804ce63
f11f8aa1339396da40c42fafa82e23040a40ccf6
3b0772babc57acb613cfb9d311968decb94dafd0a393cc6c17cf8c196bc38af3
GET /wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 325383
last-modified: Fri, 09 Sep 2022 04:38:16 GMT
etag: "631ac338-4f707"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2
112.78.1.97200 OK 6.5 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type Web Open Font Format (Version 2), TrueType, length 6536, version 1.0\012- data
Hash 21c4c69602dadee988f10c502b44d1c1
7d28ed1775492300f859296ef85ce371c26a6ff3
815e5395652e03d7051b767baade615d279fe3644bbf8f8bbdc54a8b9573be67
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: font/woff2
content-length: 6536
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: "5fb22eb2-1988"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
112.78.1.97200 OK 1.5 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 9418bb904f652d1f01b36e256f705f97
ddd9e204eaa7ccde4e8e43693bda5709e6fd4df5
7dc48031e23fd4e3f00b69971ee6c2db8c1b65ea3408b6fe8e9b500526caadc3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-bdd"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707780545667_7687b4c22b6e7708610d5082cc1103ca.jpg
112.78.1.97200 OK 247 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707780545667_7687b4c22b6e7708610d5082cc1103ca.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x816, components 3\012- data
Size 247 kB (246809 bytes)
Hash 4e362ca7929f654c4bcf8eaa13aab15c
52c881b50fa6760c5f6f7628513c19e57e1a467b
dfaaeed177191f063c4238ef69027a3d8e9ee9e7aa018bb75dc17d62b820adbd
GET /wp-content/uploads/2022/09/z3707780545667_7687b4c22b6e7708610d5082cc1103ca.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 246809
last-modified: Fri, 09 Sep 2022 04:38:13 GMT
etag: "631ac335-3c419"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/bg-2.jpg
112.78.1.97200 OK 218 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/bg-2.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size 218 kB (218172 bytes)
Hash 76a7f31c3ba5859c5eb7c51f8c2c05e1
24c6448d6582ae0c34cf8f190891b7bb4c59d17d
ecd5434f8d9b6ef70d0b43a4c47ca3f43de852190eb0bc4ac1306c043d6865db
GET /wp-content/uploads/2019/09/bg-2.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 218172
last-modified: Fri, 06 Sep 2019 08:26:24 GMT
etag: "5d721830-3543c"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg-1.jpg
112.78.1.97200 OK 282 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg-1.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x900, components 3\012- data
Size 282 kB (282331 bytes)
Hash 1c579d6a23b7deab6397f4693e1432f5
448d34a202b7b5bfc21483651900f64f6de76b1c
0006acdd01fbaa97ce77d8c2495c1f39386b452d67b04cbf980420547dd88b2f
GET /wp-content/uploads/2019/08/bg-1.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 282331
last-modified: Tue, 27 Aug 2019 17:45:44 GMT
etag: "5d656c48-44edb"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.autoads.asia/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
171.244.15.40200 OK 2.3 kB URL HTTP/1.1 cdn.autoads.asia/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (6384), with no line terminators
Hash 40852cdf248e435f4ebc6a32850ee0d1
f3505ec06b6ba427d18a3711e3ce2e747b911571
b5f7a8a6e3e4832a374966166086f3d25a32808033bc73bc9fa7698b70661b1a
GET /scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5 HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Fri, 25 Dec 2020 10:59:07 GMT
Accept-Ranges: bytes
ETag: "808f2af7acdad61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Mon, 26 Sep 2022 21:05:44 GMT
Content-Length: 2330
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_2; path=/
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
112.78.1.97200 OK 97 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 28b3832f5287a2f9d9385662f518760c
bc54c79233afbb8c352e2a695526eb1d76768fdc
1242c3b64cbc42911a3dbed7ba1e363505ef183142df25f8167340e48d967b13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-33805"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
gshock-vietnam.vn/wp-content/uploads/2019/07/footer-pattern-1.png
112.78.1.97200 OK 66 kB URL HTTP/2 gshock-vietnam.vn/wp-content/uploads/2019/07/footer-pattern-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 1440 x 381, 8-bit colormap, non-interlaced\012- data
Hash 7025c1f55f5757be3f1adead97a7fa34
82b5e733e8c6000af788d18c741dd1b21ebe135e
9e48da7938359a0b5386a98dad49e4d4c8ae6695c53830a37c93da3388450e49
GET /wp-content/uploads/2019/07/footer-pattern-1.png HTTP/1.1
Host: gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=pl4qp3gmr15rkc7s173qcgfsp5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/png
content-length: 66175
last-modified: Sun, 21 Jul 2019 08:39:18 GMT
etag: "5d3424b6-1027f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/GG-B100-1A3-1.png
112.78.1.97200 OK 53 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/GG-B100-1A3-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 300 x 360, 8-bit colormap, non-interlaced\012- data
Hash b58bac6300cee5ee0ede72462b01eecf
e916771c272c1a4709b690e095c59c3c9797703f
592f00c9644d594125617d4308cc87a8641878ffd8cb4a6c9d8fc7b0145cbbf9
GET /wp-content/uploads/2019/08/GG-B100-1A3-1.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/png
content-length: 52862
last-modified: Thu, 29 Aug 2019 08:10:39 GMT
etag: "5d67887f-ce7e"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/GA-2000-1A9-11.png
112.78.1.97200 OK 49 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/GA-2000-1A9-11.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 300 x 360, 8-bit colormap, non-interlaced\012- data
Hash d3eacc313476de39867cbdba5e005145
10734dcc1425839d5fb128803b7d0c6c689fa6f4
c4a54f1ca772021f03bf3cc4676a774aab61b4ec0fff16383b1d6f71f9e99602
GET /wp-content/uploads/2019/08/GA-2000-1A9-11.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/png
content-length: 48823
last-modified: Thu, 29 Aug 2019 08:21:33 GMT
etag: "5d678b0d-beb7"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg_maudacbiet.jpg
112.78.1.97200 OK 543 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/bg_maudacbiet.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x780, components 3\012- data
Size 543 kB (542607 bytes)
