r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12130
Expires: Thu, 15 Sep 2022 00:21:00 GMT
Date: Wed, 14 Sep 2022 20:58:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 20:09:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XDxKFLEpSFmoXVQQj_Dh5DyR0lyMtxWgTeDoOTTYp-GmBJ7PHjWeiA==
Age: 2947
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ATZiPkNsMzVgk_9wJKUWprBZx-qjAxXQEjiyNIDRlGpjK4Fj6_xTLQ==
age: 59015
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 20:58:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 14 Sep 2022 20:03:22 GMT
Expires: Wed, 14 Sep 2022 20:10:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4upP2QxUsPuJqkDHwblIb6OSNCv8-KEBIOH8fEoEB6u8PV5x03BN0w==
Age: 3328
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3712
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:58:50 GMT
Last-Modified: Wed, 14 Sep 2022 19:56:58 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.146.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.146.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CPVlPCnmDxqXaSSvZ10ung==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kmFdHY3eo/wfpS1WXKS2vwlJwSQ=
luaviet.com.vn/
103.28.39.55301 Moved Permanently 0 B IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Sep 2022 20:58:50 GMT
Server: Apache
X-Powered-By: PHP/7.4.12
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://luaviet.com.vn/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2780
Expires: Wed, 14 Sep 2022 21:45:12 GMT
Date: Wed, 14 Sep 2022 20:58:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2780
Expires: Wed, 14 Sep 2022 21:45:12 GMT
Date: Wed, 14 Sep 2022 20:58:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2780
Expires: Wed, 14 Sep 2022 21:45:12 GMT
Date: Wed, 14 Sep 2022 20:58:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2780
Expires: Wed, 14 Sep 2022 21:45:12 GMT
Date: Wed, 14 Sep 2022 20:58:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2780
Expires: Wed, 14 Sep 2022 21:45:12 GMT
Date: Wed, 14 Sep 2022 20:58:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:13 GMT
age: 2259
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 557695ec8ffeebb0272c099542a14ace
ad627b434e1c3b693d8636675bcea0f8794e0dc2
4d79c7830caa73b921d6abaa97771ab1f4dc8fd709597f01ba04c268c03b6157
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 9d4f8b01-c36c-4378-9c9d-5660084b781f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxNlNGmZIAMFXeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63105c87-33f69c990fc7a6073eb5a63a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 07:17:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E3cLpeRf1RAA79G5O1p1xmgDHk_o9Ba-F9KnZqS_X_2kr1543CwnMg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:12 GMT
age: 2260
etag: "ad627b434e1c3b693d8636675bcea0f8794e0dc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GPFNoTdF_D8rFf6qKddyxIKzhtfGCW6iib0shChxTPHhZ1OXrzbmnw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 00:47:00 GMT
age: 72712
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Rx8KX_QI5I2x7q0gcvxcJX7QzZUe2KkfqAUVR64lEujF4xDEWWDhZQ==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:13 GMT
age: 2259
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sXVy7OFoVpLgfEUTqNaYBESwKOhqP9mG-uOb80Ye6bFb518BB-Panw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:20:55 GMT
age: 2277
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lxwNJTaYrkujzIInoTGcGSAnccefYJ9x4aUjaT3QKN2lmUCrQD7ySg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:11 GMT
age: 2261
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css?ver=ffe6a56ebd83e16c026cccd20a295e9e
104.17.25.14200 OK 5.9 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css?ver=ffe6a56ebd83e16c026cccd20a295e9e
IP 104.17.25.14:0
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash aa712f2a9ab349290ddbc871138b13ba
2be3765114dbce70c84786dd7d2838c7edce486c
84dce905b67560d91a9993771337d6e5946c7f1e502b5bf06fb0ef6d34b97b57
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.css?ver=ffe6a56ebd83e16c026cccd20a295e9e HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:52 GMT
content-type: text/css; charset=utf-8
content-length: 5884
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-9226"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1136028
expires: Mon, 04 Sep 2023 20:58:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bavXezjoYmkKr3qX5OZ2mjxqdlSuWjYEi52s%2FAnTun0aUtDrsbi0Ii%2BWeNu1GIu8pu7rbku7Z8JSUcAhqGJpvrDWpVEV2Qpm9LPOLTkVYjMaq4doqyMKwaTUv03OIs%2BkIia2Qaru"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ac0b110b6c0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/css/dashicons.min.css?ver=ffe6a56ebd83e16c026cccd20a295e9e
103.28.39.55200 OK 36 kB URL HTTP/2 luaviet.com.vn/wp-includes/css/dashicons.min.css?ver=ffe6a56ebd83e16c026cccd20a295e9e
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (58981)
Hash 00492d322e5572c7abc3e8701b6c52c1
0802ac2c8280ce7c98af881b1d49ec682acbf314
8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=ffe6a56ebd83e16c026cccd20a295e9e HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Thu, 25 Mar 2021 20:02:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 35730
content-type: text/css
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 5dc3241e9bba8c0989832c6680b44adb
830b200d930d9742a02a8b2911c06330a80ade28
aadf431d0b7329ea117e207027a2a5db7d4b59d0d499c04820388d16c57c5f19
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 20:58:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 17:43:11 GMT
Expires: Mon, 19 Sep 2022 17:43:10 GMT
Etag: "830b200d930d9742a02a8b2911c06330a80ade28"
Cache-Control: max-age=419656,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ac0b123f960b02-OSL
luaviet.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
103.28.39.55200 OK 972 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 07:27:07 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 972
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/libs/menu-icons/css/extra.min.css?ver=0.12.2
103.28.39.55200 OK 351 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/libs/menu-icons/css/extra.min.css?ver=0.12.2
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (815), with no line terminators
Hash a13956f69577ca337f027c988424cfed
13fd1d4c866969bce2032e04997819f869b646fd
2b035611bb4e8f78229b53d6ee08081a3e264549778c39c4c153deb74c98a794
