Report - crezu.vn/

Report Overview

Submitted URL
crezu.vn/
IP
35.229.199.189
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2023-01-11 05:57:23
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	12 kB	172.64.155.188
www.googleoptimize.com	1604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	49 kB	142.250.74.174
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	511 B	694 B	216.58.211.4
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	51 kB	142.250.74.35
events.crezu.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	906 B	816 B	35.240.92.105
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	592 B	703 B	173.194.222.154
tpc.googlesyndication.com	126	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	860 B	18 kB	216.58.211.1
www.googletagservices.com	169	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	50 kB	216.58.211.2
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	746 B	142.250.74.106
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	867 B	11 kB	142.250.74.35
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.2 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.187.39.66
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	50 kB	142.250.74.168
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	21 kB	142.250.74.46
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	1.1 kB	216.58.211.2
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	572 B	349 B	31.13.72.36
partner.googleadservices.com	798	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	448 B	911 B	216.58.207.226
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	29 kB	31.13.72.12
adservice.google.com	76	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	779 B	216.58.211.2
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	35 kB	23.36.76.226
cdn.crezu.net	708765	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	152 kB	35.201.76.189
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
crezu.vn	479041	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	16 kB	278 kB	35.229.199.189
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	122 kB	142.250.74.131
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	510 B	694 B	142.250.74.131
cdn.morecashpls.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	24 kB	34.107.249.96
analytics.tiktok.com	1182	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	103 kB	95.101.11.171
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	880 B	62 kB	142.250.74.34

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-11	medium	crezu.vn/	Phishing
2023-01-11	medium	crezu.vn/	Phishing
2023-01-11	medium	crezu.vn/	Phishing
2023-01-11	medium	crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js	Phishing
2023-01-11	medium	crezu.vn/wp-includes/js/jquery/jquery.min.js	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-how_1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-features_5.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-features_1.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-features_2.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-features_3.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-features_4.svg	Phishing
2023-01-11	medium	crezu.vn/wp-content/uploads/2020/06/i-features_6.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (160)

	URL	Size	First Seen	Last Seen
	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	7.0 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:16 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 8fb7ae1dfe264bede1883961836d18ac 388b325fea585e6780e0f30cb43a7df0f28b5035 7e206584502ccfa5cd025eb15a4534f380a0ff375e2d988899f7a668935e65bf Loading...

	tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/window_focus_fy2021.js	2.7 kB	2023-03-08	2024-04-25
Pretty URL tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/window_focus_fy2021.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2024-04-25 20:39:32 Times Seen2172 Hash 9ef158292b617d358506529b02c73629 843852d8addbf1a7f96c5607179e1c9423ed8a4c 3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5 Loading...

	www.googleoptimize.com/optimize.js?id=OPT-W6HX45D	125 kB	2023-03-12	2023-03-12
Pretty URL www.googleoptimize.com/optimize.js?id=OPT-W6HX45D IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash e7dd41df75bf377451289c7aba13da6b fda1a7e879a3967c9f1f058c1a96e59e16f7a390 f4999bd21cf32e84addd66eeb6e4bae19a6f19ffeb987deb2420c33f0e6fe60c Loading...

	cdn.crezu.net/wp_js/dist/page-index.js	253 kB	2023-03-12	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/page-index.js IP 35.201.76.189 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:57:45 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 58e742b43c199c423844bf9a3d62375a aba74d08bb6cf6e2eb09abf3da1baeff171f6e33 0aa3f2a1043c26f56bab4d1eac7e45eb3243a3ef283a943c45c863f08abd1fab Loading...

	cdn.crezu.net/wp_js/dist/countries/vn.js	2.3 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/countries/vn.js IP 35.201.76.189 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a9d4583f2975ed60e02d35256e02f294 5d35599e3de6c949d60f664111601b2faceebe1f e4a25340f810f50486892a572227d0ad55ea05c5a8c19f5a1516064b45a19630 Loading...

	crezu.vn/	59 B	2023-03-08	2024-04-23
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2024-04-23 04:24:15 Times Seen17 Hash 75c3ddaba57b6cdcc4f3738bc2de6411 180e587d472ee9b5c30355ab0af2613fbab68dc7 5954b3d73de78c313ea5f4d20cf782ed407f6f037e2f248374231e8071edd131 Loading...

	connect.facebook.net/en_US/fbevents.js	108 kB	2023-03-12	2023-03-13
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:27:05 Last Seen2023-03-13 02:53:43 Times Seen1 Hash 215d19684091f3dc2c98b38b0a1254b1 4625cc5882f5730370f2a753ce1b740ad69e7463 cba8862bc0eeff77ab390c0669021b95055e809f226aa0e7dc438d79e3ad399f Loading...

	cdn.crezu.net/landings/js/get_token_with_custom_prompt.js?rand=1673416623821	122 kB	2023-03-09	2023-03-13
Pretty URL cdn.crezu.net/landings/js/get_token_with_custom_prompt.js?rand=1673416623821 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:16:37 Last Seen2023-03-13 03:13:25 Times Seen1 Hash d4a20e6e449bbdb9d1f1ef14bf75e751 4b7f77695216a91e477df24a78173d934db78937 9bb5ae62de13926b26390223fba930aa19c3129ad1db43771ae9f12dc8aa609e Loading...

	crezu.vn/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-26
Pretty URL crezu.vn/wp-includes/js/jquery/jquery.min.js IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 10:10:59 Times Seen31844 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	analytics.tiktok.com/i18n/pixel/static/identify_13839.js	117 kB	2023-03-08	2023-12-01
Pretty URL analytics.tiktok.com/i18n/pixel/static/identify_13839.js IP 95.101.11.171 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-12-01 19:12:12 Times Seen8 Hash 2882420796825a8886ceecc7c4ed1a6c d9cba04c7337ba026b4a962b6e33f5f431fc68de 6efa775a864aba5b3b1bc9ce6335a617693c712d3a65633cbe6751fa1d291a9c Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	15 kB	2023-03-12	2023-03-18
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:52:29 Last Seen2023-03-18 08:53:17 Times Seen1 Hash ec05481cb27b78fb0a95fd613ee89ade 8b2fb8c78bcaa6d804a508f4be8038636d2150ea ef48cf22427058a3948a932fd9310f48cc9b34289abb3542cc7952fbc782a642 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	202 B	2023-03-07	2023-12-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2023-12-09 21:56:02 Times Seen779 Hash 448988dac0fe7d5dfb1fd9ff3cd66b24 7c8ec3e9d704cc343dd0aed2d355cfe878c5877d b16185d817ab24523135c05676bcba706b8911ac50227c4150275cd8dadff06f Loading...

	tpc.googlesyndication.com/sodar/sodar2.js	17 kB	2023-03-07	2024-04-26
Pretty URL tpc.googlesyndication.com/sodar/sodar2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 08:23:53 Times Seen17686 Hash 2cc87e9764aebcbbf36ff2061e6a2793 b4f2ffdf4c695aa79f0e63651c18a88729c2407b 61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb Loading...

	analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq	3.5 kB	2023-03-12	2023-03-12
Pretty URL analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq IP 95.101.11.171 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 23a3d450424520f55b1c956698dabfe9 c5845640e168a1c5235f3f70149dacf6f0bfc39f f26455a523cbcc7460a09544abf2f3a77f3faeabc0c0c24599650d7c85702b15 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&adk=293675617&adf=814277786&lmt=1673416622&plat=3%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32&plas=135x742_r&format=0x0&url=https%3A%2F%2Fcrezu.vn%2F&ea=0&pra=5&wgl=1&dt=1673416622273&bpp=4&bdt=2254&idt=263&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&nras=1&correlator=6052107976067&frm=20&pv=2&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=385	4.4 kB	2023-03-12	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&adk=293675617&adf=814277786&lmt=1673416622&plat=3%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32&plas=135x742_r&format=0x0&url=https%3A%2F%2Fcrezu.vn%2F&ea=0&pra=5&wgl=1&dt=1673416622273&bpp=4&bdt=2254&idt=263&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&nras=1&correlator=6052107976067&frm=20&pv=2&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=385 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 117cd1389e12dea09bd3f58cf1db117e 5621f793f76ae856d513d0012d44474b79890aeb 56bbdce4abed66afe2becd756f493ba431cdea4f0ffc26b8cdedf9c87d6850d4 Loading...

	www.google.com/recaptcha/api2/aframe	614 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/api2/aframe IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2023-04-05 02:12:11 Times Seen4624 Hash e9e28069c47a530a55f8c7e015a1b38b 2eced601ebdbe39ca274f61c71376ea4bcb8dfff 5fc84aaac11d3157f560666107a0551c67974bbd141130882f9579a5a92e0c52 Loading...

	pagead2.googlesyndication.com/bg/JwRg8GnJRbSbwgtubA3x1Twn6jgCPCxSQn9TsX0K1wE.js	37 kB	2023-03-12	2023-03-13
Pretty URL pagead2.googlesyndication.com/bg/JwRg8GnJRbSbwgtubA3x1Twn6jgCPCxSQn9TsX0K1wE.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:39:26 Last Seen2023-03-13 10:00:57 Times Seen1 Hash 486920288142af170337451ee71446c9 f6182d4e7e744334cf2b4bf9e5aca5d5218a491b 270460f069c945b49bc20b6e6c0df1d53c27ea38023c2c52427f53b17d0ad701 Loading...

	crezu.vn/	337 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:46:45 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 387867ec31ab625c2b11dbda114eeae7 82c0f167e9db6ad698f7c328e6644f007ae1ea55 2e9cb852f3374b9fcaaa7b7d7e11093183f5f87520cad4fa2f4f42f60dafcdd2 Loading...

	crezu.vn/	363 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash ab94b81668bd457bc93cf53a0fff406b debb07e523ba9075657861d504bd339dbfef9bf3 21e18622ddb4baf73de4d3df46982f34c47286f72d60d7d85bed33a7b3722a6f Loading...

	www.gstatic.com/mysidia/7d0b7188506749bb068f2c695a7a947e.js?tag=client_fast_engine_2019	9.5 kB	2023-03-12	2023-03-12
Pretty URL www.gstatic.com/mysidia/7d0b7188506749bb068f2c695a7a947e.js?tag=client_fast_engine_2019 IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:58:28 Last Seen2023-03-12 21:40:16 Times Seen1 Hash 7d0b7188506749bb068f2c695a7a947e 81a64d1a8086a2166112bfe3d17bd0faa073a79d a4667dba2a203d28710eb217ab0f81b8b573affebdc0b75403feac41f90f5ade Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	48 B	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen282 Hash d9f8fa4c2d8916fa294a19957139b65f 78de673e23d95d3fdb09ae4f49f7c5c5a05c36a1 479778499f9b567fafd3360eb8eb2fdc3efd2651252ff3863e287136a81aa2d3 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	3.9 kB	2023-03-08	2023-03-14
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-03-14 13:23:12 Times Seen1 Hash 41ec6b317ecd4bdb0aeacccea220cac2 25a6ed1d4ac4326e30516064b9f1b7d44c8c8613 70f25c4a1351285f5616eed749cd7297e937608a6b3494448ab69f31634be2e9 Loading...

	tpc.googlesyndication.com/pagead/js/r20230109/r20110914/abg_lite_fy2021.js	23 kB	2023-03-12	2023-03-13
Pretty URL tpc.googlesyndication.com/pagead/js/r20230109/r20110914/abg_lite_fy2021.js IP 216.58.211.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:52:28 Last Seen2023-03-13 02:30:53 Times Seen1 Hash c4f26a13151eff5a890fa93f0d61b422 d5a5489516fc8398b76e7ff2ed1fa0dc474112bc c5418bee2b5eb509379e5146161267420c90f21ef5824f64ca9f7396a8f51dba Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	437 B	2023-03-12	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 1103704c24358bcbc91e72b02784b739 cb111483b3eef98f24e5563b560c86c32d6f2003 74cb40935bc4035bd0e2a2a34e6bfabde6a3279821581c94886b623d09c513d6 Loading...

	www.gstatic.com/mysidia/1507d5c23d710c2e70b81f354fbf7065.js?tag=mysidia_one_click_handler_one_afma_2019	34 kB	2023-03-12	2023-03-12
Pretty URL www.gstatic.com/mysidia/1507d5c23d710c2e70b81f354fbf7065.js?tag=mysidia_one_click_handler_one_afma_2019 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:58:28 Last Seen2023-03-12 21:40:50 Times Seen1 Hash 1507d5c23d710c2e70b81f354fbf7065 912bf34827ab1edfba64b4547367b7804a856fb1 669aa35a680d54f4754cca415cdd201c9a189011623545abb4993a844ad1ad67 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MB47FWT	137 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MB47FWT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 45290a2e25928c10191342d478a350a7 ee46a65dfbcdc2ac6beac40119e6485a5d48429d 6530e5b8f0d198ad61b9984f83b29f344401ce316fb1c212e61fc881eafedc9e Loading...

	crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-26
Pretty URL crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 10:10:59 Times Seen68662 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 12:19:18 Times Seen37091336 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	googleads.g.doubleclick.net/pagead/html/r20230109/r20190131/zrt_lookup.html	9.7 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/html/r20230109/r20190131/zrt_lookup.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 5ba05061c66d3e3a39f0573557899b0d f31c916b0c5ba50856c2d505c6a07ac2e3703dea 821afaa0abe5e4fb2292f52492b24ad0e290f7c43766602293856e911b5d1499 Loading...

	tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/qs_click_protection_fy2021.js	18 kB	2023-03-12	2023-03-13
Pretty URL tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/qs_click_protection_fy2021.js IP 216.58.211.1 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:50:26 Last Seen2023-03-13 01:42:19 Times Seen1 Hash 24eff48d691d1f898ad239256431344c 84e06d66fa0703ff40043ec3bd843cb8e45152f1 d6e49f1d85f57c06002816ffafcb8bfa08d8850c7358cb45b26b7a4f78f73fc4 Loading...