Hash ff7f8de095e962a9fb4f07c3e48db3de
295e4cab97f6e1106eb826a16209a0f968963bfd
880e4c943262fea4412d3981744b4ee19dcfeb00f853b892d1bf87013192a5ec
GET /wp-content/uploads/2019/08/bg_maudacbiet.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 542607
last-modified: Thu, 29 Aug 2019 12:00:52 GMT
etag: "5d67be74-8478f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0-1400x595.jpg
112.78.1.97200 OK 175 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0-1400x595.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1400x595, components 3\012- data
Size 175 kB (174964 bytes)
Hash d47722c9e9b91b2066b0f60f61ee975b
176959850fee4c70493eaf42e42018d85d287f81
784ad9d4177d2f681c24ee1d9225d1a2fc4144d2c0c992e0768390c417273fe1
GET /wp-content/uploads/2022/09/z3707781314166_6a845a54785de3cd73fafeaa45559da0-1400x595.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 174964
last-modified: Fri, 09 Sep 2022 04:38:17 GMT
etag: "631ac339-2ab74"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-B2100BD-1A.jpg
112.78.1.97200 OK 192 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-B2100BD-1A.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:09:06 18:49:15], baseline, precision 8, 500x600, components 3\012- data
Size 192 kB (191996 bytes)
Hash e5d64259ef8998a374c75cc06478e7dd
abd24cb39179508e6c4ff02700ddb02bed2d7b63
f8576d2e8ce7941129f1c90c5da03e722a1ca23c996c6c68baaa6403c0a20c0d
GET /wp-content/uploads/2022/09/GM-B2100BD-1A.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 191996
last-modified: Wed, 07 Sep 2022 09:47:35 GMT
etag: "631868b7-2edfc"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/zxcvbn-async.min.js?ver=1.0
112.78.1.97200 OK 220 kB URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/zxcvbn-async.min.js?ver=1.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (316)
Size 220 kB (219785 bytes)
Hash e20ea92c2e4db7d05423fb28ec634841
4a356313f710baff6e1ae54082977e3965cac027
bca70b82ccb930f4fa666211c7b23b20bd0a81e551257ed19eeaf47605cad547
GET /wp-includes/js/zxcvbn-async.min.js?ver=1.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 09:33:43 GMT
etag: W/"60780877-15f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-5600G-9.jpg
112.78.1.97200 OK 368 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2022/09/GM-5600G-9.jpg
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:09:06 11:35:05], baseline, precision 8, 500x600, components 3\012- data
Size 368 kB (368021 bytes)
Hash 8dbcb153cf72f77dc7cb11af86a77202
3dcaac916960c05ccd29c46dc176a83bc242b101
a9f482bf082c51676ea63dcab8756061b441a876df24759d86591862ea5b032d
GET /wp-content/uploads/2022/09/GM-5600G-9.jpg HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:44 GMT
content-type: image/jpeg
content-length: 368021
last-modified: Wed, 07 Sep 2022 03:48:38 GMT
etag: "63181496-59d95"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
112.78.1.97200 OK 455 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type ASCII text, with very long lines (3008)
Size 455 kB (454829 bytes)
Hash ac7e60971f7f857b28ffe0c587eb122d
f4d6756db06ad489fdf8e128e1cf6ff48ea4cab8
0414c7877387c3ad3af260845ec22b1b8c56d1dedc93b715f8f350cb63e422c7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/accounting/accounting.min.js?ver=0.4.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-cdc"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400D-1A.png
112.78.1.97200 OK 408 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400D-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 408 kB (407979 bytes)
Hash 1c5ece75f09a465553c308e1ea67da2f
9e5d62a960d86b1d48dbf7c34f66853c150687a3
70f4fd7722c87a2d13d265d364693b419efd04d9f7994401f3e959d1041cdcdb
GET /wp-content/uploads/2021/06/GST-B400D-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 407979
last-modified: Thu, 17 Jun 2021 05:23:59 GMT
etag: "60cadc6f-639ab"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400BD-1A2.png
112.78.1.97200 OK 357 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400BD-1A2.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 357 kB (356838 bytes)
Hash 74b4ea96df7f38a631fc5f2c14397493
c5c471c24da53a25f1d1af1c6e6eb1dc54798f6d
f91ddd4c316ceda62950e5ef3d9b953aa0146bb8cd16f22ad1e3e7cf0c2c9cd4
GET /wp-content/uploads/2021/06/GST-B400BD-1A2.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 356838
last-modified: Thu, 17 Jun 2021 05:23:58 GMT
etag: "60cadc6e-571e6"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400AD-1A4.png
112.78.1.97200 OK 386 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400AD-1A4.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 386 kB (386518 bytes)
Hash dce1074c6b812e91602c25487414b022
8a0ef760f1ea06285e58e40d6675858a29b4aeca
ab511cbd6dabc79a0912ab319d1b124fb0fbf455c26f8bef5a50c37ef6a23edc
GET /wp-content/uploads/2021/06/GST-B400AD-1A4.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 386518
last-modified: Thu, 17 Jun 2021 05:23:56 GMT
etag: "60cadc6c-5e5d6"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400-1A.png
112.78.1.97200 OK 411 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GST-B400-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 411 kB (411235 bytes)
Hash 2cc96c8d727b1babf16d6ad146e06c57
fc995605c8772f7d5d4b517cd70a643dc7325bfd
93510c9a940bb1522f366cb0bdb5e480e4a4cb08ce0f3d49f39e43df38b8fcf9
GET /wp-content/uploads/2021/06/GST-B400-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 411235
last-modified: Thu, 17 Jun 2021 05:23:54 GMT
etag: "60cadc6a-64663"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-5A.png
112.78.1.97200 OK 371 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-5A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 371 kB (371073 bytes)
Hash c1a46d1b1ff0b8c92c3ff434f4152e56
b6143bafa01acc52a6dff24c9b263de647b6e756
082beb622addc7a791d6d82eae92aeb981ab14e930c39f7fe3161f1e1d27e759
GET /wp-content/uploads/2021/06/GA-900HC-5A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 371073
last-modified: Thu, 17 Jun 2021 05:23:44 GMT
etag: "60cadc60-5a981"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-3A.png
112.78.1.97200 OK 381 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-900HC-3A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 381 kB (380940 bytes)