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ot-flatsome-vertical-menu/libs/menu-icons/css/extra.min.css?ver=0.12.2 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:26:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 351
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-quick-buy/css/devvn-quick-buy.css?ver=2.1.3
103.28.39.55200 OK 4.0 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-quick-buy/css/devvn-quick-buy.css?ver=2.1.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (17634), with no line terminators
Hash 842c6babaf81208e991752393139a8b2
1db72910af077a2d2e8d12fa2b5adb5730f308c9
b7c50ffc132a2a7aa0915fcff0df403b53dcd4403eeac4ada05b6731dc9ac284
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/devvn-quick-buy/css/devvn-quick-buy.css?ver=2.1.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4042
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/magnific-popup/magnific-popup.css?ver=1.3.8
103.28.39.55200 OK 1.8 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/magnific-popup/magnific-popup.css?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash 24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e
GET /wp-content/plugins/devvn-woocommerce-reviews/library/magnific-popup/magnific-popup.css?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1816
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/owl/assets/owl.carousel.min.css?ver=1.3.8
103.28.39.55200 OK 1.1 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/owl/assets/owl.carousel.min.css?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/devvn-woocommerce-reviews/library/owl/assets/owl.carousel.min.css?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1068
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/css/style.css?ver=1.2.3
103.28.39.55200 OK 968 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/css/style.css?ver=1.2.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (3546), with no line terminators
Hash dd72636f68c4970677e0e7e024f9f729
a016cd3c84c104aa8abf6e00985113fdc103232d
e252064b1947be518ea76c730f6a8f1c0fafcf31fe73e0ca19ab40ccc6f58fc9
GET /wp-content/plugins/ot-flatsome-vertical-menu/assets/css/style.css?ver=1.2.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:26:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 968
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/yith-woocommerce-ajax-product-filter-premium/assets/css/ion.range-slider.css?ver=2.3.1
103.28.39.55200 OK 2.2 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/yith-woocommerce-ajax-product-filter-premium/assets/css/ion.range-slider.css?ver=2.3.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Unicode text, UTF-8 text, with very long lines (11083), with no line terminators
Hash a7abef6e30e256d4ae6bc942400e631b
2622240f5a2f8f7fe1f0de367375f8b2d94ed0e4
63dab568506ad40c6de2271edef21f8943ef2fef9221b02a381faa2f642083a0
GET /wp-content/plugins/yith-woocommerce-ajax-product-filter-premium/assets/css/ion.range-slider.css?ver=2.3.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2232
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/css/devvn-shortcode-reviews.css?ver=1.3.8
103.28.39.55200 OK 2.4 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/css/devvn-shortcode-reviews.css?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with CRLF line terminators
Hash d06d2a5be77be6d8491879274ca10d64
64866b78d56cea3bf18c4aa86976f9cbcff1662d
39801ea1b342d4da2639e65090e7b3e50030b6167fb7f0049b61bf2d6ecfd64c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/devvn-woocommerce-reviews/css/devvn-shortcode-reviews.css?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2434
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/yith-woocommerce-ajax-product-filter-premium/assets/css/shortcodes.css?ver=4.1.0
103.28.39.55200 OK 3.4 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/yith-woocommerce-ajax-product-filter-premium/assets/css/shortcodes.css?ver=4.1.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash 090f6722d767c7d3702c1ae800f448e2
a721c528651509d635ac7d2e84406bf3532c27b9
ec01e6625c777e8808fe16d0f1f529b1845883bd5857e7fa8c9973f64b274ccd
GET /wp-content/plugins/yith-woocommerce-ajax-product-filter-premium/assets/css/shortcodes.css?ver=4.1.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3435
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/yith-wcbr.css?ver=ffe6a56ebd83e16c026cccd20a295e9e
103.28.39.55200 OK 205 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/yith-wcbr.css?ver=ffe6a56ebd83e16c026cccd20a295e9e
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with CRLF line terminators
Hash bfe76a01011fcc9eae25ff6ff38afa0a
31f480beea000988f41f0976681d8f3f3b6a8e47
e64a0253e72851cdb7ca9912f9e32de8e6ad64169bcc5a41edcc0afa1271fc9c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/yith-wcbr.css?ver=ffe6a56ebd83e16c026cccd20a295e9e HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:35:16 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 205
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.1
103.28.39.55200 OK 1.9 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (14615), with no line terminators
Hash 95c1fa8191d7051ed2c1f0807bbc57c8
3cae5698b4282de21449726177544fbc08e7dc35
89fe7813ce1348f6144aac84d5b5d1bff4fcf2333355c49c324f9ff80b8d1478
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1882
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/yith-wcbr-shortcode.css?ver=1.4.1
103.28.39.55200 OK 3.6 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/yith-wcbr-shortcode.css?ver=1.4.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with CRLF line terminators
Hash e041d4d20758efa968d4a7438ad3b73c
8e49d8039c2f55505abb22cca3bee5030229a4c1
75753acb679ff083d41a6b7d88735d03e79ac76471f7940498efdfa6f469f298
GET /wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/yith-wcbr-shortcode.css?ver=1.4.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:35:16 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3598
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/swiper.css?ver=6.4.5
103.28.39.55200 OK 4.1 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/swiper.css?ver=6.4.5
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (13425)
Hash 08c62b81e0b7229d411aca68b77fd621
dd7324c9345664df8e8fc8199eb7952b7debca9e
649a9c0970163f92d38551e8c760598e4921a1796fd07e4553f7f8f952e8c380