	tpc.googlesyndication.com/sodar/sodar2/225/runner.html	13 kB	2023-03-07	2024-02-23
Pretty URL tpc.googlesyndication.com/sodar/sodar2/225/runner.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-02-23 22:40:33 Times Seen4633 Hash 04889347291e33491547245846d18c4f fa0e1917fb2630c86eab067505751a72ba001c6a f4a5d6b45c241fa0ce6ba4ae8b035ad725d67c4091ce8a99bc9c2364295b8fd8 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	5.1 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash df27db8ffcbf0f944538ca08b2e722f1 d8a4a51f9f8fecac3b1014a57fcc68330e9b7b54 f8437d110d7cce7fd92835b2907c211876ea9418887bee5f891af764153baec3 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	9.7 kB	2023-03-12	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 94ceb1f4df34968172e0ae81b78d6009 5c2e9a487b1fd93077a2d0ef7ac31e82593d5377 9ce11e618537820d78cdf768dfc152b04d64233b1bed99e1e8e808b8d50999ec Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	726 B	2023-03-12	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 65f389265fe8267e82960b6df50c0941 6f334b62820436d193c89c88388e92b13d2b30a8 023e47b6fc242e8bb97ca3f8a433789b07a1368d72ef12e64b26b15b23f965c0 Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1	383 B	2023-03-12	2023-03-12
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1 IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a774cea2ee3914597c3cea316eade366 7439d1d96bf272dc0159e6b0b04dc910e5d1d923 572050f6a9515eb27cce955b033a48e11cafe5ccf62fb3b53b04cfacdc2dac1c Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	29 B	2023-03-12	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:50:26 Last Seen2023-03-12 20:51:40 Times Seen1 Hash 027f8d9f11489bf5b759919e2c1197e2 aa7c70533e39c82cd782ac1510c9fd9c0371b4c8 99828ec9e3055d93d93954282a8f1ce55a74f48e2c05905668fbb0f37887ef92 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	19 B	2023-03-07	2024-04-25
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 20:39:17 Times Seen2233 Hash 65bb46e3f84073f672c022f98f42245e 2d0aed946f65bf94f57fe36798d2540727b212e3 375bc1a8808edc2a20b432f223e06e981b02feb9d34f558260aa537495f3533f Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	3.8 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 87820c822f9e9d8b14f339e30c6d4d5a b021236d93a2b6176144a3eff9ad1539ca69e136 d937b43a9ccd370d053337de2b2d65cf29effd4bf31be41e767358b76cb05101 Loading...

	crezu.vn/	887 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a8323f57db042cb664345dc40fd03ee0 d6d3976086348b9e971a1855875492b5821309ba 6b978ad14deab77956c782dd0f9364502500ba19ea6f4309e93ce7df2511a8ac Loading...

	pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6373705936907274&plah=crezu.vn&bust=31071399	365 kB	2023-03-12	2023-03-12
Pretty URL pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6373705936907274&plah=crezu.vn&bust=31071399 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 0ab067cacfbf3477f3bb12bb7c34f54c 9fac3e5c4e806282618ada5ff8e090c3ce1334b5 7c379f8dbd9f689e1e1edc0af648e9dfe65e4060431293bd9176e2516a84febc Loading...

	adservice.google.no/adsid/integrator.js?domain=crezu.vn	107 B	2023-03-07	2024-02-03
Pretty URL adservice.google.no/adsid/integrator.js?domain=crezu.vn IP 216.58.211.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-02-03 18:43:04 Times Seen27539 Hash d9c47f48660b656705d0ff86fc850de8 bceb9478f69cdfc2eb87ae6b80e95dbaac8b6769 a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	659 B	2023-03-07	2023-05-15
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2023-05-15 20:35:20 Times Seen278 Hash ce44eab1d31d772b5c6107e7187d669d 6ddf85d2127cebc2d4b1e943c86a56cd319d76e6 34293cf5b2f18e653e75b9810a48a7cdc7f5caf7c39dcecd95513df50e701502 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	91 B	2023-03-07	2023-12-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-12-09 21:56:02 Times Seen1361 Hash c82428a35f2157d1ffc58db62a62642c 23a3ba37c8219ada20ade938bf6ab027ddfaa32e c202f499070bf24f65287263b3c7fd4a221000ebc2e9a9eb1da84c48faf83f7a Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	9 B	2023-03-07	2024-04-25
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 20:39:22 Times Seen2253 Hash c8308edb31948449adfea16b3e2d316d 38d59d97a7ea7498b50a40eabdfde6c3f446be3b 5c1324674560cf5a651810c1e7ad9643cd2472144d432b7a62a743a19f6f86c4 Loading...

	tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/load_preloaded_resource_fy2021.js	1.6 kB	2023-03-08	2023-04-05
Pretty URL tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/load_preloaded_resource_fy2021.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-04-05 02:11:33 Times Seen1532 Hash 822ae3ba8078d8c2f84874b6dd35276b 41c4a330885a8297f036f76df13ae219203e3dff f50e59fa7a264b1674e5f94591375a26e9aea318036b2a629e5ba182df01b54f Loading...

	crezu.vn/	488 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 4d8c78ea6a81f88dd60f9496776ff950 c3610fdc4868a6668cabc66d147300ee3578dc52 437fbac922cd71c8156120219b9c4814f42f4831c030fa74247f9b691d12e31f Loading...

	connect.facebook.net/signals/config/181455369817902?v=2.9.91&r=stable	385 kB	2023-03-12	2023-03-12
Pretty URL connect.facebook.net/signals/config/181455369817902?v=2.9.91&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 21:07:59 Times Seen1 Hash b58a00ee6510a2f9c0f9924c9c36a314 d26fb5b84a4e89641056b26e6b344ec9837a9b10 a4061a71e56955119c08a0e7b0ee2379084a848dc3206b643392df247cf9edc1 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	865 B	2023-03-07	2023-09-26
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-09-26 10:13:13 Times Seen948 Hash 2a980601f126ccf75525c8de2f28a710 1c0ea07c6ac72e55acc81b5b60a80df538bb2b91 2820eca7c63ddd81d283ab8e497c6035888f4f4e89151ef305ff7786e64e39d4 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397	18 B	2023-03-07	2023-12-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1673416622&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1673416622273&bpp=2&bdt=2255&idt=285&shv=r20230109&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&prev_fmts=0x0&nras=1&correlator=6052107976067&frm=20&pv=1&ga_vid=1287252537.1673416622&ga_sid=1673416623&ga_hid=987419789&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31071399&oid=2&pvsid=2929346214322375&tmod=174796705&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=AwScBDfaJD&p=https%3A//crezu.vn&dtd=397 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2023-12-10 23:37:06 Times Seen1996 Hash 364903be35e41b2e14a841071c35f191 58dcb22af21e5f7fd6e5bef578eb1b9a7ddd34a5 b29dd4c3347306fe999d36cab04ed9a9ef863d885d11c86ebbb571802f25ff59 Loading...

	www.gstatic.com/mysidia/7ccdca65462086e0026c8c8b2d8a241a.js?tag=text/vanilla_highlight	10 kB	2023-03-12	2023-03-12
Pretty URL www.gstatic.com/mysidia/7ccdca65462086e0026c8c8b2d8a241a.js?tag=text/vanilla_highlight IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:58:27 Last Seen2023-03-12 21:40:15 Times Seen1 Hash 7ccdca65462086e0026c8c8b2d8a241a 986176fb99a2f6db02b4e4bb9850bd52cd3634fb 71adc001e72831a0b0cfbf8207a5738d538c47462a524cfabd7844e3fbe29d80 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4f13eead9f351d52e6d42e9d69bab072	77 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 4f13eead9f351d52e6d42e9d69bab072 d403a306d4c8ae0e9c68023dabbb32b6caf8e63d e2c8e7efe904fc4b2af97f738fd2eb83f52d42e4fecc6d75c1c2e881dd18c69f Loading...

	#2 Eval - f8e088bf28c1020cb2fef95a2baae149	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:31 Times Seen1 Hash f8e088bf28c1020cb2fef95a2baae149 911aa7a830ecea98573c0f732119323c7df75ebd 5a5ed521aa64a8fc4625ecec4c1efa6c1102247e6c2199dfd82ac1f128d2549e Loading...

	#3 Eval - 3933cb8b6dbc2f971bbf8ef312eca68f	53 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:30 Times Seen1 Hash 3933cb8b6dbc2f971bbf8ef312eca68f ddf5f89dd877aa774ba8ecf7b91cc4c1e9b7516d ac5e36b70becd720883492aacf7d3b830f3774cf4658ad45288e41d5d4baf1ec Loading...

	#4 Eval - 0d00e75e33fba60e0711a16966234b40	39 kB	2023-03-12	2023-03-12
Pretty Observations First Seen2023-03-12 20:13:07 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 0d00e75e33fba60e0711a16966234b40 778b81d330900da4078efaed95a7e903ef308b7c 0c495cd83f94be594bad5fe3bb115af8a0a4a2e954eac207263ac5f215d16dfd Loading...

	#5 Eval - e1e1d3d40573127e9ee0480caf1283d6	1 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:15:06 Last Seen2024-04-24 01:25:48 Times Seen9031 Hash e1e1d3d40573127e9ee0480caf1283d6 06576556d1ad802f247cad11ae748be47b70cd9c 8c2574892063f995fdf756bce07f46c1a5193e54cd52837ed91e32008ccf41ac Loading...

	#6 Eval - 945ef66e1a857eb17a4df74c45b0a3f0	2 B	2023-03-08	2024-03-20
Pretty Observations First Seen2023-03-08 21:28:20 Last Seen2024-03-20 01:26:09 Times Seen260 Hash 945ef66e1a857eb17a4df74c45b0a3f0 7b83721735cb68f39a7176f23510b77ca0385932 508b6aedca6cb413fb9f96e7ed2805eac9af3d7d4fe2e18404ed8d8f4ebe1839 Loading...

	#7 Eval - 8e8f3c52790541c74e5e1cdc67af8b04	530 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 8e8f3c52790541c74e5e1cdc67af8b04 fa0314f3d6feaeaf30eaf548238bd0769c8e91e7 e2fe25e0445b0258a2bff371f33725710ad07bc3827e38379d2729f3eb662ea1 Loading...

	#8 Eval - 286a1851fcf7cca510a7af619fc36c79	165 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 286a1851fcf7cca510a7af619fc36c79 6c5eea0f680d6f508d24a83e2a11bc780cd08896 07b071bc006da29f4738358ab8c39add081b88d1c4e1dc6a6f63fa109b2613e5 Loading...

	#9 Eval - 027b74249ab0725ebfb0d914e1268345	57 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 027b74249ab0725ebfb0d914e1268345 83b220a513b77f1741bbf15f14e7c43b3ad148bc 48b19f6a16a069e9b9d450ca7d23cdee68a6d5f671a699fe1e0acf1e34e1f2da Loading...

	#10 Eval - 0b2ca9baa2673427216204d740cce52e	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 0b2ca9baa2673427216204d740cce52e 06ddcd8afcc8d0724d5c8af24af101eb6ce82ce9 31df2bc6e8efe82ecb606218194c44528add258c2de5ff207d47b8e65938b8ae Loading...

	#11 Eval - e7bde6d9426fd4b2b269ac9b4827831f	77 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash e7bde6d9426fd4b2b269ac9b4827831f a056ff3253a1b3e0caf1143587c8f916f9c7e439 1e4e900be37dfbd53ac1f83d2723a61ca5a8e9883c166d7156c6e372f637f700 Loading...

	#12 Eval - 012d64a615fe2ba08119388f969664f2	70 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 012d64a615fe2ba08119388f969664f2 ed4e37f18c1cdfbf997d95156c81b53917c410ef 67392bea06259756de0b40b69b8c07ed6faa2bb09dcf5c838acb1efd96c8996b Loading...

	#13 Eval - 30d513998f26b0b7a9a935c4dac1b163	259 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 30d513998f26b0b7a9a935c4dac1b163 30f7bd1c6797a047fbcab6b6a0f16527f6a16c6d aefb1e4dddb08655dfbcc53f839edc2336c99185800d1a7465c18e2d85b61216 Loading...

	#14 Eval - d2a26757878ea2dc27aa94fcb3000115	320 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash d2a26757878ea2dc27aa94fcb3000115 27852b7a21bd311a00685ba3c48db89a544c8362 6ba0da64f22da1233f0eddc255772b92029c5c96817d8468a82c731c79e8437e Loading...

	#15 Eval - 751a8ee605a33e6716bdd79a61658426	26 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 751a8ee605a33e6716bdd79a61658426 aa49464418e7c1ec7b9088d0eba4c7caa45d1089 edbe89f47088e7e4d5553df4fb495304d66cc3943cb7729fb4357100df5badb4 Loading...

	#16 Eval - b4688aaaaf17fad03225929fe56ad458	2 B	2023-03-11	2024-03-27
Pretty Observations First Seen2023-03-11 15:48:26 Last Seen2024-03-27 05:39:49 Times Seen220 Hash b4688aaaaf17fad03225929fe56ad458 05c77e49f6a349a5f2d72739ecf59dfac5cffe9f a6b988796bd91c209657d13fc7c14b8a7c9652cec0232f97046adb2e916ed5cc Loading...

	#17 Eval - 5b9a8475029cd9991b5a33966df2bd59	131 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 5b9a8475029cd9991b5a33966df2bd59 f4b5aee024349c9a758907cc2be42ac9e1377228 4cb3bbb8769a7676cd714ccb342e4019d65b8f518ff46b5b66de4b81efe07afc Loading...