Hash 3e9be9e20e0193f4be2f71577bc76b8c
29a6bc639baf540b61f39e383c48be28e2b1c2c9
ed62f7482bf5ed8444b7c18f5e3e8eb82cf80f736df8f8568521a7af3857a890
GET /wp-content/uploads/2021/06/GA-900HC-3A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 380940
last-modified: Thu, 17 Jun 2021 05:23:42 GMT
etag: "60cadc5e-5d00c"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-4A.png
112.78.1.97200 OK 388 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-4A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 388 kB (388420 bytes)
Hash 96e6bfc39b786188620ca1afc173097b
92b99d1ddc5fb7daecd180e6f4fb7ed09a0c9477
cba3ae2032158067d46599f7280775574725c988a6db70f3ba7316e8f80607b2
GET /wp-content/uploads/2021/06/GA-2100HC-4A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 388420
last-modified: Thu, 17 Jun 2021 05:23:52 GMT
etag: "60cadc68-5ed44"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-2A.png
112.78.1.97200 OK 416 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2100HC-2A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 416 kB (416005 bytes)
Hash d93605fa080d4a9f359e6d5c43e37afe
b22c4aa3863207e5e09409064735e4fea8b6db09
1099dc773e2d1858204ca92e99370357894fb61d4816d7cc5fe18760a374f1c7
GET /wp-content/uploads/2021/06/GA-2100HC-2A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 416005
last-modified: Thu, 17 Jun 2021 05:23:50 GMT
etag: "60cadc66-65905"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/?wc-ajax=get_refreshed_fragments
112.78.1.97200 OK 337 B URL HTTP/2 www.gshock-vietnam.vn/?wc-ajax=get_refreshed_fragments
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type JSON data\012- , ASCII text, with very long lines (636), with no line terminators
Hash 6480d7eec717fd68209c611174213cb0
001542f970b8a056bba654482894856234160646
dc9a418db27b3dc2924f815d8ba0fc1e55edf68a925986d622297e17e4c0174c
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: application/json; charset=UTF-8
content-length: 337
pragma: no-cache
access-control-allow-origin: https://www.gshock-vietnam.vn
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
api.autoads.asia/maxlead/api/Gateway/GetScript?business_id=f6685fa394084cb98943016236c7dbb5&preview=false
171.244.15.40200 OK 218 B URL HTTP/1.1 api.autoads.asia/maxlead/api/Gateway/GetScript?business_id=f6685fa394084cb98943016236c7dbb5&preview=false
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type JSON data\012- , ASCII text, with no line terminators
Hash 54b5a38bcdea6e688bbfa4bd286b0327
ff1a5ff63b73d21acfad4566d4b20aca1ccd93ed
00f0d369824fadca2536230437e588ace94c490b7c90258cac689486fba12458
POST /maxlead/api/Gateway/GetScript?business_id=f6685fa394084cb98943016236c7dbb5&preview=false HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2022 21:04:36 GMT
Content-Length: 218
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api21_1; path=/
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2000HC-7A.png
112.78.1.97200 OK 385 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2000HC-7A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 385 kB (384650 bytes)
Hash 60f952a8aa5d7ab90eee52fba55a3e93
ca7170a44b8aa91277a51475af51ef7b5e3e4a96
c36df8bb7df1b3b11d7fe9f65b59dba42b8e7b30cfb3c9509b9c785b03edfa44
GET /wp-content/uploads/2021/06/GA-2000HC-7A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 384650
last-modified: Thu, 17 Jun 2021 05:23:48 GMT
etag: "60cadc64-5de8a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2000HC-3A.png
112.78.1.97200 OK 412 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/GA-2000HC-3A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 412 kB (411892 bytes)
Hash 121a16ec89d4843e43f6ef1e10565cb9
99e9175e0574283c05a9f6bb6e8c0ba3de9d452b
8d4c95da933ca950eca6d0bf4054b7b0a2afa958dc4f75a0dcd783644a719cb6
GET /wp-content/uploads/2021/06/GA-2000HC-3A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 411892
last-modified: Thu, 17 Jun 2021 05:23:46 GMT
etag: "60cadc62-648f4"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/06/MTG-B2000PH-2A.png
112.78.1.97200 OK 427 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/06/MTG-B2000PH-2A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 427 kB (427236 bytes)
Hash b7e7735abd20196f8a53ba0666b693c7
950c37158eddd8a21e33756cbfb65d12278d4db4
a48f7e3a3e67a9f8404249a2d4d55f4936b7d2bef49b1e9808648fa7c09705d0
GET /wp-content/uploads/2021/06/MTG-B2000PH-2A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 427236
last-modified: Thu, 17 Jun 2021 05:24:01 GMT
etag: "60cadc71-684e4"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GMW-B5000G-2.png
112.78.1.97200 OK 302 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GMW-B5000G-2.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 302 kB (301747 bytes)
Hash 066dd81031579d192b1b2a1ac24b53a3
31d795c2941165442af74c1fc48672b745ea8a15
a0666a1d431bb6a3d4f6a7301ae99dcad2912ddc70b2013eac2cf974502328a6
GET /wp-content/uploads/2019/09/GMW-B5000G-2.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 301747
last-modified: Tue, 17 Sep 2019 09:05:48 GMT
etag: "5d80a1ec-49ab3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GW-B5600BL-1.png
112.78.1.97200 OK 323 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GW-B5600BL-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 323 kB (323066 bytes)
Hash a46281e0eb2d0dde5afb7dc0a9257fad
9a14aa18f1fc833c1e65ce1a371c9dbdceb589f4
91701444f78962afb332b28ce6d73e87510a5493de805bcebcf671735fd5c74d
GET /wp-content/uploads/2019/09/GW-B5600BL-1.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 323066
last-modified: Tue, 17 Sep 2019 09:07:48 GMT
etag: "5d80a264-4edfa"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2020/10/GMW-B5000G-1.png
112.78.1.97200 OK 276 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2020/10/GMW-B5000G-1.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 276 kB (276352 bytes)
Hash 603715952b63214279f15f3f04d97b86
1fd2a21124036efa8e6c489da7935c1aa7bb7428
abf084df5b63b1b264a899236e028a85bf0b65245733542b2a5f3e4c8ecc601f
GET /wp-content/uploads/2020/10/GMW-B5000G-1.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 276352
last-modified: Thu, 22 Oct 2020 11:48:56 GMT