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-brands-add-on-premium/assets/css/swiper.css?ver=6.4.5 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:35:16 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4133
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.16.0
103.28.39.55200 OK 5.7 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.16.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Unicode text, UTF-8 text, with very long lines (24175), with no line terminators
Hash f498f3288b4bbec56a64b6d68be58ac9
b0933e689a0e423cd483ac3135e0e88558e31857
9ff417e9d46f0d5582da99f9c81e395b75595067b91810ca96433451ef03a1c7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/flatsome-shop.css?ver=3.16.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5710
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
103.28.39.55200 OK 4.2 kB URL HTTP/2 luaviet.com.vn/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome-child/style.css?ver=1.0.0
103.28.39.55200 OK 5.8 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome-child/style.css?ver=1.0.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (533)
Hash 0410386e1a255e6b9382c525b2904368
e25aace387659ae575c80bdc9e2bdf319b2acaaf
2d05fcb4425f49199d9748ebb1344d0b3889b48773d60e6bd8ef352f4ec74560
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome-child/style.css?ver=1.0.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Sun, 24 Jul 2022 14:08:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5760
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.16.0
103.28.39.55200 OK 29 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.16.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0cac3f178281c67f3928d144eeb7cbe7
9212a3daed4fc24392d4cc5513472be95e8f4dc7
c2f124e981d26554b9725bbf63e14d2cc6e93548d2a9fe748fdbac08b0642a39
GET /wp-content/themes/flatsome/assets/css/flatsome.css?ver=3.16.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 29179
content-type: text/css
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
103.28.39.55200 OK 31 kB URL HTTP/2 luaviet.com.vn/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30908
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/cart.png
103.28.39.55200 OK 762 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/cart.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 33 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a93934f5530d5098aef514a2207083f0
6745dd7a839bb176677ddbd65dd102469d2205ce
38dbb02913ffbc3a2de5fafa90837c6cf0af36351d9ddc673689fe16ca7f87fd
GET /wp-content/uploads/2021/03/cart.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 762
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
103.28.39.55200 OK 2.9 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7c2c4ebd10adb73367b5c5f0e1e5d3ce
a67e4fd0e3e7452e74b22517ba924b58307d7758
5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 07:27:07 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2914
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
103.28.39.55200 OK 3.9 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 07:27:07 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3934
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/
103.28.39.55200 OK 75 kB IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8327), with CRLF, LF line terminators
Hash e49f9bbf199df989f304e4c8b09a034d
ed845ee38eb709dfea1894df7aec9ef3da420654
cf7927a63a8c59c86cfa8a553886c55701c093b8d8cce656fe70559beed9c987
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:52 GMT
server: Apache
x-powered-by: PHP/7.4.12
last-modified: Wed, 14 Sep 2022 20:43:27 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/wp-util.min.js?ver=ffe6a56ebd83e16c026cccd20a295e9e
103.28.39.55200 OK 705 B URL HTTP/2 luaviet.com.vn/wp-includes/js/wp-util.min.js?ver=ffe6a56ebd83e16c026cccd20a295e9e
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (1305)
Hash fc7e549ce428fe90eb910c14d23a1532
e3eb36861f16a8b3ea97e8e60a2033957fe58a2e
80226ac13b48a680f63f8258a251d2b9b4c87394459df6bd32732fd4e69c1bd3
GET /wp-includes/js/wp-util.min.js?ver=ffe6a56ebd83e16c026cccd20a295e9e HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 705
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/underscore.min.js?ver=1.13.3
103.28.39.55200 OK 7.3 kB URL HTTP/2 luaviet.com.vn/wp-includes/js/underscore.min.js?ver=1.13.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (18876)
Hash 9a2ea6713769fcca4f8c5c008e529bca
d4f20ea23eb679890b61a6829a5803a90f4cd4eb
3ca9f3cece4ffaff4322dda5eac52f1dc8cf52001f3e011f9f54c3aa1c40d880
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7313
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.1
103.28.39.55200 OK 3.5 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (9115)
Hash 4eb090d1d9263b041ec90bac1a6e6e8f
0b0a01684ed1e07a41a9f6eb02423738a68f8b12
f621d8d1bdc2c1508699ef2510c1b35122fef1ee7da3ed10fe66a881a6d882b2
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3499
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.1
103.28.39.55200 OK 3.7 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (13887), with no line terminators
Hash 9d985e151711f23efa0846e2d13c6af6
c700e1555f861a236f1956bb4f8726292fe056eb
50c7fea0f8c6df392ea08b883b9e4daf3ad889836f87aeefad8736939fda9956
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3654
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-quick-buy/js/devvn-quick-buy.js?ver=2.1.3
103.28.39.55200 OK 8.2 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-quick-buy/js/devvn-quick-buy.js?ver=2.1.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Unicode text, UTF-8 text, with very long lines (16615), with CRLF line terminators
Hash f812c1a9bda6378fb4a14753a0ce419f
b81271c386f08a1add9dbc2dfb6ec531af43f390
c0941dbe732af28491dd6b168fb171ede5eb88a7210eafcdbd676074b82bda45
GET /wp-content/plugins/devvn-quick-buy/js/devvn-quick-buy.js?ver=2.1.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Tue, 13 Sep 2022 01:28:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8171
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/magnific-popup/magnific-popup.js?ver=1.3.8
103.28.39.55200 OK 7.3 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/magnific-popup/magnific-popup.js?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (20134), with CRLF line terminators
Hash eafcca13dedb5b4c370e07e808e92b90
d2b0342892b446cec06284f794c49e2ba91636c4
eff2139f82650f7529c95f2c353ef7ba300f9799671e47f4a59a6ff432564d06