	#18 Eval - d229ab2ca371459fefd59fe0882e8982	142 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash d229ab2ca371459fefd59fe0882e8982 ead453d4c497849d0e585c92ac78d82ff37a3e8d 52c0a67321d8f891eaa91384b922eb576b0c8b59a94c72baaf70af2a10f8780c Loading...

	#19 Eval - de41bdfe82600cdcf4e4ac08a10c7889	2 B	2023-03-11	2024-04-22
Pretty Observations First Seen2023-03-11 12:48:40 Last Seen2024-04-22 00:16:18 Times Seen126 Hash de41bdfe82600cdcf4e4ac08a10c7889 41516af4edf0c60b5f5c89ace0b50a8e2f2becc6 21ba4a6f69c88873350083c59a6be08ee0805a8a9873d7f34059773eb5622ed1 Loading...

	#20 Eval - 919e190d3a24095d669e5bb66899abac	2 B	2023-03-08	2023-10-14
Pretty Observations First Seen2023-03-08 20:12:09 Last Seen2023-10-14 05:22:21 Times Seen277 Hash 919e190d3a24095d669e5bb66899abac 0b51e24a832f513ae0c655d6b7db5b745e41615d 7b5f73f6adc85ba5e49879e11ad358dfc988eb2402974220b519801228b9da77 Loading...

	#21 Eval - 4a8a08f09d37b73795649038408b5f33	1 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:15:05 Last Seen2024-04-25 20:03:27 Times Seen8901 Hash 4a8a08f09d37b73795649038408b5f33 84a516841ba77a5b4648de2cd0dfcb30ea46dbb4 2e7d2c03a9507ae265ecf5b5356885a53393a2029d241394997265a1a25aefc6 Loading...

	#22 Eval - 53dce433710ae38c69bf7f46faaafb3b	2 B	2023-03-12	2023-07-25
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-07-25 19:46:53 Times Seen8 Hash 53dce433710ae38c69bf7f46faaafb3b 01d82aedfe6172e330ec86b6404d3751ad238548 87b5950e65c76db2b75087caa85028c4921ee65fff21e6894a6e3a93b412f40f Loading...

	#23 Eval - 0cc175b9c0f1b6a831c399e269772661	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-26 12:17:07 Times Seen10565 Hash 0cc175b9c0f1b6a831c399e269772661 86f7e437faa5a7fce15d1ddcb9eaeaea377667b8 ca978112ca1bbdcafac231b39a23dc4da786eff8147c4e72b9807785afee48bb Loading...

	#24 Eval - 8e119e63350d0dcd0324a9b028bba41b	41 kB	2023-03-12	2023-03-12
Pretty Observations First Seen2023-03-12 20:13:08 Last Seen2023-03-12 20:13:08 Times Seen1 Hash 8e119e63350d0dcd0324a9b028bba41b 302116ae13a0094318efdd2875e6c278115f4bbd 5146731e1d8d1b06f3e4ff98b2ecaf9dbe8c15fd9ea5b56baaa5d3a2c07beb5b Loading...

	#25 Eval - 415c3b4679ca8e6e65257da166f2d8e7	112 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 415c3b4679ca8e6e65257da166f2d8e7 c04b84229212b80c15569002d9e9d6e5b89d8b54 34bcdfb76946b4b2502fa4a7579a7f3a080282de17d0c7eb0129f844b5844e59 Loading...

	#26 Eval - 736ee5cd8705f9b732a36461e51ef070	130 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 736ee5cd8705f9b732a36461e51ef070 45f447539009b82742e452dff0ea0365c4d4184f c44c8bf6ae4bdad3f2d30f91083bc4a7bd37372598d1b1ed5c86cf94dc4b9e2a Loading...

	#27 Eval - 73ae863c6a6824b98c5cbb113094003f	210 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 73ae863c6a6824b98c5cbb113094003f 837f25f0d0f4464aab416fc10ca8fb273b185d49 553ea37f77a09c50409b4d3a8dbb8e5920bef0eb1aafecf0bd17734a1f5ee4f4 Loading...

	#28 Eval - 83d944c87b0a72d4c7b2204d8fb5327a	145 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 83d944c87b0a72d4c7b2204d8fb5327a 92af1fc270f456c308a076116b2dd3263457bf2c 184b66c5e0ee17075414d15ba2ee1ec6a79cd85eb16d90c213f5d25d8a53bdb6 Loading...

	#29 Eval - f3151d23f9c88ea74e0229bcdd321cde	2 B	2023-03-08	2023-03-26
Pretty Observations First Seen2023-03-08 05:58:52 Last Seen2023-03-26 08:00:10 Times Seen49 Hash f3151d23f9c88ea74e0229bcdd321cde 017ffe2bb7bbc34481c589f254ba52ae5edb1c4d bc3fafdb3abbcdf78aaf40a184f12299919d5b8829e394ec8a21ecfbc0404f65 Loading...

	#30 Eval - 3a934724bf6b0943fe67b7a5c19f93e7	51 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 3a934724bf6b0943fe67b7a5c19f93e7 304c873fddf1be64de973303cca0f0b90f4f4363 336170f54adce1596bfd90ace069f226f2ba58e59d16577e7d56c9101a6f8ca3 Loading...

	#31 Eval - bf947d200d7b021b18d38437f3bc1940	2 B	2023-03-12	2023-05-23
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-05-23 16:28:01 Times Seen11 Hash bf947d200d7b021b18d38437f3bc1940 2bfbe0bc53277529025720589e902c25bf01f2f4 7985b0c8b858e77f57c6d403b315ade04d2485d6ec2d09694256eadd20db6f27 Loading...

	#32 Eval - cbb4f9a7b510b9d39bc11def9ca80575	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash cbb4f9a7b510b9d39bc11def9ca80575 e582403cc8e5034ca9b9ca6c1be67e68618913ff 2216a7dfaedc3f151b171deeb8890d19ccc5b551f5612c4dec5dbdbaa70b9135 Loading...

	#33 Eval - c359ccb3fe21b12234ce604d29314b7a	97 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash c359ccb3fe21b12234ce604d29314b7a 50809e68f1780ef5aa06a6f956845bb0eb631143 9d3a211dc8e5b1a5cef13d4620a4de1fc98845c8a8f1f640c111233712aeb43b Loading...

	#34 Eval - 124b577c28940ebd2bcd004536c96ad5	542 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 124b577c28940ebd2bcd004536c96ad5 8c2d61477c259e5439d9ef23752b58755839a79e 3559d078ec33af95d60c36bfa8528578de95391c76ae6fb43159edfb05bc2d6b Loading...

	#35 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 12:17:07 Times Seen53264 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#36 Eval - de038297c04af16d6a84a5e039b7ab7d	77 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash de038297c04af16d6a84a5e039b7ab7d 77e807be783dbcdda80fc2928759879a683733cc e5ed14f3e4d0ea66cf77af61286330b4c30fa8abc50e48b5af6268e866eeef7c Loading...

	#37 Eval - 51fcee6d84864d0f6faec5b032c6dd25	142 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 51fcee6d84864d0f6faec5b032c6dd25 1f9ea4d31c3681d5cd6f7f3d77edad02a08a105f f2fbb318f15eb2f6dcf03081969148fdd5437720606223f8609f2ac7aacbffa9 Loading...

	#38 Eval - be298c7dfae7b988fca193cba5d1748a	148 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:32 Times Seen1 Hash be298c7dfae7b988fca193cba5d1748a 1bc66ec194a7d424ce404177284a2c10252c77e5 d1efb090be0c6ab4cc1f3420b288c2b304e6c2ba3c36332cfc81d56969587649 Loading...

	#39 Eval - 954b5d21fbd1c9d9bef49812a4c86c9f	205 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 954b5d21fbd1c9d9bef49812a4c86c9f 353a1352128654b2078ae2e93f4b63b6d97d5abc 32bdf374b2adba4846d31deecf85a1ca4ba36ebe3b7507f4687ca186bf76695a Loading...

	#40 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 12:17:07 Times Seen48860 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#41 Eval - f67011c5a18abb5d11320f3862482526	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash f67011c5a18abb5d11320f3862482526 3c08e1c808d31cf06d3eb7bbacd801cddba75316 e638a42c52803de1f804e3d1fc6ff1c2dae69e1df1f050e02cc6ccbe0c3ca548 Loading...

	#42 Eval - 63b1da8c046d9672a6b7c17bfc86a4b6	133 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 63b1da8c046d9672a6b7c17bfc86a4b6 00f77c65c5cf7677843b9b72d98339f998f27dba 26a2d3ab317dd6f8635a18d2e0a2e01a15eca616b2f69760b065e511d325ead4 Loading...

	#43 Eval - e07866ebf4f25ec09bdc522b4e2bb718	2 B	2023-03-09	2024-02-25
Pretty Observations First Seen2023-03-09 01:33:23 Last Seen2024-02-25 23:39:29 Times Seen822 Hash e07866ebf4f25ec09bdc522b4e2bb718 77f99884c84c6bda5083ed43f9d7c359c482c101 ee0b98dd81a973acb78f44f421f926660b98042d04faecfb395a4c443ff6bab8 Loading...

	#44 Eval - 5e564338c8873328f8cbc0877ae79ab0	215 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 5e564338c8873328f8cbc0877ae79ab0 c3060881ea9cf8d055ce9149d593089aad7afb2b 3be92b080046889b07a2bd2cdc78a7a753fe597e9da61def00fcf45325ed3d62 Loading...

	#45 Eval - 8565318649e2b9bb425a8fc9ec46753d	93 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 8565318649e2b9bb425a8fc9ec46753d c7267af6f179cb8759fbe2d9dcaa5579e3ac4781 7c1d65f24284beb83906b0cbb29e472fdfc679f8c04d971b3a233e8d1c118ed5 Loading...

	#46 Eval - df9c46cafe00bf0bd488dbbe0de1296b	118 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash df9c46cafe00bf0bd488dbbe0de1296b e966841d8324558d4809edd923332348e17a3f29 188243d1ce18b413ac59b121869f53d80ee07a20a4e4554e24620f0766191463 Loading...

	#47 Eval - a87510e35951e039f83e1aa29e1b3523	238 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash a87510e35951e039f83e1aa29e1b3523 9bab44a8665e65fff63cc460b697cef54b4d9c6e 52b245bdc0dc09765b7f2925c5a00fd527c1cab029d6837739d383bc096431f9 Loading...

	#48 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 12:17:06 Times Seen54684 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#49 Eval - 7b774effe4a349c6dd82ad4f4f21d34c	1 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-25 20:14:12 Times Seen8433 Hash 7b774effe4a349c6dd82ad4f4f21d34c 51e69892ab49df85c6230ccc57f8e1d1606caccc 0bfe935e70c321c7ca3afc75ce0d0ca2f98b5422e008bb31c00c6d7f1f1c0ad6 Loading...

	#50 Eval - 9d5ed678fe57bcca610140957afab571	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:15:05 Last Seen2024-04-26 10:29:57 Times Seen11234 Hash 9d5ed678fe57bcca610140957afab571 ae4f281df5a5d0ff3cad6371f76d5c29b6d953ec df7e70e5021544f4834bbee64a9e3789febc4be81470df629cad6ddb03320a5c Loading...

	#51 Eval - 6b380622ac152cbb3985b91ba34919c8	254 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 6b380622ac152cbb3985b91ba34919c8 c4dd3f2d3cb069f4e4044e661b9036bc5c66cb61 6ad91e1afaf630d2cadb7ad786feb938bfd930092cd8203938bc6b60885bd8c9 Loading...

	#52 Eval - cea18c979ebd7afb3616391fdd29e4ac	2 B	2023-03-12	2024-04-10
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2024-04-10 22:26:53 Times Seen1189 Hash cea18c979ebd7afb3616391fdd29e4ac f38b215b1140762ae65da884c41c2ea81fa0189d 791f82d681fcae7a18a33a9a80973ffb55c3bb20fb8c4b696a645b4a25c2c877 Loading...

	#53 Eval - 7503846ec90d51706991b8ac978d1a22	2 B	2023-03-09	2024-04-26
Pretty Observations First Seen2023-03-09 09:28:54 Last Seen2024-04-26 08:23:51 Times Seen170 Hash 7503846ec90d51706991b8ac978d1a22 bc3605b1cc7d407fcc130d0e3058bf56965c3722 4c71ee07f4af0873114ae817b1435866d31b9bf832d9490e4747e3e2d7a957c2 Loading...

	#54 Eval - 920a7af9e23ab878265149dc58bf82cc	348 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 920a7af9e23ab878265149dc58bf82cc ea4aead9829e0af911f8b15cd16a3fc97656fc7c c873fd8a7f447e02e0a302b4c2a29a53568bb1e09b493ec4d8a3d5d438886568 Loading...

	#55 Eval - 5e71609738513dd8adb2477d9d51a8e4	350 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 5e71609738513dd8adb2477d9d51a8e4 bd088faf2a54b7e48603fe269863695b8eee363b 1be362a44a7a860deafca82c651242ea1c68aeb0bee36f636f6d33a92ef2b366 Loading...

	#56 Eval - 9a0524199486fb6db805f9318c76ffae	93 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 9a0524199486fb6db805f9318c76ffae 6bd9d0e5d0133de8040693fdc37b70214c270c7e 0bffd9af16e810b5d921b4f1c9d4a1cab081353180d5cd8305e8a2b1ce0cd60a Loading...

	#57 Eval - 8d9c307cb7f3c4a32822a51922d1ceaa	1 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 08:02:31 Times Seen8239 Hash 8d9c307cb7f3c4a32822a51922d1ceaa b51a60734da64be0e618bacbea2865a8a7dcd669 8ce86a6ae65d3692e7305e2c58ac62eebd97d3d943e093f577da25c36988246b Loading...