etag: "5f9171a8-43780"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.autoads.asia/PushNotification/AutoAdsPushNotifyNoneSDK.js
171.244.15.40200 OK 3.9 kB URL HTTP/1.1 cdn.autoads.asia/PushNotification/AutoAdsPushNotifyNoneSDK.js
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (11551), with no line terminators
Hash 52b239b7673761fa8324e791f38d7965
aa4c156bc467bda13d39041cf0e65c37dad79f6c
9946bf813a718803389020246cd92a358194f570c71cb1e03534a76ceccdf2fe
GET /PushNotification/AutoAdsPushNotifyNoneSDK.js HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Wed, 24 Feb 2021 08:56:27 GMT
Accept-Ranges: bytes
ETag: "806f76ef8aad71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Mon, 26 Sep 2022 21:05:46 GMT
Content-Length: 3875
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_1; path=/
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200B-1A.png
112.78.1.97200 OK 361 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200B-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 361 kB (361350 bytes)
Hash 5ae855a5eec4b2abad8d55e9a478645b
5e07a8b589aa0538ba544e71d1e622009036c726
bc6ee0cb0ce51d6a1ca5e9b6e11a352a947d8da0bb19b84d2b6eb40cbe5be6de
GET /wp-content/uploads/2019/09/GST-B200B-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 361350
last-modified: Tue, 17 Sep 2019 09:06:48 GMT
etag: "5d80a228-58386"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.autoads.asia/maxlead/1.6.x/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
171.244.15.40200 OK 59 kB URL HTTP/1.1 cdn.autoads.asia/maxlead/1.6.x/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65179), with no line terminators
Hash f781644d9fbf52d7c186c7080045451b
5121c43a966b320a44d03e1c040da1066fc44bd6
e11d0b7a24c02f47b12ba1b24cc84c06de6303776e30b5d4c4c0ce1838836a8b
GET /maxlead/1.6.x/scripts/autoads-maxlead-widget.js?business_id=f6685fa394084cb98943016236c7dbb5 HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Fri, 01 Jul 2022 06:58:59 GMT
Accept-Ranges: bytes
ETag: "80fbc39188dd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Mon, 26 Sep 2022 21:05:46 GMT
Content-Length: 59409
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_2; path=/
www.gshock-vietnam.vn/wp-content/uploads/2019/08/GST-B100BNR-1A.png
112.78.1.97200 OK 408 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/08/GST-B100BNR-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 408 kB (408463 bytes)
Hash 4a3a0f73700c3f8a60dd9987bc4b3b0c
5815c9bea517ae92178ded7b7d00392797a255de
a3773555a23512602fba7460d4e79bce2fe8b3976860630ff55ed5fbf05c1e92
GET /wp-content/uploads/2019/08/GST-B100BNR-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 408463
last-modified: Mon, 08 Jun 2020 04:11:23 GMT
etag: "5eddba6b-63b8f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200D-1A.png
112.78.1.97200 OK 364 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2019/09/GST-B200D-1A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 364 kB (364440 bytes)
Hash f466fc83adddd3509ff8e237932f4326
c622ebb7d8d557b08833fb577d26aa66bc4b213b
b2b93817e8d50240ea4fd2fb7f81e3a6d9c15549c8ef46b56b3d8510abbc8b48
GET /wp-content/uploads/2019/09/GST-B200D-1A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 364440
last-modified: Tue, 17 Sep 2019 09:06:50 GMT
etag: "5d80a22a-58f98"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/uploads/2021/02/GST-S330AC-2A.png
112.78.1.97200 OK 425 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2021/02/GST-S330AC-2A.png
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type PNG image data, 500 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 425 kB (424649 bytes)
Hash 31c6852e3bbcca7aaf57848a861f4625
ed731fe1ed1c0e4dab6378819b806711016b5ff8
d46fb46d620e1456f998fdc424777c11063852e6807fc45f0b1398389a15f5a0
GET /wp-content/uploads/2021/02/GST-S330AC-2A.png HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:45 GMT
content-type: image/png
content-length: 424649
last-modified: Sat, 27 Feb 2021 08:36:32 GMT
etag: "603a0490-67ac9"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
171.244.15.40200 OK 0 B URL HTTP/1.1 api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken= HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-enter-journey,x-maxlead-ismobile,x-maxlead-ispostback
Referer: https://www.gshock-vietnam.vn/
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type,x-enter-journey,x-maxlead-ismobile,x-maxlead-ispostback
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2022 21:04:37 GMT
Content-Length: 0
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api21_2; path=/
cdn.autoads.asia/maxlead/1.6.x/content/aml-widget.min.css?v=1.6.x
171.244.15.40200 OK 16 kB URL HTTP/1.1 cdn.autoads.asia/maxlead/1.6.x/content/aml-widget.min.css?v=1.6.x
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 6f25ae980e1b31bb83dea8727cc88f6c
a49249e0ba6760cad06b8d62c35d15476302f9df
f53e436441acbc54a91b67157f9bb0b72f96763cc7e6e8ce60f5380b6abb2e33
GET /maxlead/1.6.x/content/aml-widget.min.css?v=1.6.x HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/css
Content-Encoding: gzip
Expires: -1
Last-Modified: Thu, 08 Jul 2021 06:50:54 GMT
Accept-Ranges: bytes
ETag: "05bcc98c573d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Mon, 26 Sep 2022 21:05:47 GMT
Content-Length: 16408
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn20_2; path=/
api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
171.244.15.40200 OK 5.4 kB URL HTTP/1.1 api.autoads.asia/maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken=
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5215), with no line terminators
Hash 9a41fdd95a15968ce9d95cc116e3b69d
8afdb2d27f824ec592b43aa5de198b9b4f01ceef
cc4401de3b62c852d7b0f7bb37be618fe350a1318ee42df4772e924d51519997
POST /maxlead/api/widget/getdata?business_id=f6685fa394084cb98943016236c7dbb5&previewToken= HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
X-MaxLead-IsPostBack: false
X-MaxLead-IsMobile: false
X-Enter-Journey: null
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2022 21:04:38 GMT
Content-Length: 5443
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api21_1; path=/
alpha2.autoads.asia/js/autoads-tracking.js
171.244.15.40200 OK 1.8 kB URL HTTP/1.1 alpha2.autoads.asia/js/autoads-tracking.js