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/devvn-woocommerce-reviews/library/magnific-popup/magnific-popup.js?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7339
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/owl/owl.carousel.min.js?ver=1.3.8
103.28.39.55200 OK 11 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/owl/owl.carousel.min.js?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/devvn-woocommerce-reviews/library/owl/owl.carousel.min.js?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11412
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/js/devvn-shortcode-reviews.js?ver=1.3.8
103.28.39.55200 OK 1.2 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/js/devvn-shortcode-reviews.js?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (3387), with no line terminators
Hash b82605af114577851b54eac73bda09e4
d07dd2e1421e16643a0064bc336f5fe6cb96ec9b
7f1fcc7982598707e2cf051936f4dd9be4d4af38c53ad941571e2325f7220b9b
GET /wp-content/plugins/devvn-woocommerce-reviews/js/devvn-shortcode-reviews.js?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1212
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/masonry/masonry.pkgd.min.js?ver=1.3.8
103.28.39.55200 OK 7.4 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/devvn-woocommerce-reviews/library/masonry/masonry.pkgd.min.js?ver=1.3.8
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (23966)
Hash e57ee6c11c48e209b6724255247be35f
3a3d7320c781ac53cc55e36e4e4c8ccb0989be91
bb9563bd33cfe7cd5dfa9e75316b6b2236b87c7dc85899667363e070e45a51b4
GET /wp-content/plugins/devvn-woocommerce-reviews/library/masonry/masonry.pkgd.min.js?ver=1.3.8 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:44:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7354
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/vendor/superfish/superfish.min.js?ver=1.2.3
103.28.39.55200 OK 2.1 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/vendor/superfish/superfish.min.js?ver=1.2.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (5399)
Hash 0f1793a031f651beae4aedc619d045ac
d1c40cb5dc94a6f862c3cc403c496e0c0d0a9f7b
9dde65f0d3a5009ca4ce620a419c201a915ad0035ba584785c2544ebd6ac311f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ot-flatsome-vertical-menu/assets/vendor/superfish/superfish.min.js?ver=1.2.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:26:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2141
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.1
103.28.39.55200 OK 1.1 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 0d03578b274ddfa19d4be46ff5d4f242
5d5322d264d2219c50b60abcf9625533088afbf2
342455e97f9438a6f336423fa4f6fc6dc59da5d84c23f4d39ebc5425aa9ada27
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1086
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/vendor/superfish/hoverIntent.js?ver=1.2.3
103.28.39.55200 OK 1.6 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/vendor/superfish/hoverIntent.js?ver=1.2.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash 87ea524141d5bf611e8bda259a6fa457
3fd37deacc9e37cd739a847fb99f315c829afb1a
7480283bd576a03ddda48678b21c75fa43f371c32e487471e53ec09ce3bee245
GET /wp-content/plugins/ot-flatsome-vertical-menu/assets/vendor/superfish/hoverIntent.js?ver=1.2.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:26:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1613
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.1
103.28.39.55200 OK 982 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 982
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.1
103.28.39.55200 OK 794 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 794
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/js/ot-vertical-menu.min.js?ver=1.2.3
103.28.39.55200 OK 894 B URL HTTP/2 luaviet.com.vn/wp-content/plugins/ot-flatsome-vertical-menu/assets/js/ot-vertical-menu.min.js?ver=1.2.3
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (1902)
Hash 4abe3407286ab052847c0d9e741be3c3
98d8e61228ea5383f3592a0c9ea9ec208ce67019
d8effbd4732f00b5c8186df073b8ec999631079bf0b6bc22a984c42761409ef5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ot-flatsome-vertical-menu/assets/js/ot-vertical-menu.min.js?ver=1.2.3 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 08:26:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 894
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.1
103.28.39.55200 OK 1.0 kB URL HTTP/2 luaviet.com.vn/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.1
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.1 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:26:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1039
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/inc/extensions/flatsome-lazy-load/flatsome-lazy-load.js?ver=3.16.0
103.28.39.55200 OK 601 B URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/inc/extensions/flatsome-lazy-load/flatsome-lazy-load.js?ver=3.16.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash c761585b28fe7032dfbc39b7d8bbda50
f9058f603f6a18808b38c7fdc9fc8482e0c78e44
d99f228dc49cee002e67cc0bab9fef96dec3301c20cf1ddd55eb3c5ab6e7849c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/inc/extensions/flatsome-lazy-load/flatsome-lazy-load.js?ver=3.16.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 601
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
103.28.39.55200 OK 706 B URL HTTP/2 luaviet.com.vn/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (1464)
Hash e26e2ba5d82da6211e981bf0e962fe00
ca7358efdb6852cfb78ec32383eaef15ac6cb61b
400f6ae8a00e7eabb07284d8cd8715579e9a3721fa463e508b5d40b83cde1447
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 706
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
103.28.39.55200 OK 2.5 kB URL HTTP/2 luaviet.com.vn/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2457
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=2114c593f5a803e4039d07c9e6fef8b6
103.28.39.55200 OK 6.5 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/assets/js/woocommerce.js?ver=2114c593f5a803e4039d07c9e6fef8b6
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (19398), with no line terminators
Hash 6fa4e7527190cbbf79d680def5f944fa
2f6ae72646a2cb3e2ee6b2255642f5734a034afc
6217b7cbf2a38210d38fb47a025d12da9dd589f4b6f890cf05d75fa87c404a66