	#58 Eval - f8664c7c8d91ecd870642a76f3e6a1a4	26 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash f8664c7c8d91ecd870642a76f3e6a1a4 3e93f0d2f4059e6cfdb90b11105507bc7305e799 fea8ed80ac3b12594b8df994e5524dd8c00482faec4a91c99eefe790840932a1 Loading...

	#59 Eval - b4027baf72151d3c45fb35b4831bc295	90 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:32 Times Seen1 Hash b4027baf72151d3c45fb35b4831bc295 cfa2e96d85f755a6ff965dd7515883696093b2a9 82dcc030394443777d90e20bfb8a83003adc470373c42cbd02e0ee83665a0547 Loading...

	#60 Eval - d13b933b7beb03f95e99dca02b84e48a	463 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash d13b933b7beb03f95e99dca02b84e48a e6c404c01f80f38365bc643cb4a02aeec563410f 16026cb5c537f756f34b1c85267e3bd03c07810cbd4d83ccb4115bf6b183ec3c Loading...

	#61 Eval - 8ae552d52f3a24d1e36e99787dd9144d	2 B	2023-03-10	2023-08-19
Pretty Observations First Seen2023-03-10 13:42:56 Last Seen2023-08-19 00:28:16 Times Seen265 Hash 8ae552d52f3a24d1e36e99787dd9144d 62b2925de639d34ee78a8caa3e4c49c215d46f2b 0154e79f6165afc3e43dc2c712ab0c02986e5fed4f9645a2148604ad15907a63 Loading...

	#62 Eval - fb5a0af55832dc663ebfd9dd3c89c0a8	555 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash fb5a0af55832dc663ebfd9dd3c89c0a8 f11fc708a2052e160d4b5918cbfa5a8acc0adf5a a2b9f15ccb352237f999b2cba4511e08083b25dcd731f32f00541e88ebc6b5b6 Loading...

	#63 Eval - ca5ba3fc5644fe39650fcd54df79696c	257 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash ca5ba3fc5644fe39650fcd54df79696c 5d1b0f79e548599073825c7f810042e268610e48 4d0838b6ff279dc32e9e7f7b13928d1b7434e941bd6b35ad67b4eff1ad54f1f4 Loading...

	#64 Eval - 7af0c8c7564f478fb9e3b92b2a3ee061	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 7af0c8c7564f478fb9e3b92b2a3ee061 3eb823bad80bec56ddb7c6bbe770e709e358d943 eaf7de830de4efe7369cbad610e3fc571fae15425a4a9ffbaeeae3caf16d34c4 Loading...

	#65 Eval - 838e40a429d4f10e80142d5faa80737a	120 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash 838e40a429d4f10e80142d5faa80737a 6936aa7cdaffbeaf5b37ca9fbe8b5ea5082ada6b e67ea8ff5cd92158429227631ad7a9f48e49fe373d727499bfda2eaf22149c65 Loading...

	#66 Eval - 27db3b98d01e664c17a6620b222c6469	2 B	2023-03-12	2024-02-06
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2024-02-06 07:46:16 Times Seen285 Hash 27db3b98d01e664c17a6620b222c6469 4832fef261c6bc8ff6930c81794dfd74f43575b9 3c01374a220b981869ea90ab572b216bf929c389d5dd93b64882bfb4e42ec552 Loading...

	#67 Eval - 9a487dfcc817410129cb372e3f2fcf93	82 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 9a487dfcc817410129cb372e3f2fcf93 4668f614a35a36cd7641f7594e8b3e1268d5acfb 4260a17261e6654e3347b008e433b629f8e368baa0aa7b53bc8ddb51f6b81611 Loading...

	#68 Eval - e0e1c4b331a9580befd22fc5c5763b7a	91 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash e0e1c4b331a9580befd22fc5c5763b7a 9bef9b5537976d4f8d3db09197333a8355b30ce9 22cf2055deaf424b12e24e8417aa43af3cbbd03c4a8005a4d655e2ad137c82e4 Loading...

	#69 Eval - 7b39d2a56c98b30b12c9a70cb1c94581	2 B	2023-03-10	2024-01-11
Pretty Observations First Seen2023-03-10 13:42:56 Last Seen2024-01-11 04:43:43 Times Seen255 Hash 7b39d2a56c98b30b12c9a70cb1c94581 ac886be3089767a1c933657fe4cfaf17d9b386dd 8a717e52820e24f45c353bac029d2dc6267b1ab2eeb34cc66b39a4aa8ee24476 Loading...

	#70 Eval - cd9d5a6d23dfad304ecd890226c00359	528 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:30 Times Seen1 Hash cd9d5a6d23dfad304ecd890226c00359 654b24337138e7fafaeaf6619217c04edb7eaac6 e40b99a52fd91724ede20edd4496002bab6aef1103ad81ce1aeb1b9b40aa434d Loading...

	#71 Eval - 474fcc19b2b6e68f7e8b653399e8d9b5	2 B	2023-03-12	2024-03-23
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2024-03-23 07:11:47 Times Seen358 Hash 474fcc19b2b6e68f7e8b653399e8d9b5 a4f44a95abd33a119fd7ccc744464ab78e45eaa5 acbb151a32e7232242dc1e9aaf4c51c768e7fdd49dd31f466e1643bc8fb0dfe6 Loading...

	#72 Eval - d386deb16c67af4c12ab17a2771404b8	101 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:32 Times Seen1 Hash d386deb16c67af4c12ab17a2771404b8 27697f9b1c062bbae8d7f46a562e386a2d102ab4 ffc65700a2502f0046905fd1e5a7f66cd974489c170cb3e173fb7a4e8fbeb30e Loading...

	#73 Eval - 3b557f88758f6ac9d8e3ad9fe96a25a7	256 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 3b557f88758f6ac9d8e3ad9fe96a25a7 d8c86ed084ff4bc491828ede02f30cb0d01241b3 a64b325213ecd511b7995a8565d99bc507acbf8e68b2b2bb26cdf2c05b208ae9 Loading...

	#74 Eval - 02ce364954c2dcee153dfe6dd442b384	576 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 02ce364954c2dcee153dfe6dd442b384 28f413a9f8f06ce0b470e770f6c0b7dea4271b31 9a0644ac5b421d0c1cf5731f22c71b9aaaeae3d323e41ae199af3f4e1cb036be Loading...

	#75 Eval - d6e975f819b8e46101347c9293920a53	2 B	2023-03-12	2024-04-26
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2024-04-26 12:17:07 Times Seen133 Hash d6e975f819b8e46101347c9293920a53 14a179cf78fdc7c92deae5374e7b23861ada0a5d 96260dbf6654d38fa6f88ba0fd91e5bf7bc17cfc8580c22434a84d1cfc5d4dbe Loading...

	#76 Eval - a0941c49d4b1d5e1721a3d1885f602dd	253 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash a0941c49d4b1d5e1721a3d1885f602dd 2e0a9770a3ad0b4335a28ff84ceae259b4c314a7 15a0fb77941773f7d950425ecf1dc63dba701b06d3a2c071ea681117de27ded6 Loading...

	#77 Eval - 8a0c83071246ff9c2f3467d13b76ce82	81 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 8a0c83071246ff9c2f3467d13b76ce82 6c99164cc81f294b6a5930791b66f7987b277bf6 436f2e2fc67db6307afa5008f72972e86b89e6d04e4cefb8512abd8a2bb49c11 Loading...

	#78 Eval - ced55c7f94dc348b8e6780e61b93bc3b	132 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash ced55c7f94dc348b8e6780e61b93bc3b 66d720cd7d69844747c29b8a7939a9ef14e69019 8505466f7c68b166c5064906cf2e8fcf914efe54208b889b39608456d32ef9bf Loading...

	#79 Eval - ebcc43682906f9928b09b7f7496d3a77	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash ebcc43682906f9928b09b7f7496d3a77 190bbaa9c7b40f0166b234e40c660b9fbf5dd97d 4040441debcff31f72f1f5406f5b789545bdf82565fce0c0b944326f7000be14 Loading...

	#80 Eval - 2a8a621a2c461b3dfba3b4ba4020dee3	26 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 2a8a621a2c461b3dfba3b4ba4020dee3 bfb571c292d5924ae4c933c5af13ed677a5d167e 4eabf35ea101fcaac0e61015f22f5ea1c20dc3b5bd2af6c54b1391c3ff3b1f3f Loading...

	#81 Eval - 8be8c4c88ed55ee5ec2ed8e9f99f1921	540 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 8be8c4c88ed55ee5ec2ed8e9f99f1921 1446340e67d583bc46ab7e096fff4f81bb8a5e2f 7fcb8e88f9444ed647f2eaced5d62ca23a6000c5bc718e060ab3be720065d97f Loading...

	#82 Eval - b5251b7138fe3de12d729b84800a34a6	2 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 12:23:19 Last Seen2024-04-25 20:03:27 Times Seen600 Hash b5251b7138fe3de12d729b84800a34a6 0902463bd62a2018c40d0501d4bbaba7aebdfd40 69b0e7fd31affd0c89b5adb3844febd3824e27da69bf11a4d2147c3793fac56f Loading...

	#83 Eval - ac6ad5d9b99757c3a878f2d275ace198	2 B	2023-03-12	2024-04-26
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2024-04-26 12:17:07 Times Seen127 Hash ac6ad5d9b99757c3a878f2d275ace198 439baa1b33514fb81632aaf44d16a9378c5664fc 9b8db510ef42b8ed54a3712636fda55a4f8cfcd5493e20b74ab00cd4f3979f2d Loading...

	#84 Eval - 1b5ad301051d61e7e8583171726f2260	427 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 1b5ad301051d61e7e8583171726f2260 a2f1f00ed6db59e0e9479e414dcdb29f13629a1b 69dc6607e2653145e6605397ee1b9c5602573c0848087b96b2dde7dbe9e7fa26 Loading...

	#85 Eval - 94afea32f6de8b302cfeaf891278acfd	77 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 94afea32f6de8b302cfeaf891278acfd c76068de3edc5d46f7f68b67d24f054aaa4835fb 59f30b3c4a87b2dff09080d13b5841487c0d8e66f05a517b54adb6481e2296bf Loading...

	#86 Eval - 2862284130cc4606d60fba9e20ae8549	71 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash 2862284130cc4606d60fba9e20ae8549 3d78a7c681a935342c693f2e319febec7a2cae64 bb0f6e56074301ce85985c754bdf8a93cf6ec4dd2ebdc5bd585baee1d474ef39 Loading...

	#87 Eval - cb2aaf9e2ec1cbb0dc143fd07fbf1082	75 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash cb2aaf9e2ec1cbb0dc143fd07fbf1082 281fab746f6f73755572fe16b1d3fb76951f479b a193573e1c27e53c8bac40edffefb154ff317498e147f76b5753409cd93cb85e Loading...

	#88 Eval - 3115a5f99bac6c9d602acf2b612251cf	133 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash 3115a5f99bac6c9d602acf2b612251cf ee689b7653f312353a8b3dba14f02bdf6b5e120d da2f36d19a40dd3de5f2a173a3973d52364dcf39a3821c1b4681e1eec6ea53cc Loading...

	#89 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

	#90 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 12:17:07 Times Seen53558 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#91 Eval - 937b87411b711ea15aa6bc3c752887e5	171 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash 937b87411b711ea15aa6bc3c752887e5 556c0a5576c5a5d26cfb399af27dbb7ff900fece 0c342d3ac763f8223767308c3df8f7c08f367e18e90e54c50e438f170751b28a Loading...

	#92 Eval - 4a0df0588c9bd77a22a54693d3a3dc31	66 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 4a0df0588c9bd77a22a54693d3a3dc31 f29d784aca507e86eb5b91d6f8530071b1f5b889 96f95e7d790a9d542acbe87b9d18de41cbf7667af3d8fa3912fe30ac866ff685 Loading...

	#93 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 12:17:06 Times Seen53303 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#94 Eval - 508f2ef9583e61e2564e2e3e7f49849f	70 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 508f2ef9583e61e2564e2e3e7f49849f b285ce45e7c7bb21a694dbfb5549a122254971b3 b2ea9b5b50774e0f5d548c83cb068b0e4bc249e61271db270216c428599ca912 Loading...

	#95 Eval - 7fefa9be03c3ddbe08a6adadb244ad98	2 B	2023-03-07	2024-03-23
Pretty Observations First Seen2023-03-07 12:02:51 Last Seen2024-03-23 19:55:43 Times Seen1912 Hash 7fefa9be03c3ddbe08a6adadb244ad98 b0edc8b01f92b162c8aa7ce338b688ce8237c72c 35ff561fe50ac52b9f3d2e5a86b12d170dbc5e23226d967e48b99a2d56aed677 Loading...

	#96 Eval - 8881260ef6b68b2b46a6e4ec8b46f449	173 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 8881260ef6b68b2b46a6e4ec8b46f449 00ec34874975e3136cfa7a24db702ea8684cd3e6 352376b01a9b9605e2901e27a522d61186ac69270ebf32b1b889def139b8e638 Loading...

	#97 Eval - 590f03519a71675065ac464c32649872	73 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:26 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 590f03519a71675065ac464c32649872 e982f452fd81e235eb3d70c843c26ca8dc9c1083 f4ab70981617aab972ddd5704c33cf1b42c5e942dd5486ff5517ed91b9065d4e Loading...

	#98 Eval - 74b5fdcdd9e14144987e0bf455aa6671	213 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 74b5fdcdd9e14144987e0bf455aa6671 cbac90a80c3ba1f92f937efe96dd7000b198c576 b7a6f3cd3cc9c4af2b38e1f6876d3217b514bb1b4af211616ba12149ee8ce7c5 Loading...

	#99 Eval - b2f5ff47436671b6e533d8dc3614845d	1 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-24 08:15:41 Times Seen7114 Hash b2f5ff47436671b6e533d8dc3614845d 54fd1711209fb1c0781092374132c66e79e2241b cd0aa9856147b6c5b4ff2b7dfee5da20aa38253099ef1b4a64aced233c9afe29 Loading...