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 85c5ad182c81536e92f204bc0c63f4a4
9b3f06b6bdb62c549e5340b072b2ae37c6f95de6
2555da6178104f7afe86a4d4d5a28b2026d98534d939fe336212c5d9f30ca5e0
GET /js/autoads-tracking.js HTTP/1.1
Host: alpha2.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Mon, 03 May 2021 08:05:54 GMT
Accept-Ranges: bytes
ETag: "05dbe23f33fd71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2022 21:05:46 GMT
Content-Length: 1835
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf99681f6f1d6e00e0abca7033eb6219
73261f7daa90ce6fd7a81b10ed7bd762200c3f28
3f4bfe673679f8f0650774c07f8707a7013ac7e1c3e1b3b03e68cbaa5ccc1af6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6578
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:47 GMT
Last-Modified: Mon, 26 Sep 2022 19:16:09 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf99681f6f1d6e00e0abca7033eb6219
73261f7daa90ce6fd7a81b10ed7bd762200c3f28
3f4bfe673679f8f0650774c07f8707a7013ac7e1c3e1b3b03e68cbaa5ccc1af6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6578
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:47 GMT
Last-Modified: Mon, 26 Sep 2022 19:16:09 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 20:41:09 GMT
expires: Mon, 26 Sep 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 1478
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf99681f6f1d6e00e0abca7033eb6219
73261f7daa90ce6fd7a81b10ed7bd762200c3f28
3f4bfe673679f8f0650774c07f8707a7013ac7e1c3e1b3b03e68cbaa5ccc1af6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6578
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:47 GMT
Last-Modified: Mon, 26 Sep 2022 19:16:09 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5b7b66f5886a12421c3f3970bbf49d5a
13a31565fb5b2f1e75d67ba1ce09dae339f1c0e8
3ed8ffa99cefdf81381912b426c0ab9091fb5888836665d9012435965f99feba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/vi_VN/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 1ded75c7c3b3d1d56f71315265f56d92
76a5f03dd1bc2ea37d097077934bf7e88f5eef5b
8d4a05b41a75ab132f94e2ef43080f7907945107277512cca527baa66e03a867
GET /vi_VN/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4178a2ee2be420617c9bfb68de459e55
etag: "93e105716e20e39c68514630100df1c0"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 26 Sep 2022 21:18:41 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: He11x8Oz0dVvcTFSZfVtkg==
x-fb-debug: eKoXHg/c3YwS0n/O8tHfgBV/mqWzSreQxdxkHUIYHhN99WLVEygELnpu61O4+cwBKfDiLq9B5ioswjX6oEmukQ==
content-length: 1687
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 26 Sep 2022 21:05:47 GMT
expires: Mon, 26 Sep 2022 21:05:47 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk/xfbml.customerchat.js
157.240.200.14200 OK 93 kB URL HTTP/2 connect.facebook.net/en_US/sdk/xfbml.customerchat.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (20897)
Hash f8a717a55fb599d89dcb775dfab745ee
b1e7163e230155e51198b273cd9cd7ee8bba8ae8
3728044cf3afb118ab41866cb662ab33334d3f46362ac335b66f837d8be2528f
GET /en_US/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0a2683a0a399cd667e71fd451b591b56
etag: "6c4cd9bc65d4abc2e56d6197b40485e5"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 26 Sep 2022 21:20:52 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: +KcXpV+1mdidy3dd+rdF7g==
x-fb-debug: cPb0pq/e7Wia5JTJBroc5u/uExILHj0ve7eJ500/SKYjWr+TgYeRA+74v2+FCRpLAejH0IY8vHtlwkAPAxW+qg==
priority: u=3,i
content-length: 92852
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 5w5KOqCAAjqIc8IF6ebSlni6JgyLI6LnNeiZaySILgcPZWATLOgzA/I1YBPE3Ny+Yk2ScEuTjKpB+xuYOL/HPQ==
content-length: 26840
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf99681f6f1d6e00e0abca7033eb6219
73261f7daa90ce6fd7a81b10ed7bd762200c3f28
3f4bfe673679f8f0650774c07f8707a7013ac7e1c3e1b3b03e68cbaa5ccc1af6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6578
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:47 GMT
Last-Modified: Mon, 26 Sep 2022 19:16:09 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
cdn.autoads.asia/maxlead//themes/tracking/index.html?origin=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4=&url=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4v&websiteId=55316&uid=&hasLead=false
171.244.15.40200 OK 1.7 kB URL HTTP/1.1 cdn.autoads.asia/maxlead//themes/tracking/index.html?origin=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4=&url=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4v&websiteId=55316&uid=&hasLead=false
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ff646fe3baf026018cd26eb937ff0742
638784c59eaa6ab4af08a410b55a16d247b0808d
0ff7e81183e0fa8d5126b9104246492b1c99f175ec2ce4f4a1d190593af5f0f3
GET /maxlead//themes/tracking/index.html?origin=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4=&url=aHR0cHM6Ly93d3cuZ3Nob2NrLXZpZXRuYW0udm4v&websiteId=55316&uid=&hasLead=false HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Content-Encoding: gzip
Expires: -1
Last-Modified: Mon, 05 Jul 2021 08:22:10 GMT
Accept-Ranges: bytes
ETag: "06582d97671d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Mon, 26 Sep 2022 21:04:38 GMT
Content-Length: 1748
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn21_1; path=/
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gshock-vietnam.vn/wp-content/uploads/2020/09/favicon.ico
112.78.1.97200 OK 1.6 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/uploads/2020/09/favicon.ico
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type gzip compressed data, max compression\012- data
Hash 0ea64bccb1bc28d18a1ceded36e0edff
c12c565750b4370d3e910a76d501f7078bdba882
97b12255a8bb568254b2a0ba148b3584cecf0a2e23bb60f8de6fcaaa4e3a0ac1
GET /wp-content/uploads/2020/09/favicon.ico HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343; __maxlead_session=b6ew-Jsv
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:47 GMT
content-type: image/x-icon
content-length: 1078
last-modified: Sat, 12 Sep 2020 05:40:12 GMT
etag: "5f5c5f3c-436"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
api.autoads.asia/pushnotification/api/v1/GetPushConf?business_id=f6685fa394084cb98943016236c7dbb5
171.244.15.40200 OK 408 B URL HTTP/1.1 api.autoads.asia/pushnotification/api/v1/GetPushConf?business_id=f6685fa394084cb98943016236c7dbb5