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/woocommerce.js?ver=2114c593f5a803e4039d07c9e6fef8b6 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6519
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
103.28.39.55200 OK 7.1 kB URL HTTP/2 luaviet.com.vn/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Mon, 12 Sep 2022 01:44:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7095
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.16.0
103.28.39.55200 OK 5.0 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.16.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (13072)
Hash 03400b823e2c5822a450b97b61cb3705
d2af261eb1e97e4961397be8c851eb1cd82295a1
664e64289c09a0e6130bfaffde3e2b9c83d4768bb04d67c4888d008b780b5b31
GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-search/flatsome-live-search.js?ver=3.16.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4967
content-type: application/javascript
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=2138faedd39ec708526d158d5a3d53d7
103.28.39.55200 OK 16 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/assets/js/flatsome.js?ver=2138faedd39ec708526d158d5a3d53d7
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type ASCII text, with very long lines (55910), with no line terminators
Hash c393289cd9ca83ee2bedcee29534c096
c1996625c289417d428bf17af6987e5af856fc79
9f52aed89c77b9ba2308d3bab2f16f139ee958a27c3ffac07004286b91ed7efe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/flatsome.js?ver=2138faedd39ec708526d158d5a3d53d7 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16305
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:58:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KJM2V99
142.250.74.72200 OK 50 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KJM2V99
IP 142.250.74.72:0
File type ASCII text, with very long lines (3440)
Hash de014ffe0a0e66cbcb7817ad665da9cd
2b195e15f00d11d4b827841cc1500593e674630a
c6fdcf85a173be4e9e0a0af5ff2e90c9bb33d90f65dd4bb837cf5454ad215e7d
GET /gtm.js?id=GTM-KJM2V99 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 14 Sep 2022 20:58:53 GMT
expires: Wed, 14 Sep 2022 20:58:53 GMT
cache-control: private, max-age=900
last-modified: Wed, 14 Sep 2022 19:27:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:58:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
w.ladicdn.com/s547x307/5ed4b6a6b33f9f019259665b/lua-viet-bia-youtube-1-20220329001006.png
138.199.37.231200 OK 315 kB URL HTTP/2 w.ladicdn.com/s547x307/5ed4b6a6b33f9f019259665b/lua-viet-bia-youtube-1-20220329001006.png
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type PNG image data, 547 x 308, 8-bit/color RGB, non-interlaced\012- data
Size 315 kB (314610 bytes)
Hash 168cfd97ade05b72382f252b96e091a1
459e834b29a3e49f8b0106275efe79a608335367
377ebe8a6808732a77875b79d1719957fcc49116ac5dd4e03bf0df4b2ddba951
GET /s547x307/5ed4b6a6b33f9f019259665b/lua-viet-bia-youtube-1-20220329001006.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
content-type: image/png
content-length: 314610
server: BunnyCDN-DE-863
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "62453a69-4ccf2"
last-modified: Thu, 31 Mar 2022 05:21:45 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/13/2022 12:48:03
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 0e09d4c2a5010feb57a447fad8bdf69b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74cf77ca0dd7e4f96dfea6ceb4536e65
fa0492bed3fa3b15cc0380e3692320088aa7b217
94f64669694fa90640f8ee8c22f1cb792166c18bab72200a991bc6eaf8f09453
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4654
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:58:53 GMT
Last-Modified: Wed, 14 Sep 2022 19:41:19 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff
103.28.39.55200 OK 15 kB URL HTTP/2 luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format, TrueType, length 15088, version 1.1\012- data
Hash e4ad92e1aadc65135d0165f0ed4a7411
4f3b862a60d24e4038937871b4c536db58ba8521
8030191fd7607b2f92fed97d2a7ad89f0f21a2e308734c0e12e5d1147ae8ff56
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQUwaEQXjM.woff HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:40:35 GMT
accept-ranges: bytes
content-length: 15088
vary: Accept-Encoding,User-Agent
content-type: font/woff
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQUwaEQXjN_mQ.woff
103.28.39.55200 OK 11 kB URL HTTP/2 luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQUwaEQXjN_mQ.woff
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format, TrueType, length 11292, version 1.1\012- data
Hash 4f6ddc3f852a0a44c482d0ca76509173
3d61c43d16abfc1c13b76e149bc9bec8d7919f08
81bc88c322dc63d8b6db5a53f87494ecafe9cdb518865374f743761946b906be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQUwaEQXjN_mQ.woff HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:40:35 GMT
accept-ranges: bytes
content-length: 11292
vary: Accept-Encoding,User-Agent
content-type: font/woff
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.16.0
103.28.39.55200 OK 7.1 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.16.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format (Version 2), TrueType, length 7068, version 1.0\012- data
Hash 48c36cf085b90e204ed78cf3b5925098
8708b0fff49904b989ea4d62291957dd827dd254
8bdd2549e2df32257d86d141069f086600680d6132d18143617f0289d8926414
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/css/icons/fl-icons.woff2?v=3.16.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:36 GMT
accept-ranges: bytes
content-length: 7068
vary: Accept-Encoding,User-Agent
content-type: font/woff2
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVQUwaEQXjM.woff
103.28.39.55200 OK 15 kB URL HTTP/2 luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVQUwaEQXjM.woff
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format, TrueType, length 14568, version 1.1\012- data
Hash b450cf4acba95e890b284a45403d174c
2b9e5c306370bae1487cd09bab89a89a34e8c63c
337d3642469113b35ad9d28f34de6b707b936a5d3a8b3174f4f514b6ce1006ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVQUwaEQXjM.woff HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:40:36 GMT
accept-ranges: bytes
content-length: 14568
vary: Accept-Encoding,User-Agent
content-type: font/woff
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVQUwaEQXjN_mQ.woff
103.28.39.55200 OK 11 kB URL HTTP/2 luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVQUwaEQXjN_mQ.woff