	#100 Eval - d57d2465bba1e7daea079c33937d403a	47 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:30 Times Seen1 Hash d57d2465bba1e7daea079c33937d403a 532d07116c28ece34f6d6e3be492b1c24d6c558f bffd4cdcb5de6bcba854751e4f01932213c0af6ff797d9bfba2a7f8d16db2e88 Loading...

	#101 Eval - 64f06192a89d6ccb2fa102442e745448	106 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:26 Last Seen2023-03-13 09:28:30 Times Seen1 Hash 64f06192a89d6ccb2fa102442e745448 1311c15846b60568736a0a0882fba13e8f3c1407 563e203401f833ba5c0217ffe845eb9984c606c3b9dee80cbc00fb3816453709 Loading...

	#102 Eval - b055e37e9d9005dbb8840a854622fd02	553 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash b055e37e9d9005dbb8840a854622fd02 c750421595c7f72f64e856dee307310430e8bb4e 5bd7fc1bc487aaad459f00132d94726674b47fd8291bc949378c5e2f9e9385ba Loading...

	#103 Eval - 1bbd949f924f8d13e4f841ed205a7544	571 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:31 Times Seen1 Hash 1bbd949f924f8d13e4f841ed205a7544 d620d20000de4201dedccd5bd232b51644abf9d5 b74e1364844a25aac9012f0e890834bb6d2b9421b41c438465a56493e3d238ee Loading...

	#104 Eval - 1b7b995cebfa4856dca5c19980f46eae	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 1b7b995cebfa4856dca5c19980f46eae 42aa1fc4640391ab67351fa53dda48549ef0ec28 2c5a707197637b263217df6fde35e4fcb053cceee682b4c98e92eb99844e978a Loading...

	#105 Eval - 41c69f51fea397b6401994baf1abcb98	421 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 41c69f51fea397b6401994baf1abcb98 a1e231ec448075366049e614d748047843f9a215 92e88f958006b99c8a706634f21b76137b6032189588fce09571d4de7fceca0e Loading...

	#106 Eval - 5883c9f46297c13e866f930897f83e05	74 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:32 Times Seen1 Hash 5883c9f46297c13e866f930897f83e05 da932c9714159eaf67f4abca5b6b80e89a05a81c 128ddcca83887e9f5c06eda27f6d1912f3c4bca3b551b7106115c152fafb1a53 Loading...

	#107 Eval - d8401705beca9c523123de721c009164	296 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:27 Last Seen2023-03-13 09:28:31 Times Seen1 Hash d8401705beca9c523123de721c009164 0e129e9fc70aaec06048256291bc03be219d5641 b4dd93d3bf7e2ae5567cffd865f23a966c422eda063b67cd9829ac2f7eddb114 Loading...

	#108 Eval - cf7085efd6866808b5925c23eae5d213	74 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:28 Last Seen2023-03-13 09:28:30 Times Seen1 Hash cf7085efd6866808b5925c23eae5d213 419b5282b5adcbef6b138e04c7ee217aa46be627 d91f1870b3d5a62beb553e898e539694e018d82c778c2632c5db99be34d9214b Loading...

		Size	First Seen	Last Seen
	#1 Write - f315f5f2c187a05af1ace62d5f6aa477	54 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-26 08:46:25 Times Seen3847 Hash f315f5f2c187a05af1ace62d5f6aa477 47d77a2a1665cb6202028ecd89b50920287d9148 166a4ec3cb90d525f7f744c7616c01b36bebd6dcecd486c8f5be14ccc0a7b3da Loading...

HTTP Transactions (117)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8887
Expires: Wed, 11 Jan 2023 08:25:18 GMT
Date: Wed, 11 Jan 2023 05:57:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eecebe0566883e33558e8e67beaccb29
acdd8fd09e2066ed5ecfbc3f11c4a2d61218ecc7
65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65E21170242BF41EB529FA422385DBE5AF65A61E374E6DD5669E7E5F927948AF"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Wed, 11 Jan 2023 06:50:06 GMT
Date: Wed, 11 Jan 2023 05:57:11 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 05:48:34 GMT
content-type: application/json
age: 517
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d8ccb7b2b89aec333fabc04d37337892
c2a13a42c1bd0cf7ce68d9c13b3d6ba1044b5283
75fcc3ea090454e3489a131b70ab50798fec6a08664745027d7a1cf62c6aba28

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75FCC3EA090454E3489A131B70AB50798FEC6A08664745027D7A1CF62C6ABA28"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10185
Expires: Wed, 11 Jan 2023 08:46:56 GMT
Date: Wed, 11 Jan 2023 05:57:11 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: NX87w77FMiCwyiPC2I+tZ3jV/8ZU7G4fxm0tTq1XqVbpO6JC56KvweTVQEc2uosD/4GFuGGYekM=
x-amz-request-id: HY3211KDKVP2YNP3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 11 Jan 2023 05:16:55 GMT
age: 2416
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 05:57:11 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

crezu.vn/

35.229.199.189

301 Moved Permanently

178 B

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 11 Jan 2023 05:57:11 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://crezu.vn/
Referrer-Policy: no-referrer-when-downgrade
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 05:17:24 GMT
age: 2388
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a831a999b5e598b4e9f4e31e8054ca7c
9971a4a806f48777ae6d9525085d16d0c6314c51
cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4376
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:12 GMT
Etag: "63bd2aaa-1d7"
Last-Modified: Wed, 11 Jan 2023 04:44:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
94b2448a89299d1c630853ba667460e2
dfdc9ded8277976060f936e6fe2918076b3fc35d
7e332d433db27eb1b12fbff1e7fa6e105035e7b103eed8aae3ed77d55458a28b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 10:17:00 GMT
Expires: Mon, 16 Jan 2023 10:16:59 GMT
Etag: "dfdc9ded8277976060f936e6fe2918076b3fc35d"
Cache-Control: max-age=446986,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69e00f1db506-OSL

push.services.mozilla.com/

54.187.39.66

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.39.66:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BFgiC0ZLcR2wakhFqsIvRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DxCMcByWdDHqTIPtYZ1xUlmAlCw=

crezu.vn/

35.229.199.189

200 OK

9.4 kB

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2768), with CRLF, LF line terminators
Size
9.4 kB (9381 bytes)
Hash
0e69a4321001d98fb0819955cd7f06b2
b7f626d3594faa43700215af253c44b3fa0e69cc
4904c18136dbfb23e30f4fd8b2d33357fbd601edd04365c4a7022d4b1cd33ffe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://crezu.vn/>; rel=shortlink
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleoptimize.com/optimize.js?id=OPT-W6HX45D

142.250.74.174

200 OK

48 kB

URL HTTP/2
www.googleoptimize.com/optimize.js?id=OPT-W6HX45D
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
48 kB (47919 bytes)
Hash
fa97f7fee35edc615148e9801af31988
13b659f11b1fb3e5185a822fc8bd3c6795368e2c
ed4537dccf76f556056b990c8c02c14aec1a6bae6f4d93625a21dca15571d434

HTTP Headers

GET /optimize.js?id=OPT-W6HX45D HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jan 2023 05:57:13 GMT
expires: Wed, 11 Jan 2023 05:57:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47919
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea629f84c53c29ae595e98d9e4c2d71
585971a656c07b117f3ac401ad823fc03195b6d3
106ad63b483fdbd93e6da54180ae0af6050156e96018118dd606e4ff5822dd7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 03:40:17 GMT
Expires: Sun, 15 Jan 2023 03:40:16 GMT
Etag: "585971a656c07b117f3ac401ad823fc03195b6d3"
Cache-Control: max-age=336782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69e5db4db506-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea629f84c53c29ae595e98d9e4c2d71
585971a656c07b117f3ac401ad823fc03195b6d3
106ad63b483fdbd93e6da54180ae0af6050156e96018118dd606e4ff5822dd7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 03:40:17 GMT
Expires: Sun, 15 Jan 2023 03:40:16 GMT
Etag: "585971a656c07b117f3ac401ad823fc03195b6d3"
Cache-Control: max-age=336782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69e5dc66b4eb-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea629f84c53c29ae595e98d9e4c2d71
585971a656c07b117f3ac401ad823fc03195b6d3
106ad63b483fdbd93e6da54180ae0af6050156e96018118dd606e4ff5822dd7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 03:40:17 GMT
Expires: Sun, 15 Jan 2023 03:40:16 GMT
Etag: "585971a656c07b117f3ac401ad823fc03195b6d3"
Cache-Control: max-age=336782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69e5e8c41c12-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea629f84c53c29ae595e98d9e4c2d71
585971a656c07b117f3ac401ad823fc03195b6d3
106ad63b483fdbd93e6da54180ae0af6050156e96018118dd606e4ff5822dd7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 03:40:17 GMT
Expires: Sun, 15 Jan 2023 03:40:16 GMT
Etag: "585971a656c07b117f3ac401ad823fc03195b6d3"
Cache-Control: max-age=336782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69e5e99bb529-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea629f84c53c29ae595e98d9e4c2d71
585971a656c07b117f3ac401ad823fc03195b6d3
106ad63b483fdbd93e6da54180ae0af6050156e96018118dd606e4ff5822dd7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 03:40:17 GMT
Expires: Sun, 15 Jan 2023 03:40:16 GMT
Etag: "585971a656c07b117f3ac401ad823fc03195b6d3"
Cache-Control: max-age=336782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69e5ed020b3d-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15901
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 05:57:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15901
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 05:57:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15901
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 05:57:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15901
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 05:57:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15901
Expires: Wed, 11 Jan 2023 10:22:14 GMT
Date: Wed, 11 Jan 2023 05:57:13 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d03d252-a4d1-4207-aa34-25d15894724a.jpeg

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d03d252-a4d1-4207-aa34-25d15894724a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5434 bytes)
Hash
cfdccf6a024cbd033eea815d49112057
0d987b906b2fd7e45d09169898e7cc14e0e62f64
739c6dadc197a3cf88c8fcdb8a6f35bc7bb98355b3804e0b2c71cd6a87f08900

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d03d252-a4d1-4207-aa34-25d15894724a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5434
x-amzn-requestid: a6d8944c-dae3-43f6-91bd-6dda6f9275b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei75NErNIAMFlsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d4-44e8212239c649ba56cd3256;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U9k7a673trCY9jdC0vpQVZG10T8iuDpEbB9NyrwVL-UIf7FNZ7bH6g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:42:09 GMT
age: 29704
etag: "0d987b906b2fd7e45d09169898e7cc14e0e62f64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8024 bytes)
Hash
35ee3a36f2d56adfa27324f734f8f7fc
6ec36e85e464004c5e6255739e962e6dcc4c24c6
6cedd3770eb8879c837799d36ebca9d631789d972d3631d730829fc5d64abb25

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8024
x-amzn-requestid: b331ee66-c166-4fa6-b950-287134d07fa2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ6EM0oAMFQFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-39ff669b44e3dd9339daa56b;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yMdvJdyTlIF3F-FBdo6PGtl3E_GIZeE3upxOWeTBNjji1_I4yNPX4Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 07:52:21 GMT
age: 79492
etag: "6ec36e85e464004c5e6255739e962e6dcc4c24c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ab4088a-c5c2-4d36-82ce-a0b30cca3874.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9777 bytes)
Hash
5db571afb21524342feeefa028b67ad6
66e685f9300fb4b88b0eae81f1ec7c53d25856c0
3b1269ba068daccbd1b4052e66b380fedb3038a152e342fcf46ac34d733fbdb8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ab4088a-c5c2-4d36-82ce-a0b30cca3874.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9777
x-amzn-requestid: 6dbeed13-0c06-4106-92fb-10f0f84e3e76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eaWouF1XIAMFenQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba6b04-6f476112593aa07c36b1de5a;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 07:04:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8aNogPFl7kihgLZSuQero9lZBGhN6QZUd9Mpln-xKdWVO248yZXp_w==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 07:59:16 GMT
age: 79077
etag: "66e685f9300fb4b88b0eae81f1ec7c53d25856c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7140 bytes)
Hash
a708649e0d6b128eb599b221445a8e06
59f9b06ee8e4c9608e29e7b19832fb925789f373
b4e17cfdee53b56ac33cb5a86253e4839ed7bd9bb1604209834bb22d881472f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7140
x-amzn-requestid: 96450c55-6068-4946-9e5f-650c19d2772a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei739GoJIAMF0lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-2bf965d47a10fd61619d945f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t5mK-tl3WskwkQLUXPKR2ljEW32-Yo6_BHwqP2dNVUr09WoMyxYeZw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:42:06 GMT
age: 29707
etag: "59f9b06ee8e4c9608e29e7b19832fb925789f373"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4869fe48-260f-46c9-81a4-5ac67e647443.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8772 bytes)
Hash
7a241015ff8d404c1837655539fc53ed
6dc1b2fd2ef31f12d95e912ed56316c2fb01ae35
c289b877f9e66a830ec4effffd411d1e1a251aac2fa82ac80bee8369bce1748b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4869fe48-260f-46c9-81a4-5ac67e647443.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8772
x-amzn-requestid: 0d049342-a984-487a-b48b-862704fa3d5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei8QdFKXIAMFX0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdda69-1caef78222b6470241e7db53;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aE4f4yuWkPLj8UAKwg4efQzzP1fI9fcXpv2AG2ZJZxMVx920yqqbQg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:49:25 GMT
age: 29268
etag: "6dc1b2fd2ef31f12d95e912ed56316c2fb01ae35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd94a5360-2ddf-4088-a880-212e75db1287.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7602 bytes)
Hash
aad80e2c0386d7c7d88ac85b00d2e50f
291629800087b85000b89165892b05fd7babd8b3
bac555de181f5181e01bccf20691916725baae448130a1de3c8da908f60a727f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd94a5360-2ddf-4088-a880-212e75db1287.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7602
x-amzn-requestid: 10f2172b-1c93-4525-bdc7-23cb66d878dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eS1mOHeuoAMFfpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7695a-385d20e03946bf41036d6378;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 00:20:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fo2aHbnZ37zVVknHYPZwnmSlDQFOUOb4CP5u60hl4V0v2vJc_9EJsw==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:51:20 GMT
age: 29153
etag: "291629800087b85000b89165892b05fd7babd8b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

crezu.vn/

35.229.199.189

200 OK

9.4 kB

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2768), with CRLF, LF line terminators
Size
9.4 kB (9381 bytes)
Hash
0e69a4321001d98fb0819955cd7f06b2
b7f626d3594faa43700215af253c44b3fa0e69cc
4904c18136dbfb23e30f4fd8b2d33357fbd601edd04365c4a7022d4b1cd33ffe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://crezu.vn/>; rel=shortlink
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2