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash 29fcf6f0e9970e6bc54996075db94de4
5ad15b416709b26cd903c36fdbc6348f7d61bc8c
9a738386a4cc8d952749b6a19bb05f3e044a9a1a3f8f5dcc43e6a8e297dbf61b
GET /pushnotification/api/v1/GetPushConf?business_id=f6685fa394084cb98943016236c7dbb5 HTTP/1.1
Host: api.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gshock-vietnam.vn/
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 408
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: https://www.gshock-vietnam.vn
Access-Control-Allow-Credentials: true
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2022 21:05:47 GMT
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=api20_2; path=/
connect.facebook.net/vi_VN/sdk.js?hash=5eeaa1c7d5b91802f9f1a18371695bb2
157.240.200.14200 OK 89 kB URL HTTP/2 connect.facebook.net/vi_VN/sdk.js?hash=5eeaa1c7d5b91802f9f1a18371695bb2
IP 157.240.200.14:0
File type ASCII text, with very long lines (18598)
Hash 4be1102305c395d7d36f9c3752be3fe5
e2629425bcde50c879ca13a94017bfc237c3e353
19f1440c86ed429f4b2dc633a25be5da4769f0f65f72766b0807b2ad7a47f620
GET /vi_VN/sdk.js?hash=5eeaa1c7d5b91802f9f1a18371695bb2 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ed5c8100fa20efd001607286cfce0c6b
etag: "f92341b0271df802a086a4853387ef24"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 26 Sep 2023 19:18:32 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: S+EQIwXDldfTb5w3Ur4/5Q==
x-fb-debug: lEKAwwhFANpMFBibf6cW6RbZd+4/Vk9lz2rjCNrdT46CSaj27cEuPF93ajZt+ybMko7Ds5p7NOvcoN8y8uTQhQ==
priority: u=3,i
content-length: 88928
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/831407616/?random=1664226345999&cv=9&fst=1664226345999&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&auid=1380070309.1664226343&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.130200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/831407616/?random=1664226345999&cv=9&fst=1664226345999&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&auid=1380070309.1664226343&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2654), with no line terminators
Hash 071dc4e52f674a0124a3f25b52cea64d
7ad6799627ec5fd0d66df01ce6e5238d5471c7bb
d413b34efba614363c0b1fbd0489e8c5f265a12ac8f7b7e8d612f9d6c053a5c4
GET /pagead/viewthroughconversion/831407616/?random=1664226345999&cv=9&fst=1664226345999&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&auid=1380070309.1664226343&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 21:05:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1124
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 26-Sep-2022 21:20:48 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 86 kB IP 142.250.74.3:0
File type gzip compressed data, from Unix\012- data
Hash 29593c5eccc3d4fd4230bf9f33faa499
d146c7974a5f220f0019a06fd00981efda32067d
bbf0eb69ccd61e97d72d03230b1c2848d21abed482c2f417a695388f48244b6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/831407616/?random=1664226345999&cv=9&fst=1664226000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&async=1&fmt=3&is_vtc=1&random=3068537095&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/831407616/?random=1664226345999&cv=9&fst=1664226000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&async=1&fmt=3&is_vtc=1&random=3068537095&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/831407616/?random=1664226345999&cv=9&fst=1664226000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.gshock-vietnam.vn%2F&tiba=G-Shock%20Vi%E1%BB%87t%20Nam%20%7C%20H%E1%BB%87%20th%E1%BB%91ng%20ph%C3%A2n%20ph%E1%BB%91i%20ch%C3%ADnh%20th%E1%BB%A9c%20%C4%91%E1%BB%93ng%20h%E1%BB%93%20Casio%20G-Shock%20ch%C3%ADnh%20h%C3%A3ng%20Nh%E1%BA%ADt%20B%E1%BA%A3n&async=1&fmt=3&is_vtc=1&random=3068537095&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 21:05:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 21:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yu/l/0,cross/bYH8ziu5vE6.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/l/0,cross/bYH8ziu5vE6.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash b18c98bf10210112f3786f96119140b5
62a42017a24d3bf13313400c6bf95b8da6c330fd
d4fd3380e2bfec1adfb559d585f568f48f066a9c6df1d89e608f1794a7f7bf85
GET /rsrc.php/v3/yu/l/0,cross/bYH8ziu5vE6.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 26 Sep 2023 17:54:33 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: sYyYvxAhARLzeG+WEZFAtQ==
x-fb-debug: mTHUlhfqbi7EyaEaJoSx0d6GW8WzXm3UYK1OdRLOhpGRFh0iuVabFmI2j68Wd6WjA+y0KxLpgUNqiNZDCYY9CA==
priority: u=3,i
content-length: 5625
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 10:02:22 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: /aIpSYD3Nd/RJ+EpfFQz5WzQpymq6bvGSQLelf6xZhbXpEjwd1+8SdUQpFPI3tB2bj9ReeqSI7sy/TgxWGq45w==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/cxHz95P-Blt.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/cxHz95P-Blt.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18569)
Hash 64e679c03d42412a8a16d9dd5d312513
f73a48a0816c11b4e94a708c5757c640cee2270e
ed8552fab9845a545a7667a3af4b48e5de7e48618c1c5c36cca03fc0a96dcb46
GET /rsrc.php/v3/yv/r/cxHz95P-Blt.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 12:20:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZOZ5wD1CQSqKFtndXTElEw==
x-fb-debug: GxR3GsopuLgBUx7PF6FME4dIiCqemFTOeUTRe5Kh6XqCisuSSI5pFyDbwqm7NuPkhw5FHK/zhe39Myul+Cih3w==
content-length: 91359
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2052)
Hash 883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612
GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 23 Sep 2023 17:22:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: ihhk9ZwFPHQ3LQhQkm+7ZNIj70Wei0nFGT78hC3PsSqxIiTVo6Yz+Gaqpw9OyQkOHfApgr6XkEkCuUZ5ZwzRwQ==
content-length: 1689
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.9-wc.6.9.4
112.78.1.97200 OK 36 kB URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.9-wc.6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
File type Unicode text, UTF-8 text, with very long lines (64041)
Hash f0d0ad0940401c60f53156217cf54511
0b52e2e35d99d163770b13489e66cfa06b7ead66
d26a3cf3025273e125789085c2db4657c620c7b00e58bc3ee0c6cf95d8e89425
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/selectWoo/selectWoo.full.min.js?ver=1.0.9-wc.6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-12d2b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yr/l/en_US/eSSgSlla1PA.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yr/l/en_US/eSSgSlla1PA.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2973)
Hash 5310cf1cab1de32598c3d6fc3e3bd7b6
7c07c5ee282b9d0a1b2f8496049361cf4382d1c5
b3b168243a1626be322a725d17171ccc2ae3736b2e3b342e3d7366848e35502d
GET /rsrc.php/v3iLl54/yr/l/en_US/eSSgSlla1PA.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 16:43:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: UxDPHKsd4yWYw9b8PjvXtg==
x-fb-debug: zEBfPCMfY/qJcMLhaXk6ddrrGbgqq+KHPpOq67asB1zNHDgEfmZK4O0QZx9ERro3FhVZbkAZ1p7AVrcjJN4ozw==
priority: u=3,i
content-length: 8450
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/dDpAXJI8zbJ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 9.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/dDpAXJI8zbJ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9954)
Hash 36d797d9616ae40e8554001ba0cdc03b
3d6a5feaf1a10e224fc44fd6358ae7f9a92e5f0b
f1c50af0b17dccab12ba237d3b484b6d228e40481e86bb3cf24dc9d37c2b05b4
GET /rsrc.php/v3/yF/r/dDpAXJI8zbJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 14:52:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NteX2WFq5A6FVAAboM3AOw==
x-fb-debug: yBmuz8yUHQi4MrYmbN8DJHP+ebGfftxceQy/IvkdGSn0D4upLvRXgiTSt3wDxXR1nw0FCXgXbe10iTTH2bmkDw==
content-length: 9075
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 336 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (325)
Hash f82d8f615a2484f0c5c4e4e0f55e8b5d
c1c8ea5d697e2286b0a2bac7b3515a29b7f4cb28
91041f394721520d4dd5a33b28525d50da16e0fda08e102d971148fef1609dd2
GET /rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 22 Sep 2023 10:02:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +C2PYVokhPDFxOTg9V6LXQ==
x-fb-debug: FvDA4NYY8MVzQS4Elr46cgAQv0HEnXJ4gcdlhBWnP0VMOxmvX9qfvoPrFxjYoib23IxzZeykJoEgLOjnBjLMrg==
priority: u=3,i
content-length: 336
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42045)
Hash 0d15ae898adcd82bf30fc62fa941911d
eb3af610a1cf31f92e790c8bd08a79e2f0b011d1
98e9d40a3c4e19022b61436d7cbf5dca6bebaa3d5b4dbd0fa455f467ee1935f5
GET /rsrc.php/v3iEpO4/yK/l/en_US/DFz2q585Cjs.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Sep 2023 15:06:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DRWuiYrc2CvzD8YvqUGRHQ==
x-fb-debug: 75lX+J4ja1t18db0VIQAVCBfh/ud3VEWZE6K1HWNyOMvGDLMWNwjDc8rXcpU8/JLPXM5DBW8MJOUtCp6d5J/FQ==
content-length: 23379
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/cPcKznvPj72.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y3/r/cPcKznvPj72.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4129)
Hash d9b4301abe1b60a35b4d2ceff6a63f38
cbd680fb7b1618610b5c82a54ecf9bc328ed4cef
8613497153ce25fae5e92250807b1526f10adb670fb7ea13c2dad89cbe375f18
GET /rsrc.php/v3/y3/r/cPcKznvPj72.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 26 Sep 2023 13:38:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2bQwGr4bYKNbTSzv9qY/OA==
x-fb-debug: 6ytlU/6f/N2TIarEodUYJfMTuLnYkzrw4othocc0NzSjcRIWoo1EHgVk9zZOrsmXRWn5FYg89ZMffvuWZ0T0Ig==
content-length: 7308
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 21:05:48 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.autoads.asia/maxlead/1.6.x/scripts/collect.js
171.244.15.40200 OK 752 B URL HTTP/1.1 cdn.autoads.asia/maxlead/1.6.x/scripts/collect.js
IP 171.244.15.40:0
ASN #38731 CHT Compamy Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c675f50251e6564e08ff607c0e8030db
f7d96ba52170754c9c1ee7fa2c34768d9dc2ab8a
d8b850dba505dd03d17d6ce211b8e8fb385f1fd512d529d2814a2b7387a1c2ca
GET /maxlead/1.6.x/scripts/collect.js HTTP/1.1
Host: cdn.autoads.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: __autoads_identity=9142ad36-944f-49d7-a74f-30af88f4cc51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Expires: -1
Last-Modified: Thu, 19 May 2022 10:08:16 GMT
Accept-Ranges: bytes
ETag: "72f1735b686bd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Mon, 26 Sep 2022 21:04:39 GMT
Content-Length: 752
Strict-Transport-Security: max-age=31536000
Set-Cookie: SRVNAME=cdn21_1; path=/
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a75be68e82e6a0ba74932fbe74c7b30
36310320605833289e78cd248c45915363a0a0c3
56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:07:18 GMT
age: 82711
etag: "36310320605833289e78cd248c45915363a0a0c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1
157.240.200.16200 OK 44 B URL HTTP/2 socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1
IP 157.240.200.16:0
File type ASCII text, with no line terminators
Hash 2481d41c939bf3c8dd417c927a0c868b
61e6dbc1dc1251acd24726ccedd10f8577064a6c
76c6731b491cf295859f7ffd4392ab354149b9050c68edede7a1987cf2ca5025
GET /new_domain_gating/?endpoint=customerchat&page_id=106474234064097&suppress_http_code=1 HTTP/1.1
Host: socialplugin.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://www.gshock-vietnam.vn
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
x-fb-rlafr: 0
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://www.gshock-vietnam.vn
x-fb-debug: CAYoA1jsZYmWWASGJoT0o4y+Z5Zns+QvYSWH1JChz3L8Gj7zeHzujb4SMhaH2zrleAYozZIfxfaRyQXmCNCsFQ==
date: Mon, 26 Sep 2022 21:05:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/edificevietnam/style.css?ver=3.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/edificevietnam/style.css?ver=3.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/edificevietnam/style.css?ver=3.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Sun, 21 Jul 2019 08:38:34 GMT
etag: W/"5d34248a-12f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 18:24:45 GMT
etag: W/"6310f8ed-2fb3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/libs/infinite-scroll.pkgd.min.js?ver=3.0.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/libs/infinite-scroll.pkgd.min.js?ver=3.0.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/libs/infinite-scroll.pkgd.min.js?ver=3.0.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-63b1"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-7ec"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3Aregular%2Cregular%2Cregular%2C500%2Cregular&display=swap&ver=3.9
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3Aregular%2Cregular%2Cregular%2C500%2Cregular&display=swap&ver=3.9
IP 142.250.74.10:0
GET /css?family=Roboto%3Aregular%2Cregular%2Cregular%2C500%2Cregular&display=swap&ver=3.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 21:05:43 GMT
date: Mon, 26 Sep 2022 21:05:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/woocommerce.js?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-3967"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-4ac6"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-admin/js/password-strength-meter.min.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-admin/js/password-strength-meter.min.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-admin/js/password-strength-meter.min.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 08:32:16 GMT
etag: W/"62286610-463"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.6
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.6
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/css/quick-call-button.css?ver=1.2.6 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-1ba2"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 03:56:54 GMT
etag: W/"62282586-719"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-132e"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-widgets/assets/css/font-awesome.min.css?ver=4.7.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-widgets/assets/css/font-awesome.min.css?ver=4.7.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-widgets/assets/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:42:09 GMT
etag: W/"5fb22d51-777f"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.css?ver=4.14.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.css?ver=4.14.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-ajax-navigation/assets/css/shortcodes.css?ver=4.14.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 18:24:39 GMT
etag: W/"632a0567-8e18"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-5712"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-2525"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/js/drag-quick-call-button.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-110"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-27ee"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-48b9"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/zxcvbn.min.js
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/zxcvbn.min.js
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/zxcvbn.min.js HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2; _gcl_au=1.1.1380070309.1664226343; __maxlead_session=b6ew-Jsv; _ga=GA1.2.1474510065.1664226346; _gid=GA1.2.295177918.1664226346; _gat_UA-145079288-1=1; __maxlead_uuid=9142ad36-944f-49d7-a74f-30af88f4cc51; _fbp=fb.1.1664226346380.368993493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:48 GMT
content-type: application/javascript
last-modified: Sat, 26 Oct 2019 00:17:07 GMT
etag: W/"5db39083-c8bdd"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Thu, 01 Sep 2022 18:24:45 GMT
etag: W/"6310f8ed-aab"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Wed, 09 Mar 2022 03:56:54 GMT
etag: W/"62282586-1ab"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-23a2b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-3e04"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.12.3
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.12.3
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=3.12.3 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-2a4c3"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-5db"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 08:32:17 GMT
etag: W/"62286611-2bd8"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-b7a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/fl-icons.css?ver=3.12 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-148"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 09 Mar 2022 08:32:17 GMT
etag: W/"62286611-15db1"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 18:23:11 GMT
etag: W/"6331ee0f-3917"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/js/yith-wcan-shortcodes.min.js?ver=4.14.0
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/yith-woocommerce-ajax-navigation/assets/js/yith-wcan-shortcodes.min.js?ver=4.14.0
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-ajax-navigation/assets/js/yith-wcan-shortcodes.min.js?ver=4.14.0 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 18:24:39 GMT
etag: W/"632a0567-9132"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery.ui.touch-punch.min.js?ver=6.0.2
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/plugins/quick-call-button/assets/js/jquery.ui.touch-punch.min.js?ver=6.0.2
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quick-call-button/assets/js/jquery.ui.touch-punch.min.js?ver=6.0.2 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 08 Mar 2021 18:37:10 GMT
etag: W/"60466ed6-50b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-infinite-scroll/flatsome-infinite-scroll.js?ver=1.5
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-content/themes/flatsome/inc/extensions/flatsome-infinite-scroll/flatsome-infinite-scroll.js?ver=1.5
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
GET /wp-content/themes/flatsome/inc/extensions/flatsome-infinite-scroll/flatsome-infinite-scroll.js?ver=1.5 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 07:48:02 GMT
etag: W/"5fb22eb2-b2a"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.gshock-vietnam.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
112.78.1.97200 OK 0 B URL HTTP/2 www.gshock-vietnam.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 112.78.1.97:0
ASN #45538 ODS Joint Stock Company
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.gshock-vietnam.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gshock-vietnam.vn/
Cookie: PHPSESSID=mir14p6stltqndgc6bl5jl7cn2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 21:05:43 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 18:26:11 GMT
etag: W/"628e74c3-194b"
pragma: public
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2