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format, TrueType, length 10920, version 1.1\012- data
Hash 27f9eb7cd566f882696f3d881e588ce6
fcc47a6e4728315861be297824c5a7249e7ff5a8
6583058711d379de3b1a4018ed39f2c5be70eafd0c35b67a508a726a7942f953
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVQUwaEQXjN_mQ.woff HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:40:36 GMT
accept-ranges: bytes
content-length: 10920
vary: Accept-Encoding,User-Agent
content-type: font/woff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74cf77ca0dd7e4f96dfea6ceb4536e65
fa0492bed3fa3b15cc0380e3692320088aa7b217
94f64669694fa90640f8ee8c22f1cb792166c18bab72200a991bc6eaf8f09453
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4655
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:58:54 GMT
Last-Modified: Wed, 14 Sep 2022 19:41:19 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/qlcme0_IJnE.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/qlcme0_IJnE.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4093)
Hash cf67c2ba10a6be81004cb6c7f844b413
f95f770928c991be3f531f4085a4916ba1a96d6d
09e61b10cf154b81d14baf7115103ea85db3f9c5696ab464a7440f0b4cfb07af
GET /rsrc.php/v3/yS/l/0,cross/qlcme0_IJnE.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 14 Sep 2023 16:46:37 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: z2fCuhCmvoEATLbH+ES0Ew==
x-fb-debug: ka924Z1nQlAnsDahnk7Oc2bPV5DtfMVaIf02fzI0K1aopu8phevtqE+Wcpl1xEOjZPqcx+WxkkKrQ9noSssWlA==
content-length: 5121
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 12 Sep 2023 21:51:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: iBRuZTPxDWMf/lz/3vX3eBuqQdaQ3XZm/NeAYywJuNG7CCrYj4DSuPLoCweovZjJChdnFVSgbVhJEggjdF7hvw==
content-length: 1657
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Sep 2023 21:23:32 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: mZKePhMMdAYuiW6z+4CPZo2tEmKKS28lAmwT6Oy3QOfmq1DwRsipUqmnjRRknglOU1itNEmy9PwhTTZuq48a8w==
priority: u=3,i
content-length: 12179
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (7299)
Hash 15240c752b29af21dfc4c5b38d7bd37a
8324e81ecdb9a4775ef4aabbadf833b408aededb
068517058d35fd5c402189f4e68f13d1d2a2a1b39b2bf973b10a83362826099e
GET /rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Sep 2023 18:26:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FSQMdSspryHfxMWzjXvTeg==
x-fb-debug: eAoh2Gipqqu/NXCNthNCZXWzAwlIrw0gKHNlTU7aJdgE0DA4wk6vIwRvmdUFoufV4ZGt6+rMc2EF9XpeHZiKYg==
content-length: 15877
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash a7e668c44c1c44a7eb82bf24800ff5e9
6f2393e5cf5ef26d6a6d661b7856ffcd273a63a6
ad110540fa27e40a9cf3de4aa42ca9632f03a622b73fe41b19f633fe81d6eaea
GET /rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Sep 2023 01:36:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: p+ZoxEwcRKfrgr8kgA/16Q==
x-fb-debug: G7Glzl+ndWasoZIfYIt04wZkaAEgXwym1tSAG+fLa9NRmoqfFKEpSpTwQIPIWZOWa3sx4xTBq0XKiE6gXnJc+w==
priority: u=3,i
content-length: 8358
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 05 Sep 2023 14:02:48 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: 5mxlJKEHRVzOPZRd5dc5NdCwXfRS09Pae23JDC5s9/9yssNrwALql8EjtqKvYEotu6WgKtF/UubK6hmu+7OaYg==
priority: u=3,i
content-length: 338
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 9.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (9886)
Hash 12ee8cecac4344f91112c41bde25523c
ac8ea8f8b40bbaf2cf932ffdf67abb8b14d7ce0d
0558ee7b9742c0bdede937d19d585eec41b4011b9989f47264464eecb46caaa2
GET /rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 06 Sep 2023 18:00:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Eu6M7KxDRPkREsQb3iVSPA==
x-fb-debug: MqAc4Jp2+8aL7LZlKJAbraCvKcEURp0q0RsSoBmKe7jjHyjMKuyfxH5p3qVBk2tTZvsov5TzFb7/BV4lJ40llw==
priority: u=3,i
content-length: 9040
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/phone.png
103.28.39.55200 OK 1.0 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/phone.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 3863355b06592b3f8c21eb619311b221
0dc1f7a41e41f1ef21650a4dbbaadb686a3472b6
fb5d015c78ea90f86ac1bd8f2bf829dbcef4938495fa951ff5e19dd0102241cc
GET /wp-content/uploads/2021/03/phone.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 1016
content-type: image/png
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (41977)
Hash 3ce46348c6edab150e0c6f8ce7cd0a0d
6aea70ed9afc6f514f89c0bca5a99f04c331bc24
8ac7aadd7e52746a466b2721699b1430ab4360c52d4c73dab9f51a849b73857d
GET /rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 12 Sep 2023 23:02:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PORjSMbtqxUODG+M580KDQ==
x-fb-debug: c9WgxwMo1Tm7JYJ0k0D3kh5OeoMMfpih6iLgRLiW5n8k4nSpSt3vH+U7r35xtlYCCbKXd9QBFZElotMgsTwZaw==
priority: u=3,i
content-length: 23301
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/icons_menubar-11_11.png
103.28.39.55200 OK 2.1 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/icons_menubar-11_11.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 66 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash bf6549a3ced89aaa4f4ce8d68ac63566
432e0c33d219c5ab393e70fa4570edb11c5916be
8b9094e642a0d56c2518fc6a867be44a042dc77f09b62aec8c66549ff4f43eb0
GET /wp-content/uploads/2021/03/icons_menubar-11_11.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 2139
content-type: image/png
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 08 Sep 2023 16:41:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: F/Ks6L/ODrGWpooL/ydi60V2ddMBtGP2Q6SkRGsN0DyBdQzqhFy78deSITTx40Qox5sSGo1JLYKucRRUBb7stQ==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/2236252-36x36.png
103.28.39.55200 OK 955 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/2236252-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 33c639950dbbdf0daae60ef32f952429
7efd5fca18207817ae79b5a66fc93b85b336638e
b0ea839f94262292ba267b23e3651958228b4a449353d4d4bc51ce1f026f3c99
GET /wp-content/uploads/2021/03/2236252-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 955
content-type: image/png
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 10:34:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: 86y3i3sy9jjDaSwZdKwWDNfT0jhSZgIC/wO/r6UsDn/zT5AA7hVmL+J1eWzgzylntf4RiG+L/nvUQSjPsoquGQ==
priority: u=3,i
content-length: 7236
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/368-3684733_kitchen-kitchen-sink-icon-clipart-36x33.jpg
103.28.39.55200 OK 1.2 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/368-3684733_kitchen-kitchen-sink-icon-clipart-36x33.jpg
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 36x33, components 3\012- data
Hash f54c73569c211e71fd2bdfbf0cec9d91
30ad7e181b0385a8b6382c155d272bad6e43162f
553415a2b3afe4f676b05bfb505e95881f84eb84313c40a5376f71d7a6ebecfa
GET /wp-content/uploads/2021/03/368-3684733_kitchen-kitchen-sink-icon-clipart-36x33.jpg HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 1178
content-type: image/jpeg
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/1641105-36x36.png
103.28.39.55200 OK 811 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/1641105-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f65b51f372368b0c0d96f23093056c0
5150439f18f41625a39f91787b93ce2ff1bfe3b5
aff730ee50a44f8ead74969a4f5eb4762218caeccbc1e35fdd6ad0e92a16443a
GET /wp-content/uploads/2021/03/1641105-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 811
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/2333366-36x36.png
103.28.39.55200 OK 1.1 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/2333366-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 805bef8fbb21159712b988a1e0caf4ff
1ff7866f4bb041f620642b3f15bd903a9bd3c0a1
00144834ce7925e4f80504a29e6ba5c1a3fb0b48a70cb9128eb82c1f3b828cb3
GET /wp-content/uploads/2021/03/2333366-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 1116
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/1127565-36x36.png
103.28.39.55200 OK 626 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/1127565-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 59e8e994c826720f5cc37941a971aae7
7317149bb48c9dcf244f46942a3f7cbac8d4b637
c606681b5db87f7c28a21a2635ca2419fa3606ebcd91aa9d1a2635811bed0bd3
GET /wp-content/uploads/2021/03/1127565-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 626
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2022/05/lua-viet-ngang.png
103.28.39.55200 OK 989 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2022/05/lua-viet-ngang.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 64d5621042a26c0d6858fd64790ab8b7
e6ef58ca78b56f3b0029cf82d12bf62e21bb0bdb
3ce0853d243906676741b6ece89a93b15dc6d48f02b6128fba511555cd5b0587
GET /wp-content/uploads/2022/05/lua-viet-ngang.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
server: Apache
last-modified: Thu, 26 May 2022 17:38:08 GMT
accept-ranges: bytes
content-length: 9267
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/148374-36x36.png
103.28.39.55200 OK 1.1 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/148374-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 141be650f8635dafd15472496ee3a5ab
e00acf0c3449fb1bda628aee9837f769579041d2
9d6fd3bef240ee4fc091a3f78c04adf2ab2888017a126cea14f9e8f3180193f6
GET /wp-content/uploads/2021/03/148374-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 1124
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/2235754-36x36.png
103.28.39.55200 OK 476 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/2235754-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash e43af8719242d8c1595094df446f2d54
691540f29d16f1c4e969e32ada4c953e04aaa9e2
98fa9c18b45b241e99b9ee5126357096bb9021ef668df281ef27393413e609fa
GET /wp-content/uploads/2021/03/2235754-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 476
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2021/03/2094097-36x36.png
103.28.39.55200 OK 889 B URL HTTP/2 luaviet.com.vn/wp-content/uploads/2021/03/2094097-36x36.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 580127c5bbe2d6f57b6083e93a0eafb1
3b6d9584a0d53caf15ca67ee0730ad9451f9f581
8b1604893add4657ea01fa075fa8a5a76b33c789534e9dddbb39173331f32d20
GET /wp-content/uploads/2021/03/2094097-36x36.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Sun, 02 May 2021 06:12:44 GMT
accept-ranges: bytes
content-length: 889
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4vaVQUwaEQXjN_mQ.woff
103.28.39.55200 OK 4.9 kB URL HTTP/2 luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4vaVQUwaEQXjN_mQ.woff
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format, TrueType, length 4896, version 1.1\012- data
Hash 1708dabfcb4b6d700835823893892ca8
985c3ec2db152896f192ba512f1ffb6d927250c8
e8b163843e0bce9a90f428875b1ba9c7b55927839e82f671c9f668061af398ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4vaVQUwaEQXjN_mQ.woff HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:40:35 GMT
accept-ranges: bytes
content-length: 4896
vary: Accept-Encoding,User-Agent
content-type: font/woff
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4vaVQUwaEQXjN_mQ.woff
103.28.39.55200 OK 4.8 kB URL HTTP/2 luaviet.com.vn/wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4vaVQUwaEQXjN_mQ.woff
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type Web Open Font Format, TrueType, length 4776, version 1.1\012- data
Hash 05f7fe33f043f387cf059adc965ceb6b
11deca970e87f6481e4d729726c6267e8088f0a4
69dac7cb575816e3c3cadc26b11fc71272a179a247063639ee1a4a607af9e1d1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/open-sans/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4vaVQUwaEQXjN_mQ.woff HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:40:36 GMT
accept-ranges: bytes
content-length: 4776
vary: Accept-Encoding,User-Agent
content-type: font/woff
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 77 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 08 Sep 2023 21:53:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5xKwBgojtsXt47Z+C7hjng==
x-fb-debug: vvrK2vkZMuMXVxJFrpy6jumx68cp4v69n8ipVTMbhN6i70rhuKyYbJSle96HK5f+f9RKTJbkssPPC7K5mOAhOA==
priority: u=3,i
content-length: 90711
x-fb-trip-id: 1904183273
date: Wed, 14 Sep 2022 20:58:54 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2022/05/cropped-lua-viet-ngang-192x192.png
103.28.39.55200 OK 18 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2022/05/cropped-lua-viet-ngang-192x192.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash a9c0c5302f57dae8d00420a87ee4a826
e15cad34d83017883361745a021bdbb73e06ae5a
385f630f173ae8d251a26a0065e8099737f17ff95f41f4ec1f2b0101ddb61d6d
GET /wp-content/uploads/2022/05/cropped-lua-viet-ngang-192x192.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Fri, 08 Jul 2022 14:43:26 GMT
accept-ranges: bytes
content-length: 18004
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2022/05/cropped-lua-viet-ngang-32x32.png
103.28.39.55200 OK 1.7 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2022/05/cropped-lua-viet-ngang-32x32.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash fe0ce7c2a1bfa268366796ac694f5665
5b2d3b29c852c6d1f56aa54c5b84bd5b9efea85c
d53620cad49117adfe7ebfcb808d638458716764df4fae16134d6ea0aa01ea71
GET /wp-content/uploads/2022/05/cropped-lua-viet-ngang-32x32.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
last-modified: Fri, 08 Jul 2022 14:43:26 GMT
accept-ranges: bytes
content-length: 1695
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.0
103.28.39.55200 OK 14 kB URL HTTP/2 luaviet.com.vn/wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.0
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
Hash 1f98155590cdb7bea9105bf56748aa5a
52d507b9f341374f633c9053ea3330618f7055dd
cb26d156d163d0d1acbdee17f227d7912e01e57050378969c68b82ba12561177
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/flatsome/assets/js/chunk.vendors-slider.js?ver=3.16.0 HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431; _gcl_au=1.1.324934794.1663189120; _ga_EKJG01BKYK=GS1.1.1663189120.1.0.1663189120.0.0.0; _ga=GA1.1.217034105.1663189120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:55 GMT
server: Apache
last-modified: Wed, 14 Sep 2022 20:39:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13169
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 56b4a90e8be043082aa30d490fe93e47
6c94d4b9610ec757d7e7851ac2e478edff1309f8
c59724a0ece262f497d3f09f4e90ae49a11a3a150134183cc10ef2c47f5fe9b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 20:58:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-EKJG01BKYK>m=2oe9c0&_p=1968078158&cid=217034105.1663189120&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663189120&sct=1&seg=0&dl=https%3A%2F%2Fluaviet.com.vn%2F&dt=C%C3%94NG%20TY%20TNHH%20S%E1%BA%A2N%20XU%E1%BA%A4T%20TH%C6%AF%C6%A0NG%20M%E1%BA%A0I%20XNK%20L%E1%BB%ACA%20VI%E1%BB%86T&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-EKJG01BKYK>m=2oe9c0&_p=1968078158&cid=217034105.1663189120&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663189120&sct=1&seg=0&dl=https%3A%2F%2Fluaviet.com.vn%2F&dt=C%C3%94NG%20TY%20TNHH%20S%E1%BA%A2N%20XU%E1%BA%A4T%20TH%C6%AF%C6%A0NG%20M%E1%BA%A0I%20XNK%20L%E1%BB%ACA%20VI%E1%BB%86T&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-EKJG01BKYK>m=2oe9c0&_p=1968078158&cid=217034105.1663189120&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663189120&sct=1&seg=0&dl=https%3A%2F%2Fluaviet.com.vn%2F&dt=C%C3%94NG%20TY%20TNHH%20S%E1%BA%A2N%20XU%E1%BA%A4T%20TH%C6%AF%C6%A0NG%20M%E1%BA%A0I%20XNK%20L%E1%BB%ACA%20VI%E1%BB%86T&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://luaviet.com.vn
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://luaviet.com.vn
date: Wed, 14 Sep 2022 20:58:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
luaviet.com.vn/wp-content/uploads/2022/05/nha-thau-thiet-bi-bep-va-giat-la2-02-1-1024x492-1.png
103.28.39.55200 OK 659 kB URL HTTP/2 luaviet.com.vn/wp-content/uploads/2022/05/nha-thau-thiet-bi-bep-va-giat-la2-02-1-1024x492-1.png
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type PNG image data, 1024 x 492, 8-bit/color RGBA, non-interlaced\012- data
Size 659 kB (659156 bytes)
Hash 803c53ae3287f575d8da6760417718c5
d79b8c7f9b0c3c0dba5d3c71a7e7b9856dbaf239
b52758b3d487e08e1905805543496ac72752ba6b3b5b12e5f123e5c2f3aa906b
GET /wp-content/uploads/2022/05/nha-thau-thiet-bi-bep-va-giat-la2-02-1-1024x492-1.png HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431; _gcl_au=1.1.324934794.1663189120; _ga_EKJG01BKYK=GS1.1.1663189120.1.0.1663189120.0.0.0; _ga=GA1.1.217034105.1663189120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:55 GMT
server: Apache
last-modified: Tue, 24 May 2022 16:42:32 GMT
accept-ranges: bytes
content-length: 659156
content-type: image/png
X-Firefox-Spdy: h2
luaviet.com.vn/?wc-ajax=get_refreshed_fragments
103.28.39.55200 OK 424 B URL HTTP/2 luaviet.com.vn/?wc-ajax=get_refreshed_fragments
IP 103.28.39.55:0
ASN #131353 NhanHoa Software company
File type JSON data\012- , ASCII text, with very long lines (904), with no line terminators
Hash cf12a395ae43d7eda4d5398c4c16b0a0
21322d3be455be1fc48bfe6ba0624e08722ceab5
22516b5f51c32049b8450907e3b5d590167938c64b7f1c83228ec6d1ff59cc83
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: luaviet.com.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://luaviet.com.vn
Connection: keep-alive
Referer: https://luaviet.com.vn/
Cookie: _timenow=1663189119431; _gcl_au=1.1.324934794.1663189120; _ga_EKJG01BKYK=GS1.1.1663189120.1.0.1663189120.0.0.0; _ga=GA1.1.217034105.1663189120
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:54 GMT
server: Apache
x-powered-by: PHP/7.4.12
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 424
content-type: application/json; charset=UTF-8
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fbepnhahang.luaviet%2F&tabs=timeline&width=340&height=271&small_header=true&adapt_container_width=true&hide_cover=true&show_facepile=false&appId
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fbepnhahang.luaviet%2F&tabs=timeline&width=340&height=271&small_header=true&adapt_container_width=true&hide_cover=true&show_facepile=false&appId
IP 31.13.72.36:0
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fbepnhahang.luaviet%2F&tabs=timeline&width=340&height=271&small_header=true&adapt_container_width=true&hide_cover=true&show_facepile=false&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: rFZcvwCACRPmnYs5VZtYCI20eEJh0Bh2TCSI7T7SAPtoEZnBmo7NQW6MI8KUoLyiUoNKSl3SF7RAZ258aHshMQ==
date: Wed, 14 Sep 2022 20:58:54 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
w.ladicdn.com/v2/source/ladipage.vi.min.js?v=1659579964854
138.199.37.231200 OK 0 B URL HTTP/2 w.ladicdn.com/v2/source/ladipage.vi.min.js?v=1659579964854
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /v2/source/ladipage.vi.min.js?v=1659579964854 HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luaviet.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 20:58:53 GMT
content-type: text/javascript
server: BunnyCDN-DE-863
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31919000
etag: W/"631b3fbe-53940"
last-modified: Fri, 09 Sep 2022 13:29:34 GMT
cdn-storageserver: NY-353
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/10/2022 19:35:52
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: ed194a0a0304c1db40b1dfc4c2af18cb
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2