35.201.76.189

200 OK

21 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21412, version 1.0\012- data
Size
21 kB (21412 bytes)
Hash
382519586d60c7be70a094b4e31812da
aa3bab15388bf6a4f6c81fb55b8ed1b7bc990764
55f533905b01ab966780d976f024ffdfaf4ce43ac29144e0f16f8be140a65f05

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21412
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Tue, 10 Jan 2023 12:23:20 GMT
expires: Tue, 17 Jan 2023 12:23:20 GMT
cache-control: max-age=604800,public
age: 63234
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-53a4"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2

35.201.76.189

200 OK

21 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21360, version 1.0\012- data
Size
21 kB (21360 bytes)
Hash
18ff681b6fd4b3645bd79be2e233db5d
3f442dca2316418bfe2bb03cd7381c11ddd8696b
8cb0daebe68af6edb17c8b3d6de089dadd6c650a1d35102b0b0d4b7f418f37e3

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21360
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Tue, 10 Jan 2023 12:50:45 GMT
expires: Tue, 17 Jan 2023 12:50:45 GMT
cache-control: max-age=604800,public
age: 61589
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-5370"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2

35.201.76.189

200 OK

22 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21592, version 1.0\012- data
Size
22 kB (21592 bytes)
Hash
d3e761b0f31f4426d434c1c149658c0f
26b413b6022045aca71e7d704fb328057aa367ce
1a184f7278e085eefeb8f573274e20d522bebf61fb47020103a8b1894a520fc4

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21592
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Tue, 10 Jan 2023 12:26:53 GMT
expires: Tue, 17 Jan 2023 12:26:53 GMT
cache-control: max-age=604800,public
age: 63021
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-5458"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/page-index-v2.css

35.201.76.189

200 OK

5.1 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/page-index-v2.css
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (24326)
Size
5.1 kB (5138 bytes)
Hash
d28020c27996b89c4d00115e91a53b63
8d4b06d3fdf484a9b60e47f494abba7b2e74c3bf
2ef68a919a967578c3a7c09b54768a215c0070446c3cd26fa8dd7dad60475f47

HTTP Headers

GET /wp_styles/dist/page-index-v2.css HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 5138
date: Tue, 10 Jan 2023 12:33:38 GMT
expires: Tue, 17 Jan 2023 12:33:38 GMT
cache-control: max-age=604800,public
age: 62616
last-modified: Mon, 03 May 2021 08:11:19 GMT
etag: W/"608fb027-5f07"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2

35.201.76.189

200 OK

22 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21720, version 1.0\012- data
Size
22 kB (21720 bytes)
Hash
f80fae0b587b789f7ff6d153eb6c9253
6facf7f293b0e4c9817c8c39ef206bda4998ceef
9fc022d568ea2d8ba6e55c4388fc8cf594fbdfbfbb47420ed1fbc1a1a9f9eff2

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21720
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Tue, 10 Jan 2023 12:23:20 GMT
expires: Tue, 17 Jan 2023 12:23:20 GMT
cache-control: max-age=604800,public
age: 63234
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-54d8"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_js/dist/countries/vn.js

35.201.76.189

200 OK

1.1 kB

URL HTTP/2
cdn.crezu.net/wp_js/dist/countries/vn.js
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (2221), with no line terminators
Size
1.1 kB (1126 bytes)
Hash
fa6eb4545efbbb80b8d3490154e70060
04c3c337e4562631e0d8c697388dd463966aa931
1d7abb7ec549db7246d4e683e08b808ec9c4fe58fd6eb85c5477c6983bbbf5b1

HTTP Headers

GET /wp_js/dist/countries/vn.js HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 1126
date: Tue, 10 Jan 2023 12:27:55 GMT
expires: Tue, 17 Jan 2023 12:27:55 GMT
cache-control: max-age=604800,public
age: 62959
last-modified: Tue, 13 Sep 2022 13:04:07 GMT
etag: W/"63207fc7-905"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/main-styles-v2.css

35.201.76.189

200 OK

6.2 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/main-styles-v2.css
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30674)
Size
6.2 kB (6158 bytes)
Hash
44893c35091827632f86deca53f6d995
96b19a76dc51fb71225eb57e230bae646c645148
96ef0f76da0c07358334c1ae4bab3b3890ad3708c16230efdf2717310eda86ef

HTTP Headers

GET /wp_styles/dist/main-styles-v2.css HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 6158
date: Tue, 10 Jan 2023 12:27:02 GMT
expires: Tue, 17 Jan 2023 12:27:02 GMT
cache-control: max-age=604800,public
age: 63012
last-modified: Mon, 03 May 2021 10:33:26 GMT
etag: W/"608fd176-77d3"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_js/dist/common.js

35.201.76.189

200 OK

49 kB

URL HTTP/2
cdn.crezu.net/wp_js/dist/common.js
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
HTML document, Unicode text, UTF-8 text, with very long lines (65324), with no line terminators
Size
49 kB (48774 bytes)
Hash
9825b8b6a336ccf1ae4ec36309be0f27
062092881f74bffffffc167e11559423b574d6e6
29368b74b236c92ed1e92f274945385e3d97c6c9f81a3537d362b6afd68cf881

HTTP Headers

GET /wp_js/dist/common.js HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 48774
date: Tue, 10 Jan 2023 12:26:54 GMT
expires: Tue, 17 Jan 2023 12:26:54 GMT
cache-control: max-age=604800,public
age: 63020
last-modified: Wed, 04 Jan 2023 15:00:28 GMT
etag: W/"63b5948c-23e60"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-MB47FWT

142.250.74.168

200 OK

49 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MB47FWT
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (13165)
Size
49 kB (48887 bytes)
Hash
78722bdd3be1f8b9c237166a0f353b1f
a856507b5f7781149b92ff9538f4cf7dd3371c33
7e1e1a1a92162fbde95761d4186d27c3b5d4dfe28498fca5fea21feb9af1cc48

HTTP Headers

GET /gtm.js?id=GTM-MB47FWT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jan 2023 05:57:14 GMT
expires: Wed, 11 Jan 2023 05:57:14 GMT
cache-control: private, max-age=900
last-modified: Wed, 11 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js

35.229.199.189

200 OK

4.2 kB

URL HTTP/1.1
crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Dec 2021 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61c931da-2bd8"
Expires: Thu, 11 Jan 2024 05:57:14 GMT
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea629f84c53c29ae595e98d9e4c2d71
585971a656c07b117f3ac401ad823fc03195b6d3
106ad63b483fdbd93e6da54180ae0af6050156e96018118dd606e4ff5822dd7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 03:40:17 GMT
Expires: Sun, 15 Jan 2023 03:40:16 GMT
Etag: "585971a656c07b117f3ac401ad823fc03195b6d3"
Cache-Control: max-age=336781,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b69ece839b506-OSL

crezu.vn/wp-includes/js/jquery/jquery.min.js

35.229.199.189

200 OK

31 kB

URL HTTP/1.1
crezu.vn/wp-includes/js/jquery/jquery.min.js
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (65447)
Size
31 kB (30953 bytes)
Hash
7a6e4a1e4a67fac0cd39ca1dd1982f47
a8bf880e5db17a703293d5a3c92623a97d5a1df1
daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Dec 2021 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61c931da-15db1"
Expires: Thu, 11 Jan 2024 05:57:14 GMT
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

crezu.vn/wp-content/uploads/2020/06/i-how_1.svg

35.229.199.189

200 OK

2.1 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-how_1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (500)
Size
2.1 kB (2104 bytes)
Hash
f75c29b79b644fe2af9e6c6f4277ea52
698c6f94140c75019494054efeecaafa4ac52e25
448c14ae3ea6ee580cfe55b026763ceae02797026af57430210ea1899a2c161d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-how_1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: image/svg+xml
Content-Length: 2104
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-838"
Expires: Thu, 11 Jan 2024 05:57:14 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_5.svg

35.229.199.189

200 OK

2.1 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_5.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.1 kB (2091 bytes)
Hash
bb87b33ca35f41c025af5c28568b5293
91271fd2f7cf39772013a62ff57294ae50c3498b
556d27c8ea76b142dbd2881871326a1d2504b370354d736d28e3e901ec660e32

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_5.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: image/svg+xml
Content-Length: 2091
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-82b"
Expires: Thu, 11 Jan 2024 05:57:14 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg

35.229.199.189

200 OK

1.3 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1314), with no line terminators
Size
1.3 kB (1314 bytes)
Hash
2ceedc8d9a446e412dd95f395afcbf92
4eae61fae712c00dd9478ce2f695040048951b09
7252d50c41d5ac8cc02cb403d92af957aa866379b4868253fc5e18d95ec0ac3f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_1_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: image/svg+xml
Content-Length: 1314
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-522"
Expires: Thu, 11 Jan 2024 05:57:14 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg

35.229.199.189

200 OK

994 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (994), with no line terminators
Size
994 B (994 bytes)
Hash
3bccec9e980fc058bd34ad9d72146f52
fd2c93ec15dcae241151f92b7d8afd9c045850c0
887c1087b8f1844eac159251d9c0e7c54ebafbd9c407d4aa24020984de4f362c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_4_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:14 GMT
Content-Type: image/svg+xml
Content-Length: 994
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3e2"
Expires: Thu, 11 Jan 2024 05:57:14 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq

95.101.11.171

200 OK

1.4 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq
IP
95.101.11.171:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (3012)
Size
1.4 kB (1350 bytes)
Hash
92bee0747c31341cbf43e8c83fa0cae5
196b5436ba475aa27216194ea0b621914d77d23e
8ba566a7d6797ebffa9686c3694c41ea3991dedded57ba0914c8af2c2e9b8842

HTTP Headers

GET /i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230111055715D91E25D7003EA92FA63B
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6eb6b846c0a08f69406bdc2f307418fc3a97bd5d6bf37d997d14c1e2e940265cc27cb43226546e80b362a48fcf4227b5ccffa1bd5e0823a13f0b02dbdf51e37247065c6855d03a56a64fea9e7ae21278f486e69f1db22a7a8ed583fc8c1084c64
content-encoding: gzip
content-length: 1350
x-origin-response-time: 39,23.220.106.10
x-akamai-request-id: 2c5d296d.758bb74d
expires: Wed, 11 Jan 2023 05:57:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 11 Jan 2023 05:57:15 GMT
x-cache: TCP_MISS from a95-101-11-167.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KATxgrL1Rzyr8zLAI74XHWReEO; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-106-10.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=151, origin; dur=38, inner; dur=3
x-parent-response-time: 189,95.101.11.167
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/static/main.MWRmMjg4NWYzMA.js

95.101.11.171

200 OK

67 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/main.MWRmMjg4NWYzMA.js
IP
95.101.11.171:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (21716)
Size
67 kB (66577 bytes)
Hash
47122852d5152d2d6534819d920df400
d15e9bb07462e98334ddaa91385356c13429a8bd
1556548f1e497949bd2be9297bc6f0f3d0a11ec01c9e8dce790e840e78479e58

HTTP Headers

GET /i18n/pixel/static/main.MWRmMjg4NWYzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2KATxgrL1Rzyr8zLAI74XHWReEO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230110162524C9CB29D4D4FE29200C98
x-tt-trace-host: 01bcca71c7e79b0eebd307e6a4b28bb9e27dd8969db6a9e2ab9063fa7a40975ab896024f43ce5ee9e902bf83a35ad69265e002668405bc67e8dfc577326a200284d26211925a9c907c40a6863aa6d89c2e734c8c438740c894acf68d960c127417
content-encoding: gzip
content-length: 66577
date: Wed, 11 Jan 2023 05:57:15 GMT
x-cache: TCP_HIT from a95-101-11-167.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 758bb7d5
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/static/identify_13839.js

95.101.11.171

200 OK

31 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/identify_13839.js
IP
95.101.11.171:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30991 bytes)
Hash
4cf5ae34da24c854d4b57dbdb2d22f37
71442531dffa545e7df096823bdd6ffe596a0b35
4a5601cb473114541643f4ea6dbb9c9cf66d94aef432c350925251d9eb4d79ea

HTTP Headers

GET /i18n/pixel/static/identify_13839.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2KATxgrL1Rzyr8zLAI74XHWReEO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2022122016574537A734DEEF5EFC369BA0
x-tt-trace-host: 01880214d85065b4a552c30fcd0a64fbb824583a75eed9b0601eca9ccefe18a635cc04cd048ce666d18433a3b7c65944b2d4a017db55822e040e57414ac8463070b710c15cc45cb84d2705140c8d24980e0518e0945844c16ea198767c73fe7880
content-encoding: gzip
content-length: 30991
date: Wed, 11 Jan 2023 05:57:15 GMT
x-cache: TCP_MEM_HIT from a95-101-11-167.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 758bb816
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1400 bytes)
Hash
1f436a8745e8fcd33484b6e755ea5b85
6181a1d4a415ec46e7de9c8250ce3b7eea060eec
09ec800b43246672c5acc434ef5791f67a6ed9d8a4f8fee4536648da58adda73

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-steps_2.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 1400
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-578"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

analytics.tiktok.com/api/v2/pixel

95.101.11.171

200 OK

0 B

URL HTTP/2
analytics.tiktok.com/api/v2/pixel
IP
95.101.11.171:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 741
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2KATxgrL1Rzyr8zLAI74XHWReEO
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023011105571520383918A9AB151FFDF8
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb6eb6b846c0a08f69406bdc2f307418fc3bc4e5e26c4f3c21fb2a24310c5848660bcf9e8149e2027d452da142b2a006348f11efcd0697075cad5905571a87b2634d3c701718877f746327b2900cc1704c17b1e3ed32eb981cd74ce106709031c12
x-origin-response-time: 17,23.220.106.20
x-akamai-request-id: 31601b41.758bb81e
expires: Wed, 11 Jan 2023 05:57:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 11 Jan 2023 05:57:15 GMT
x-cache: TCP_MISS from a95-101-11-167.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-220-106-20.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=94, origin; dur=17, inner; dur=13
x-parent-response-time: 107,95.101.11.167
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/main-bg-1.jpg

35.229.199.189

200 OK

78 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/main-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1059, components 3\012- data
Size
78 kB (78316 bytes)
Hash
63e47dec6ec30bbb7b60fdd2f7a4a072
a5a83dbf7cd9ff7702b6a917857df5c34357dabd
efedacc636328d2abf34a81397bd7479678c36c4fd81d561b7bd1874d4d2a394

HTTP Headers

GET /wp-content/uploads/2020/06/main-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/jpeg
Content-Length: 78316
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-131ec"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/reasons-bg-1.jpg

35.229.199.189

200 OK

26 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/reasons-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1059, components 3\012- data
Size
26 kB (25669 bytes)
Hash
02e092c5f202def3e9eac031f95eb48c
3b4237e861aa593c0ee3aa82fbf8e4288cdf5d20
f09ef1cc5d6a8adf77b56ca0eaecabf79f203c54adc4b819dfcb80da9b3f66c1

HTTP Headers

GET /wp-content/uploads/2020/06/reasons-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/jpeg
Content-Length: 25669
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-6445"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg

35.229.199.189

200 OK

1.7 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.7 kB (1692 bytes)
Hash
e042f65fd5447503e8da0e4970b0c199
65bdcc0350f574fd5024f92b1ed424ffb56747cb
3297c5d4095385ee70fc545a8c779af6c24ca408234277aa48f1f72f04cb00bb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-steps_3.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 1692
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-69c"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg

35.229.199.189

200 OK

767 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (767), with no line terminators
Size
767 B (767 bytes)
Hash
e84efaf1719ad77956be01b392c948e3
fc12e82a6069109935195405bf14ca2647b24ea4
f8855091b86157e3031ff7bd83de79774c39b544a03621a3f0d6c5089e853265

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_2_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 767
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-2ff"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg

35.229.199.189

200 OK

995 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (995), with no line terminators
Size
995 B (995 bytes)
Hash
ab691b37694e88569c740e756f749d72
ce7eef7b93d2bd1459f110d1f92ac002c725f5d6
1815baca451359a96a497960c7b683c884a2d98c489a859987c4d2ddc31bb34c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_3_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 995
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3e3"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg

35.229.199.189

200 OK

975 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (975), with no line terminators
Size
975 B (975 bytes)
Hash
bb83a1cd720bdb334469307133a7c6bf
27cd0a030624bd9790a934fd98380765a81bef27
2f4f475af323531d07b7958d4a950b6ba3e0d9170e0a393fee5d015ff994ddde

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_5_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 975
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3cf"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_1.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (367)
Size
1.4 kB (1424 bytes)
Hash
5f0bf761d06057761739358144a3c0d9
01f9f1e78b84343006bef643c7a4a96d9f5fa963
683aceecf2c98c3ddf5df73629c3b27699acfefd45f52a1a58875fae80814706

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 1424
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-590"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/p-testimonials-1.png

35.229.199.189

200 OK

44 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/p-testimonials-1.png
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 515 x 515, 4-bit colormap, non-interlaced\012- data
Size
44 kB (44384 bytes)
Hash
5129082012a1cdc5ece89f3e6188f836
20d34ebc2acd372d68666fa593734f6ddaaa0dc7
787a65143a1dce74ed95f22008c82c03c5a85ad6f70ab2383b1911adacbb4f58

HTTP Headers

GET /wp-content/uploads/2020/06/p-testimonials-1.png HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/png
Content-Length: 44384
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-ad60"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_2.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_2.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1410 bytes)
Hash
53e16b555f8b956692b40d76c66e179c
cea0cab68c42103c3b04b697f70bc14fbce3976f
3e322656801f28d9037a8f4613f3e2bfe86186abaa310143da7c8c670e113d9a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_2.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 1410
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-582"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_3.svg

35.229.199.189

200 OK

2.0 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_3.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.0 kB (1976 bytes)
Hash
9a9742f9fd057c843613de86028e512a
81af2a20b90ee584caff1c35e88c93f4f7376f49
129e11347ab8ac7dc247b07c215697493cfa5d4c12330f27a45dd647d5197f2c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_3.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:15 GMT
Content-Type: image/svg+xml
Content-Length: 1976
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-7b8"
Expires: Thu, 11 Jan 2024 05:57:15 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_4.svg

35.229.199.189

200 OK

1.6 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_4.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.6 kB (1573 bytes)
Hash
0b753860c91d42902a7e79d0eb2c8feb
e692cbd0e87881e84bd8e1bed79ab864ccb1f566
178e8780c9215813a39e7d44c53391fe05afbe4662cc05cd1b963c7a502f2fce

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_4.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:16 GMT
Content-Type: image/svg+xml
Content-Length: 1573
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-625"
Expires: Thu, 11 Jan 2024 05:57:16 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_6.svg

35.229.199.189

200 OK

1.6 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_6.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.6 kB (1576 bytes)
Hash
02a5d0561bace2cb9fbe159805d962a1
cfa04978dfa4330e436bc77aa441df0ecba0d355
df24b2830508fce89942dab30f69a5ca4db4bbf58adc7cfd96988cb0170c2ee2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_6.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:16 GMT
Content-Type: image/svg+xml
Content-Length: 1576
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-628"
Expires: Thu, 11 Jan 2024 05:57:16 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5f5f3214d73a0066cf4784dac4d8573b
47832303343c4a19070eac14f0587518430a65e2
448453048adc356672036cfeb00a74126e089dc389a1c0eac52373ae99e39951

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3327
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Last-Modified: Wed, 11 Jan 2023 05:01:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.46

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 11 Jan 2023 04:21:55 GMT
expires: Wed, 11 Jan 2023 06:21:55 GMT
cache-control: public, max-age=7200
age: 5721
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27613 bytes)
Hash
4aa5723e20bb937995d58baee63ccef3
4f4451ce70e0f1174447f509b9ecfae0030d69b8
a442ce52f0330fe4e1d6e25a76d9cf569cf7e649416caf201d0570a1cadf7de8

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: BhNSByoNXokR5sQJDisxoy6bQU9/kCsKxfU163av7aLcxmQX0hPvgFPT67w7j0sT/G70mUNdfdtXfgTT1bTR/Q==
priority: u=3,i
content-length: 27613
x-fb-trip-id: 1904183273
date: Wed, 11 Jan 2023 05:57:16 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5f5f3214d73a0066cf4784dac4d8573b
47832303343c4a19070eac14f0587518430a65e2
448453048adc356672036cfeb00a74126e089dc389a1c0eac52373ae99e39951

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3327
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Last-Modified: Wed, 11 Jan 2023 05:01:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274

142.250.74.34

200 OK

50 kB

URL HTTP/2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4885)
Size
50 kB (49554 bytes)
Hash
bc25c9f5dc2e47588c1e671dc9624f81
e0fd8f9c105b01e53c757775426ee261f9332bd9
06cd213bcc9e03d2ddff34fa0a7d12903b4284ae74db3bc7f4c87f39b4456b56

HTTP Headers

GET /pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 11 Jan 2023 05:57:16 GMT
expires: Wed, 11 Jan 2023 05:57:16 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7584655834588609022
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49554
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

crezu.vn/wp-content/uploads/2020/06/favicon.ico

35.229.199.189

200 OK

1.2 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/favicon.ico
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
3c8ab0dad807a7a2e7b8222c08070f94
c7123a2cd64c91d5542b920d5abb3ddb0aa12402
7ab970a4b7b0d077f91ec990046d5610af466b333c6a8ee5a72018b2f79011c0

HTTP Headers

GET /wp-content/uploads/2020/06/favicon.ico HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F; rsns_cnt_1=800358; rsns_cnt_2=531; _tt_enable_cookie=1; _ttp=PxiLyAD0eVKFW16BhgfjbQ6m85K
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:16 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-47e"
Expires: Thu, 11 Jan 2024 05:57:16 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&gjid=104659366&_gid=2009790661.1673416622&_u=YEBAAEAAAAAAACABI~&z=951199699

173.194.222.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&gjid=104659366&_gid=2009790661.1673416622&_u=YEBAAEAAAAAAACABI~&z=951199699
IP
173.194.222.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&gjid=104659366&_gid=2009790661.1673416622&_u=YEBAAEAAAAAAACABI~&z=951199699 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://crezu.vn
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 11 Jan 2023 05:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/cta-bg-1.jpg

35.229.199.189

200 OK

46 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/cta-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x769, components 3\012- data
Size
46 kB (46358 bytes)
Hash
2aecb34c19abfc82857e24a295304c34
be5c553d479b94d326d289586a059d2c44cd2927
172e470842d47668241da11a8e495b5fa3e5a3cb4c62b8cc9b794b3f52d3828b

HTTP Headers

GET /wp-content/uploads/2020/06/cta-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2023-01-11%2005%3A57%3A00%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jan 2023 05:57:16 GMT
Content-Type: image/jpeg
Content-Length: 46358
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-b516"
Expires: Thu, 11 Jan 2024 05:57:16 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ee335bb2a20e83a137dedff2ff1f54b7
388a3728c5900302ff6cf2f1e27bcb12e8896b05
9ebf03e142fa0c5477430d456f614d9cea75229b2b3aa8643e0051e0fe760476

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
66b50d58ebed379dc4f68b02c92f59d2
635df6d7900149fd2ce567c9d56f14ee71bb2b41
8092144e087cea4ee21d2a00fa5488225063f57d821ae9fdebe12c4478b08fc5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.no/adsid/integrator.js?domain=crezu.vn

216.58.211.2

200 OK

100 B

URL HTTP/2
adservice.google.no/adsid/integrator.js?domain=crezu.vn
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=crezu.vn HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 11 Jan 2023 05:57:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

adservice.google.com/adsid/integrator.js?domain=crezu.vn

216.58.211.2

200 OK

100 B

URL HTTP/2
adservice.google.com/adsid/integrator.js?domain=crezu.vn
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=crezu.vn HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 11 Jan 2023 05:57:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ee335bb2a20e83a137dedff2ff1f54b7
388a3728c5900302ff6cf2f1e27bcb12e8896b05
9ebf03e142fa0c5477430d456f614d9cea75229b2b3aa8643e0051e0fe760476

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1673416622591&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673416622590.2089705653&it=1673416622208&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1673416622591&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673416622590.2089705653&it=1673416622208&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1673416622591&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673416622590.2089705653&it=1673416622208&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 11 Jan 2023 05:57:16 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
66b50d58ebed379dc4f68b02c92f59d2
635df6d7900149fd2ce567c9d56f14ee71bb2b41
8092144e087cea4ee21d2a00fa5488225063f57d821ae9fdebe12c4478b08fc5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9d3d631f824642942edba0387cf019a5
e7605d850d2687eb211769bd17ef706e35845f69
c17f2b3cfedc60003482a6c9f3a692b9a052ae63bd873c28b9532416a1f0b279

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&_u=YEBAAEAAAAAAACABI~&z=1591739825

142.250.74.131

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&_u=YEBAAEAAAAAAACABI~&z=1591739825
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&_u=YEBAAEAAAAAAACABI~&z=1591739825 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 11 Jan 2023 05:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b62c4cff5caed771f4b0d9712fd57933
d61b882d6b59d2162c523efc60c84a46b0ea0671
ff865eac966c662a99fc0e6a5185678174261117cf0c20e4a03bb7e642a54e54

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&_u=YEBAAEAAAAAAACABI~&z=1591739825

216.58.211.4

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&_u=YEBAAEAAAAAAACABI~&z=1591739825
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1287252537.1673416622&jid=1472650645&_u=YEBAAEAAAAAAACABI~&z=1591739825 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 11 Jan 2023 05:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1

216.58.207.226

200 OK

248 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (383), with no line terminators
Size
248 B (248 bytes)
Hash
efb87d3e86e12e63ac404edad3245aea
1464410604b76c5b054dcb9ce977e6ef6524d1cc
555feca8c329e31f713233ede6a92fd31873244108ae4fba3e7236d5d755c02d

HTTP Headers

GET /gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 11 Jan 2023 05:57:16 GMT
server: cafe
cache-control: private
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b62c4cff5caed771f4b0d9712fd57933
d61b882d6b59d2162c523efc60c84a46b0ea0671
ff865eac966c662a99fc0e6a5185678174261117cf0c20e4a03bb7e642a54e54

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9a4ba4ab27cd47ead09d38283f795198
cf1d1e13fa427879530cb912e495012a42312b7d
8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

110 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
gzip compressed data, from Unix\012- data
Size
110 kB (110351 bytes)
Hash
28a31a4676e62d5c80c126b44ede3808
ad1a610d8a409fd307ca613d40541d3108201e4d
13f01e41aec2e1ff2a8292c5ba3f3d9ad11e1985d6c56881c85c3826f9cd57df

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/mysidia/7d0b7188506749bb068f2c695a7a947e.js?tag=client_fast_engine_2019

142.250.74.35

200 OK

4.2 kB

URL HTTP/2
www.gstatic.com/mysidia/7d0b7188506749bb068f2c695a7a947e.js?tag=client_fast_engine_2019
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2630)
Size
4.2 kB (4224 bytes)
Hash
3bae87cf5e159edd967734b13094aa2a
927ef8e21909cb397834d3cf624e8dd99cb0f571
9bec77a650f5f5858ab2054c017968a0fcf9d67e5d66417e9470144d51da1ec7

HTTP Headers

GET /mysidia/7d0b7188506749bb068f2c695a7a947e.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 06:20:42 GMT
expires: Wed, 05 Apr 2023 06:20:42 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 05 Jan 2023 01:26:36 GMT
content-type: text/javascript
age: 516995
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c6b0c791541b73984100978c2d9efb6b
15ca4bb1a0ce8b91da58f88362974445a5d936ec
f5cf7f17bd879b71a5aa58837e8d09e90ff8c44ebfa98ac505c5ec555654a6d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c6b0c791541b73984100978c2d9efb6b
15ca4bb1a0ce8b91da58f88362974445a5d936ec
f5cf7f17bd879b71a5aa58837e8d09e90ff8c44ebfa98ac505c5ec555654a6d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/mysidia/7ccdca65462086e0026c8c8b2d8a241a.js?tag=text/vanilla_highlight

142.250.74.35

200 OK

4.5 kB

URL HTTP/2
www.gstatic.com/mysidia/7ccdca65462086e0026c8c8b2d8a241a.js?tag=text/vanilla_highlight
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
C++ source, ASCII text, with very long lines (2150)
Size
4.5 kB (4484 bytes)
Hash
24f9b22dc2302ab7f0941f1d4ad4f929
1531077e3c19da15bd14a597eb0cc2454cb4cb50
9618b758a37fe76277f00a65e07c82984a9b9573c49b8110f775f26cc1a54ee5

HTTP Headers

GET /mysidia/7ccdca65462086e0026c8c8b2d8a241a.js?tag=text/vanilla_highlight HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 05:59:06 GMT
expires: Fri, 07 Apr 2023 05:59:06 GMT
cache-control: public, max-age=7776000
last-modified: Thu, 05 Jan 2023 01:26:36 GMT
content-type: text/javascript
age: 345491
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/qs_click_protection_fy2021.js

216.58.211.1

200 OK

7.5 kB

URL HTTP/2
tpc.googlesyndication.com/pagead/js/r20230109/r20110914/client/qs_click_protection_fy2021.js
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1506)
Size
7.5 kB (7538 bytes)
Hash
5b7f8f3b88683f1be8c3cd38c6eac34c
40ac969c50aa9e810c739114f36da64b9c0032c6
b058db00e166a46363182af58e3b632f131aa773e6721f14808c400ead7943a8

HTTP Headers

GET /pagead/js/r20230109/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7538
x-xss-protection: 0
date: Tue, 10 Jan 2023 18:56:48 GMT
expires: Tue, 24 Jan 2023 18:56:48 GMT
cache-control: public, max-age=1209600
age: 39629
etag: 18140588555649875417
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tpc.googlesyndication.com/pagead/js/r20230109/r20110914/abg_lite_fy2021.js

216.58.211.1

200 OK

8.9 kB

URL HTTP/2
tpc.googlesyndication.com/pagead/js/r20230109/r20110914/abg_lite_fy2021.js
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1569)
Size
8.9 kB (8889 bytes)
Hash
405113cd450d20a7a8794680fe6d9085
aa285e8e9e3a07ea817e5bbc81d36c40f3edfe40
884ddf0329fcc7c276fd337734c4454c42c4e9c8ca3ed4371d544c8c3acbdfd9

HTTP Headers

GET /pagead/js/r20230109/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8889
x-xss-protection: 0
date: Tue, 10 Jan 2023 19:07:54 GMT
expires: Tue, 24 Jan 2023 19:07:54 GMT
cache-control: public, max-age=1209600
age: 38963
etag: 3049769697470197148
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914

216.58.211.2

200 OK

49 kB

URL HTTP/2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3504)
Size
49 kB (48956 bytes)
Hash
7a37677e299cd874aad183cfceddad52
8b5d7c70a9027032c3170fa84cc9714ab24e571f
e9f48cc8d0f75b2858d53a849acc7050df6d0ab378ebb88c8b49f7d164bf3ede

HTTP Headers

GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48956
date: Wed, 11 Jan 2023 05:57:17 GMT
expires: Wed, 11 Jan 2023 05:57:17 GMT
cache-control: private, max-age=3000
etag: "1673267917225388"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 05:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

142.250.74.35

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Size
28 kB (28288 bytes)
Hash
53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 20:35:00 GMT
expires: Thu, 04 Jan 2024 20:35:00 GMT
cache-control: public, max-age=31536000
age: 552137
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPj0UvaYr.woff2

142.250.74.35

200 OK

6.0 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPj0UvaYr.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6024, version 1.0\012- data
Size
6.0 kB (6024 bytes)
Hash
a573c01e49f793b851ca2f2c5fe5561e
a51ecae4e163eb37f2983e9337bffc2957caa004
5ccac6220939e464bae744df0cabc646ca1078d982ea076783e905f47eb4014d

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPj0UvaYr.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6024
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 20:35:42 GMT
expires: Thu, 04 Jan 2024 20:35:42 GMT
cache-control: public, max-age=31536000
age: 552095
last-modified: Wed, 01 Jun 2022 19:05:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjwUvaYr.woff2

142.250.74.35

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjwUvaYr.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13676, version 1.0\012- data
Size
14 kB (13676 bytes)
Hash
4d4f9793319b2d94573820ba75773f27
ced5af48d828c8530af2fbb52c760720df8ceca6
8878d98ccb41ec139e1d88104ed132d3050c7231042659e67212728988413979

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjwUvaYr.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13676
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jan 2023 18:56:04 GMT
expires: Wed, 10 Jan 2024 18:56:04 GMT
cache-control: public, max-age=31536000
age: 39673
last-modified: Wed, 01 Jun 2022 19:05:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230109&st=env

142.250.74.34

200 OK

11 kB

URL HTTP/2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230109&st=env
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (14457), with no line terminators
Size
11 kB (10913 bytes)
Hash
45fdf0a75b617fe287fcfd05a429d845
82b82232d55d68f56c720c961db4e0a8cbfd63f6
a6f51e0000d629bb9f678f24fe76707f260543e288a33de32814f700a6dec201

HTTP Headers

GET /getconfig/sodar?sv=200&tid=gda&tv=r20230109&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Wed, 11 Jan 2023 05:57:17 GMT
server: cafe
content-length: 10913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

27 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, from Unix\012- data
Size
27 kB (27001 bytes)
Hash
406c8fdf86d94c250bcc2290c66dc224
230313088e0f78430871bfd82a9fb47b25fc73af
59846697fe2caea0981622d129c86ea01e655a6987c6225edc902bfa4da61d2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "198AAAF3E2E5EF8EC315AA706F5D0EAF1991FB5E47226B2438874A850F8ADE7E"
Last-Modified: Tue, 10 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16395
Expires: Wed, 11 Jan 2023 10:30:33 GMT
Date: Wed, 11 Jan 2023 05:57:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ea1e10d2b5428ce087c240041b835139
5707c3a3562bd2c4806edc688a333982e15301bb
198aaaf3e2e5ef8ec315aa706f5d0eaf1991fb5e47226b2438874a850f8ade7e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "198AAAF3E2E5EF8EC315AA706F5D0EAF1991FB5E47226B2438874A850F8ADE7E"
Last-Modified: Tue, 10 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3610
Expires: Wed, 11 Jan 2023 06:57:28 GMT
Date: Wed, 11 Jan 2023 05:57:18 GMT
Connection: keep-alive

events.crezu.net/api/event

35.240.92.105

204 No Content

0 B

URL HTTP/1.1
events.crezu.net/api/event
IP
35.240.92.105:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/event HTTP/1.1
Host: events.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://crezu.vn/
Origin: https://crezu.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 11 Jan 2023 05:57:18 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,X-API-KEY,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0

events.crezu.net/api/event

35.240.92.105

201 Created

0 B

URL HTTP/1.1
events.crezu.net/api/event
IP
35.240.92.105:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/event HTTP/1.1
Host: events.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://crezu.vn/
Content-Type: application/json
Origin: https://crezu.vn
Content-Length: 229
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 201 Created
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 11 Jan 2023 05:57:18 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-API-KEY,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
61255df410edfc3773af74730afc3990
2afee3d0a9c306552e98093b7c0c02a486a3da21
7f106bbbd86795bff155debc61f93595ddb1934d56217f3f6dea6d013cc22dfb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 04:24:44 GMT
Expires: Wed, 18 Jan 2023 04:24:43 GMT
Etag: "2afee3d0a9c306552e98093b7c0c02a486a3da21"
Cache-Control: max-age=598643,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b6a0aa9071c12-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
61255df410edfc3773af74730afc3990
2afee3d0a9c306552e98093b7c0c02a486a3da21
7f106bbbd86795bff155debc61f93595ddb1934d56217f3f6dea6d013cc22dfb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 04:24:44 GMT
Expires: Wed, 18 Jan 2023 04:24:43 GMT
Etag: "2afee3d0a9c306552e98093b7c0c02a486a3da21"
Cache-Control: max-age=598643,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b6a0aaaffb529-OSL

cdn.morecashpls.com/landings/img/i-push-01.svg

34.107.249.96

200 OK

1.4 kB

URL HTTP/2
cdn.morecashpls.com/landings/img/i-push-01.svg
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1391 bytes)
Hash
050c4f432d5c68e5d8efc4afbda71930
635f6e484ce444e6f237899b553596f504722a41
5bacac65cd03f5724f8e242261b6cd170831f4783c2f46c5885a9c32fdf84850

HTTP Headers

GET /landings/img/i-push-01.svg HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 1391
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Sun, 08 Jan 2023 18:56:41 GMT
expires: Sun, 15 Jan 2023 18:56:41 GMT
cache-control: max-age=604800,public
age: 212438
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-56f"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/img-push-arrow.png

34.107.249.96

200 OK

21 kB

URL HTTP/2
cdn.morecashpls.com/landings/img/img-push-arrow.png
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
PNG image data, 680 x 231, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20616 bytes)
Hash
bf9cb4b97700e1d2e3f7e9ce7bd575ff
ce87fbfff8bea8017a94fe748e3fadcd930457e3
194d53b4483d0fc25f7ccf7f5431893376d633324170f6366d4de0eb102fe25e

HTTP Headers

GET /landings/img/img-push-arrow.png HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 20616
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Sun, 08 Jan 2023 17:52:25 GMT
expires: Sun, 15 Jan 2023 17:52:25 GMT
cache-control: max-age=604800,public
age: 216294
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-5088"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/i-push-close.svg

34.107.249.96

200 OK

639 B

URL HTTP/2
cdn.morecashpls.com/landings/img/i-push-close.svg
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
639 B (639 bytes)
Hash
a942d9fd63a2eebe28676f7c9c463596
06cb2b6fbc48a08c06dd5396b647e7d64d2d0c46
5e0440d1f014655b2a7c9a0ce23aa09e79d49d7afce588d3f7d54a89e92ceb6f

HTTP Headers

GET /landings/img/i-push-close.svg HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 639
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Thu, 05 Jan 2023 22:51:47 GMT
expires: Thu, 12 Jan 2023 22:51:47 GMT
cache-control: max-age=604800,public
age: 457532
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-27f"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
61255df410edfc3773af74730afc3990
2afee3d0a9c306552e98093b7c0c02a486a3da21
7f106bbbd86795bff155debc61f93595ddb1934d56217f3f6dea6d013cc22dfb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 04:24:44 GMT
Expires: Wed, 18 Jan 2023 04:24:43 GMT
Etag: "2afee3d0a9c306552e98093b7c0c02a486a3da21"
Cache-Control: max-age=598643,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b6a0b3e22b506-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
61255df410edfc3773af74730afc3990
2afee3d0a9c306552e98093b7c0c02a486a3da21
7f106bbbd86795bff155debc61f93595ddb1934d56217f3f6dea6d013cc22dfb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 04:24:44 GMT
Expires: Wed, 18 Jan 2023 04:24:43 GMT
Etag: "2afee3d0a9c306552e98093b7c0c02a486a3da21"
Cache-Control: max-age=598643,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b6a0aacc7b4eb-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
61255df410edfc3773af74730afc3990
2afee3d0a9c306552e98093b7c0c02a486a3da21
7f106bbbd86795bff155debc61f93595ddb1934d56217f3f6dea6d013cc22dfb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 05:57:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 04:24:44 GMT
Expires: Wed, 18 Jan 2023 04:24:43 GMT
Etag: "2afee3d0a9c306552e98093b7c0c02a486a3da21"
Cache-Control: max-age=598643,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787b6a0aac820b3d-OSL

cdn.crezu.net/wp_js/dist/page-index.js

35.201.76.189

200 OK

0 B

URL HTTP/2
cdn.crezu.net/wp_js/dist/page-index.js
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp_js/dist/page-index.js HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 77668
date: Tue, 10 Jan 2023 12:27:36 GMT
expires: Tue, 17 Jan 2023 12:27:36 GMT
cache-control: max-age=604800,public
age: 62978
last-modified: Wed, 04 Jan 2023 15:00:28 GMT
etag: W/"63b5948c-3ddea"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jan 2023 05:57:17 GMT
date: Wed, 11 Jan 2023 05:57:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (160)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations