Report - crezu.vn/

Report Overview

Submitted URL
crezu.vn/
IP
35.229.199.189
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-12-12 16:11:32
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	510 B	694 B	142.250.74.132
crezu.vn	479041	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	16 kB	278 kB	35.229.199.189
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.51.98
cdn.crezu.net	708765	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	102 kB	35.201.76.189
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	51 kB	34.120.237.76
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	1.1 kB	142.250.74.130
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	658 B	142.250.74.98
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	572 B	349 B	31.13.72.36
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	870 B	11 kB	142.250.74.99
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	509 B	694 B	142.250.74.163
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	746 B	142.250.74.74
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	95.101.11.115
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.3 kB	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	21 kB	216.239.38.178
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	703 B	108.177.14.157
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	436 B	50 kB	216.58.211.2
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	12 kB	104.18.32.68
www.googleoptimize.com	1604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	48 kB	142.250.74.78
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	48 kB	142.250.74.168
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	29 kB	31.13.72.12
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	51 kB	216.58.207.227
events.crezu.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	906 B	816 B	35.240.92.105
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.9 kB	14 kB	142.250.74.131
analytics.tiktok.com	1182	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	98 kB	23.36.79.17
partner.googleadservices.com	798	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	448 B	913 B	216.58.207.226
adservice.google.com	76	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	779 B	142.250.74.98
tpc.googlesyndication.com	126	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	860 B	18 kB	172.217.21.161
www.googletagservices.com	169	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	49 kB	142.250.74.98
cdn.morecashpls.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	26 kB	34.107.249.96

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-12	medium	crezu.vn/	Phishing
2022-12-12	medium	crezu.vn/	Phishing
2022-12-12	medium	crezu.vn/	Phishing
2022-12-12	medium	crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js	Phishing
2022-12-12	medium	crezu.vn/wp-includes/js/jquery/jquery.min.js	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-features_5.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-features_6.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-how_1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-features_1.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-features_2.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-features_3.svg	Phishing
2022-12-12	medium	crezu.vn/wp-content/uploads/2020/06/i-features_4.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (156)

	URL	Size	First Seen	Last Seen
	pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6373705936907274&plah=crezu.vn&bust=31071219	365 kB	2023-03-08	2023-03-09
Pretty URL pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6373705936907274&plah=crezu.vn&bust=31071219 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:34:25 Last Seen2023-03-09 04:41:46 Times Seen1 Hash 47b17c3c86a00dcdc565f2d3305f9498 36015e502c0977eab45ef2085333c9154c5c1ed7 673e11dc742a5e7317ae4f8cd7cf0754d21fb455c64674b567c231e4046fae73 Loading...

	tpc.googlesyndication.com/pagead/js/r20221206/r20110914/abg_lite_fy2021.js	24 kB	2023-03-08	2023-03-12
Pretty URL tpc.googlesyndication.com/pagead/js/r20221206/r20110914/abg_lite_fy2021.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:17 Last Seen2023-03-12 14:35:21 Times Seen1 Hash f458f507accf48c72fb80e2ba2f9f399 9359f3aba34e2459324ff54f6c2922c6201b7c60 86a2a3999c65a6ee0bbee35ac7515f04856e0fcbcebdffd56001c0dc924d887a Loading...

	tpc.googlesyndication.com/sodar/sodar2.js	17 kB	2023-03-07	2024-04-19
Pretty URL tpc.googlesyndication.com/sodar/sodar2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 12:41:02 Times Seen17648 Hash 2cc87e9764aebcbbf36ff2061e6a2793 b4f2ffdf4c695aa79f0e63651c18a88729c2407b 61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb Loading...

	pagead2.googlesyndication.com/bg/z7cUAtzL1u1d_2AGWF4wFgnTveRSMJLcB1xcawACHJQ.js	37 kB	2023-03-08	2023-03-12
Pretty URL pagead2.googlesyndication.com/bg/z7cUAtzL1u1d_2AGWF4wFgnTveRSMJLcB1xcawACHJQ.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:58:53 Last Seen2023-03-12 18:56:13 Times Seen1 Hash 58f5bfb7814d97ff9f672388d0a5fae2 cd492c643629604dea1fe470f78b3a2ef4f6d501 cfb71402dccbd6ed5dff6006585e301609d3bde4523092dc075c5c6b00021c94 Loading...

	crezu.vn/	337 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:46:45 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 387867ec31ab625c2b11dbda114eeae7 82c0f167e9db6ad698f7c328e6644f007ae1ea55 2e9cb852f3374b9fcaaa7b7d7e11093183f5f87520cad4fa2f4f42f60dafcdd2 Loading...

	crezu.vn/	488 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 4d8c78ea6a81f88dd60f9496776ff950 c3610fdc4868a6668cabc66d147300ee3578dc52 437fbac922cd71c8156120219b9c4814f42f4831c030fa74247f9b691d12e31f Loading...

	crezu.vn/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-19
Pretty URL crezu.vn/wp-includes/js/jquery/jquery.min.js IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:34:19 Times Seen31746 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	19 B	2023-03-07	2024-04-02
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-02 23:20:18 Times Seen2232 Hash 65bb46e3f84073f672c022f98f42245e 2d0aed946f65bf94f57fe36798d2540727b212e3 375bc1a8808edc2a20b432f223e06e981b02feb9d34f558260aa537495f3533f Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	9 B	2023-03-07	2024-04-02
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-02 23:20:20 Times Seen2252 Hash c8308edb31948449adfea16b3e2d316d 38d59d97a7ea7498b50a40eabdfde6c3f446be3b 5c1324674560cf5a651810c1e7ad9643cd2472144d432b7a62a743a19f6f86c4 Loading...

	connect.facebook.net/signals/config/181455369817902?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-09
Pretty URL connect.facebook.net/signals/config/181455369817902?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-09 04:41:46 Times Seen1 Hash f150a53da7f1e5efac4746ec5a1ef279 27399913228a93d544346c453e0c6e68880d8b32 f32e1b051e52beeb7f3ce64c2ae4a4a735d7b931c230af4917a30e5e88347f4c Loading...

	www.gstatic.com/mysidia/1eaa1e49c6d827e7897bafa951c60a71.js?tag=client_fast_engine_2019	9.5 kB	2023-03-08	2023-03-12
Pretty URL www.gstatic.com/mysidia/1eaa1e49c6d827e7897bafa951c60a71.js?tag=client_fast_engine_2019 IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:16:05 Last Seen2023-03-12 14:18:07 Times Seen1 Hash 1eaa1e49c6d827e7897bafa951c60a71 f467154239a1297814f6168ee3ef6f873ad7df3b a983ec1308781984ea4503dd1c4e1317b2b48dcb17dd1a6e68df68560951784b Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	7.0 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:16 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 8fb7ae1dfe264bede1883961836d18ac 388b325fea585e6780e0f30cb43a7df0f28b5035 7e206584502ccfa5cd025eb15a4534f380a0ff375e2d988899f7a668935e65bf Loading...

	tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js	18 kB	2023-03-08	2023-03-12
Pretty URL tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:16 Last Seen2023-03-12 14:35:21 Times Seen1 Hash 8b9321f847dd35f8b9d7bf4b2f2638d0 a54f3f434e62752fe4653c21b611eb729d56e9d6 000cb4237204c839588365b865b4ceb28c4d78ba054f6e5a4c7a5e25f36e0c9c Loading...

	www.google.com/recaptcha/api2/aframe	614 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/api2/aframe IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2023-04-05 02:12:11 Times Seen4624 Hash e9e28069c47a530a55f8c7e015a1b38b 2eced601ebdbe39ca274f61c71376ea4bcb8dfff 5fc84aaac11d3157f560666107a0551c67974bbd141130882f9579a5a92e0c52 Loading...

	cdn.crezu.net/wp_js/dist/page-index.js	253 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/page-index.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2023-03-12 11:54:29 Times Seen1 Hash e91a5cb04b0c07fd75919a8017b15bfd 5114fca99f583383d768620928f05f49d017be43 414589bc3d737b9c3281339dcfe4231517038c26aacd56ad739a9de8ea81d401 Loading...

	cdn.crezu.net/wp_js/dist/countries/vn.js	2.3 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/countries/vn.js IP 35.201.76.189 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a9d4583f2975ed60e02d35256e02f294 5d35599e3de6c949d60f664111601b2faceebe1f e4a25340f810f50486892a572227d0ad55ea05c5a8c19f5a1516064b45a19630 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&adk=293675617&adf=814277786&lmt=1670861484&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32&format=0x0&url=https%3A%2F%2Fcrezu.vn%2F&ea=0&pra=5&wgl=1&dt=1670861483895&bpp=3&bdt=1958&idt=283&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&nras=1&correlator=1274321317716&frm=20&pv=2&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=389	4.4 kB	2023-03-09	2023-03-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&adk=293675617&adf=814277786&lmt=1670861484&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32&format=0x0&url=https%3A%2F%2Fcrezu.vn%2F&ea=0&pra=5&wgl=1&dt=1670861483895&bpp=3&bdt=1958&idt=283&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&nras=1&correlator=1274321317716&frm=20&pv=2&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=389 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash 0bbff264b3bea3b4a819f3afb1ce4886 c1f442216a73c84435a14138afd27dbc8007971e 369bcfba455f5b84419c8a8d575258de4a35406cbe0071721b5c3fd8cdbd8fc3 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	202 B	2023-03-07	2023-12-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2023-12-09 21:56:02 Times Seen779 Hash 448988dac0fe7d5dfb1fd9ff3cd66b24 7c8ec3e9d704cc343dd0aed2d355cfe878c5877d b16185d817ab24523135c05676bcba706b8911ac50227c4150275cd8dadff06f Loading...

	tpc.googlesyndication.com/sodar/sodar2/225/runner.html	13 kB	2023-03-07	2024-02-23
Pretty URL tpc.googlesyndication.com/sodar/sodar2/225/runner.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-02-23 22:40:33 Times Seen4633 Hash 04889347291e33491547245846d18c4f fa0e1917fb2630c86eab067505751a72ba001c6a f4a5d6b45c241fa0ce6ba4ae8b035ad725d67c4091ce8a99bc9c2364295b8fd8 Loading...

	crezu.vn/	887 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a8323f57db042cb664345dc40fd03ee0 d6d3976086348b9e971a1855875492b5821309ba 6b978ad14deab77956c782dd0f9364502500ba19ea6f4309e93ce7df2511a8ac Loading...

	googleads.g.doubleclick.net/pagead/html/r20221206/r20190131/zrt_lookup.html	9.7 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/html/r20221206/r20190131/zrt_lookup.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 5ba05061c66d3e3a39f0573557899b0d f31c916b0c5ba50856c2d505c6a07ac2e3703dea 821afaa0abe5e4fb2292f52492b24ad0e290f7c43766602293856e911b5d1499 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	865 B	2023-03-07	2023-09-26
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-09-26 10:13:13 Times Seen948 Hash 2a980601f126ccf75525c8de2f28a710 1c0ea07c6ac72e55acc81b5b60a80df538bb2b91 2820eca7c63ddd81d283ab8e497c6035888f4f4e89151ef305ff7786e64e39d4 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	51 B	2023-03-08	2023-04-05
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:47 Last Seen2023-04-05 02:10:11 Times Seen472 Hash 28af94bc1600e9ac259e4ca00dc4cf8a 2502d6c9785acecb2a2e4ab346e572eceecbdb3c 6d2e7247be2c7a684b742fd6cf41fb7f75452753f7e25bf8a11e797ebf168fa1 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	566 B	2023-03-07	2023-04-05
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2023-04-05 02:10:11 Times Seen464 Hash 1d94359236582b07a3847b6ad018e40f 183a56ccfb9a122e7abe3d3b73bee96ed1405281 ef8553166b4224d14caf381ee0e3aef4491574ec4bf434987749d0078a621c25 Loading...

	www.gstatic.com/mysidia/6200ddedc9583236b464cb8aa5d42a3e.js?tag=text/vanilla_highlight_ms	11 kB	2023-03-08	2023-03-12
Pretty URL www.gstatic.com/mysidia/6200ddedc9583236b464cb8aa5d42a3e.js?tag=text/vanilla_highlight_ms IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:26:29 Last Seen2023-03-12 14:13:36 Times Seen1 Hash 6200ddedc9583236b464cb8aa5d42a3e 56551c1587c0c6826355cd6d93c66b3023f1c23c 8923ffc02c25cc3bc3dd09fac5407d403208ae0569bb5d8ca33478eb14f417d2 Loading...

	www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914	156 kB	2023-03-08	2023-03-12
Pretty URL www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:12:33 Last Seen2023-03-12 14:28:25 Times Seen1 Hash 471aeb0d2e2f3a3ef81b11a02ee731ba c711f0af4e9581f9797bc67fafb4afc38baaa07e 196beb31539e747bdf66ddcf9d5f7255eeb42c14210786cb0a93ddbce4664d2e Loading...

	tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/load_preloaded_resource_fy2021.js	1.6 kB	2023-03-08	2023-04-05
Pretty URL tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/load_preloaded_resource_fy2021.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-04-05 02:11:33 Times Seen1532 Hash 822ae3ba8078d8c2f84874b6dd35276b 41c4a330885a8297f036f76df13ae219203e3dff f50e59fa7a264b1674e5f94591375a26e9aea318036b2a629e5ba182df01b54f Loading...

	tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/window_focus_fy2021.js	2.7 kB	2023-03-08	2024-04-15
Pretty URL tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/window_focus_fy2021.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2024-04-15 15:27:29 Times Seen2166 Hash 9ef158292b617d358506529b02c73629 843852d8addbf1a7f96c5607179e1c9423ed8a4c 3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5 Loading...

	cdn.crezu.net/landings/js/get_token_with_custom_prompt.js?rand=1670861485785	122 kB	2023-03-09	2023-03-13
Pretty URL cdn.crezu.net/landings/js/get_token_with_custom_prompt.js?rand=1670861485785 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:16:37 Last Seen2023-03-13 03:13:25 Times Seen1 Hash d4a20e6e449bbdb9d1f1ef14bf75e751 4b7f77695216a91e477df24a78173d934db78937 9bb5ae62de13926b26390223fba930aa19c3129ad1db43771ae9f12dc8aa609e Loading...

	analytics.tiktok.com/i18n/pixel/static/identify_87671.js	117 kB	2023-03-08	2023-12-01
Pretty URL analytics.tiktok.com/i18n/pixel/static/identify_87671.js IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-12-01 19:12:12 Times Seen8 Hash 2882420796825a8886ceecc7c4ed1a6c d9cba04c7337ba026b4a962b6e33f5f431fc68de 6efa775a864aba5b3b1bc9ce6335a617693c712d3a65633cbe6751fa1d291a9c Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-09	2023-03-09
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:51:48 Last Seen2023-03-09 12:06:29 Times Seen1 Hash fd95cfba1de59efb67a73aef5c03e3fd 20147051a03dbfcad50d7372b85e9ae20f411d04 737be8d2a2db4d729155190f62d3b1f656cdaec35b42b59eeeda3043246a50cd Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	91 B	2023-03-07	2023-12-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-12-09 21:56:02 Times Seen1361 Hash c82428a35f2157d1ffc58db62a62642c 23a3ba37c8219ada20ade938bf6ab027ddfaa32e c202f499070bf24f65287263b3c7fd4a221000ebc2e9a9eb1da84c48faf83f7a Loading...

	cdn.crezu.net/wp_js/dist/common.js	147 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2023-03-12 11:54:29 Times Seen1 Hash 4996f1a2917ba55aa9392eb02679a1d2 87a78fef6e52b0fae7cf09b2d73bfaca634547a6 cf2860efcfb8a10f8ff538ba2557fe0ed7afd18a14c4539a2a788305734d141c Loading...

	crezu.vn/	363 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash ab94b81668bd457bc93cf53a0fff406b debb07e523ba9075657861d504bd339dbfef9bf3 21e18622ddb4baf73de4d3df46982f34c47286f72d60d7d85bed33a7b3722a6f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MB47FWT	135 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MB47FWT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash 4a896a0498cd7fafee6cd2cf0b4f6d02 3caaa7869ba2ad9491b171ce81dcd4a3f02188cf ce2f7f631ef62d7d028dc5887fa36b80ef33c68f7a3058227635f586c2583dbd Loading...

	crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-19
Pretty URL crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 20:39:51 Times Seen68499 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq	3.3 kB	2023-03-09	2023-03-09
Pretty URL analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash 58d0ccb13c6aeffcc1783c283a71b8b4 26cd079646b623b6b30db45a24ab7a6ad4537308 9ade34d00baf8f6348776275e4820bae0790bdbed6f47855ca2f32072485fbb9 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274	148 kB	2023-03-09	2023-03-09
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274 IP 216.58.211.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash 322bad9f586868787a1f11bca05598ab fca561b5d5d6498e8f7cf0762ad5e225b44fa0c8 bdc899a3ba6e38156d46243c7eda12aa6c0d2c65456a81c42925991ce59308a2 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	15 kB	2023-03-08	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:28:19 Last Seen2023-03-12 14:34:18 Times Seen1 Hash 85e92f4084f9fa57dfd6b5b26e49499a 9b84d334905125230377fee950044cccd8abc270 be4e3ad8822675e2a09180009e51645190657750dff1341913eb004cea39fe38 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	435 B	2023-03-09	2023-03-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash fc3b9f277556e65b136aacb29b747401 e09bcb450e13604dded5d73313fe1c97a43814b6 47eed70ed9530284b6544044ee24e60e5ef3707b1634f114db464bdf7365f07b Loading...

	www.googleoptimize.com/optimize.js?id=OPT-W6HX45D	122 kB	2023-03-09	2023-03-09
Pretty URL www.googleoptimize.com/optimize.js?id=OPT-W6HX45D IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash fc1ac720f7a01e08641c4d77ec49a680 bdfa99cac000577a5f4fe9cc0032b588fe01be49 48da5348bb36764cd31b31b5d8d156ca7cc9155f4faedcb7b90762cf7a54f6f0 Loading...

	crezu.vn/	59 B	2023-03-08	2024-01-08
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2024-01-08 11:01:20 Times Seen16 Hash 75c3ddaba57b6cdcc4f3738bc2de6411 180e587d472ee9b5c30355ab0af2613fbab68dc7 5954b3d73de78c313ea5f4d20cf782ed407f6f037e2f248374231e8071edd131 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 216.239.38.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 19:03:21 Times Seen1521 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1	383 B	2023-03-09	2023-03-09
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1 IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash 5f7b019caa44c0b8fe5cc90ef31ddff9 7db637fc98aa5b3dc9cee25362a9f5ee745aecd3 54a3b4584d6a9e5b77432b3f0096d4c7edcafcdf4d4beb4f22ef1f801671058d Loading...

	adservice.google.no/adsid/integrator.js?domain=crezu.vn	107 B	2023-03-07	2024-02-03
Pretty URL adservice.google.no/adsid/integrator.js?domain=crezu.vn IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-02-03 18:43:04 Times Seen27539 Hash d9c47f48660b656705d0ff86fc850de8 bceb9478f69cdfc2eb87ae6b80e95dbaac8b6769 a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	29 B	2023-03-08	2023-03-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:17 Last Seen2023-03-09 04:41:46 Times Seen1 Hash e1236ba0b449798bb4177d234608ad86 abe35544764dd37ffbb60fdd388556fb8cba8b34 8f0605eda0e66fa0bc00e0ad2fdeb3104afc2244464771f1ad7ecb813fe0f70f Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	18 B	2023-03-07	2023-12-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2023-12-10 23:37:06 Times Seen1996 Hash 364903be35e41b2e14a841071c35f191 58dcb22af21e5f7fd6e5bef578eb1b9a7ddd34a5 b29dd4c3347306fe999d36cab04ed9a9ef863d885d11c86ebbb571802f25ff59 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	3.9 kB	2023-03-08	2023-03-14
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-03-14 13:23:12 Times Seen1 Hash 41ec6b317ecd4bdb0aeacccea220cac2 25a6ed1d4ac4326e30516064b9f1b7d44c8c8613 70f25c4a1351285f5616eed749cd7297e937608a6b3494448ab69f31634be2e9 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396	775 B	2023-03-09	2023-03-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash f703a6634e0b7a441b56a5a9b4aacc30 3868d85089d35bc340381c73dcaeb022095a34da ce4fc7bf46345c85cb2fbe7a5194c18fa6a2b0ea98f05a1c75acd8c2f5733e3a Loading...

	www.gstatic.com/mysidia/5abbe811e7745ada511aeaa994a13f9f.js?tag=mysidia_one_click_handler_one_afma_2019	35 kB	2023-03-08	2023-03-12
Pretty URL www.gstatic.com/mysidia/5abbe811e7745ada511aeaa994a13f9f.js?tag=mysidia_one_click_handler_one_afma_2019 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:14:35 Last Seen2023-03-12 14:18:07 Times Seen1 Hash 5abbe811e7745ada511aeaa994a13f9f e082f89443e76371ca79c2ca420160093a7d05d6 6b23e94a0591e43f749074a39df5a5e700d5bd6c40d1b8016a1a2e44a3176037 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 87a47565be4714701a8bc2354cbaea36	2 B	2023-03-07	2023-09-29
Pretty Observations First Seen2023-03-07 17:52:42 Last Seen2023-09-29 08:38:56 Times Seen294 Hash 87a47565be4714701a8bc2354cbaea36 0f4d56d1e20778bf2e1052ecb3219509238fb660 24349c8054862cb8cbd4d857d096943e21434041ea744799074e2e28e753c14c Loading...

	#2 Eval - 25ec916d56b8212e569dbf2e4e4b51d4	2 B	2023-03-08	2024-03-19
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-03-19 02:39:23 Times Seen15 Hash 25ec916d56b8212e569dbf2e4e4b51d4 80d305c58f97edfae92a3627f5a66d9bef4d8d46 c8f48a68649d1cae147fb8afd54801e3e82622465c98ff1ee29075da2c201d78 Loading...

	#3 Eval - 2eb4e0d2a71b19b7e47378c99d4f2ee5	100 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 2eb4e0d2a71b19b7e47378c99d4f2ee5 d1b3d733ff092eb0c04aad9ff4614d5ab383e8af 763d575e264d2660d81f83b9dbe3e8ffd4bd1cff0188c3423e463e4a363894a3 Loading...

	#4 Eval - 7f00ac8c93b5754d55fedbcde61f2f14	216 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 7f00ac8c93b5754d55fedbcde61f2f14 691ad95303213905b8d6ede569a243d5e824ed03 0b4a98cb05e35be9ee04496c92ba0af61555a7f5e863f80d554fa167bd9a4fd4 Loading...

	#5 Eval - f9307fb3de425a9c8904df8099db21b2	31 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash f9307fb3de425a9c8904df8099db21b2 f596838b5f50ffceefb9cd9e69d7841655e13825 f8638cf403131b54e23e2b09c19814edcdfb114c42cd62032f96d7782a2b5a2a Loading...

	#6 Eval - ee6d621e21b81e443fe70914f972143d	31 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash ee6d621e21b81e443fe70914f972143d 191ff36fbd5fedf89963033f4786b6d88ed93f02 d85321049425322b68dfd8d5b89d83eb4a8b8eade4e57310aff1705608c8e632 Loading...

	#7 Eval - 16e8bc967d7a534f2c6266e2777b519e	77 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 16e8bc967d7a534f2c6266e2777b519e 98cae512b60ae37ebb2565e778784cb5335eb6f0 9a832e9d4c19eb569cd9031b83e9ca148a89c2d88d234a6bd6af005d6bc92ccd Loading...

	#8 Eval - 0c5678c66e7742cdfeaa325bf2a2bdf7	79 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 0c5678c66e7742cdfeaa325bf2a2bdf7 b05ad47c0357e98301782557d2f99825eebcca52 d1f3a2dad0444b5121433939d93e88dd5f706c4864bd3a6182627e8189fc36ed Loading...

	#9 Eval - 1c4176eb812faed22c5821ed53823336	2 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 1c4176eb812faed22c5821ed53823336 3e6fb38cc8a13f1359647e788a330d4a3dc2b6b8 d8f5a4e22eab4d17babacec1aeba331ebe2eae98344d73213f79cebd2d4cb07f Loading...

	#10 Eval - c074bba1840d44dfa7d9738ddbc83e59	79 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash c074bba1840d44dfa7d9738ddbc83e59 341003009c03427e69f9a3ef953467453db6cf4d 2bf0e4efd925fd3e9d5b0ebe32b887db28ede52b39006056f173c92e78f88194 Loading...

	#11 Eval - fa7c40355d3f80a41039340d0f9edf12	41 kB	2023-03-09	2023-03-09
Pretty Observations First Seen2023-03-09 04:41:46 Last Seen2023-03-09 04:41:46 Times Seen1 Hash fa7c40355d3f80a41039340d0f9edf12 145d877248700089c82381ea9448ead9bd212509 96b71e85575221b203e22ef13accb5d7137427b194b155cb92ef97d6814648bd Loading...

	#12 Eval - 4efc6436bf7fb6078171376735b85588	2 B	2023-03-08	2023-11-28
Pretty Observations First Seen2023-03-08 05:58:52 Last Seen2023-11-28 21:13:40 Times Seen106 Hash 4efc6436bf7fb6078171376735b85588 afe1b0e14f0fb9704af1bf8bb80899028773c93d 3c446a7acea9dcccc99fa1ad613808b2980d3b091867c91c49c4784e71549354 Loading...

	#13 Eval - 71805d10b9ea2a56437652aba0daf9bf	2 B	2023-03-08	2024-04-16
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-04-16 08:18:41 Times Seen81 Hash 71805d10b9ea2a56437652aba0daf9bf aec1474bc15922092bdcc0fe6a22b0993dc9fddf cb0f6349d7f4b961d8b4c8deb6f4744d68bdc98d27283aefd7b40869c9d0c2fe Loading...

	#14 Eval - 083d5545c464f4155420ea811429e099	255 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 083d5545c464f4155420ea811429e099 7d088922180968a1601a986b78186dfc34bcb126 a564cfc2295da0bcab0c0001ec76cd2cb28e6b380a5dcca7fa57a0ad5eac3553 Loading...

	#15 Eval - b5dafc726433e35f61f2e867156e7974	141 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash b5dafc726433e35f61f2e867156e7974 443203e95c150209379ff7cd1e38cdb67175a7c3 f2441d8e6a831705e24d0c2d8adcf4d3342fd23bedd80dd4cdd1801c6101820c Loading...

	#16 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 21:06:52 Times Seen54205 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#17 Eval - d2deb2d6394b37882e2aad3749beaf28	356 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash d2deb2d6394b37882e2aad3749beaf28 759f077956bdadec597eddc78400e9bec27adeef 9329b73d7b7ddd03ee2c839e44496af6a5d829ef18fe239bacb0e62c2f6deacc Loading...

	#18 Eval - c98ba01b37e8ed5ca95b042f3259e5be	115 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash c98ba01b37e8ed5ca95b042f3259e5be 2bc278dd82e3372b80cf7fdb339f79b8d5343383 b1a91d9270591a5d486b8467d368c68e37338f82e3a3063db1c7c74e48598731 Loading...

	#19 Eval - 4fe636bb1d28e4c42a955539aaef8e60	2 B	2023-03-07	2024-04-12
Pretty Observations First Seen2023-03-07 01:27:27 Last Seen2024-04-12 08:21:00 Times Seen36 Hash 4fe636bb1d28e4c42a955539aaef8e60 5591fb428144acf6c59d1ed3fca314271e5c31a6 0c089c69e96fb2c8e9ee984e8123a703772e55d9178db1343b3e34cf7b1652cc Loading...

	#20 Eval - 1f14e172264a5a365c323283baf675f8	53 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 1f14e172264a5a365c323283baf675f8 e9c4889089f6a19208480f2de5507e2776560657 f4addbf368eafb5eab48318ab450366d4fe099778ff13435fd5ff05eb19a5de3 Loading...

	#21 Eval - 5154ddb90b2d3fefe5dacf0397bb63bf	31 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 5154ddb90b2d3fefe5dacf0397bb63bf b1cb46d3074b1da4bef47fefd31ee7ccc3110500 a9028710b7006d32a5504fa4ae9da274a360d5c74871a256a0af10099235e389 Loading...

	#22 Eval - 626a147558b612b9636706158d266642	78 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 626a147558b612b9636706158d266642 2113eca7ba8b39766e1fbc6389fb190db2ad7c79 c12e3c737c59fc61203a4c566624ae61085b0c71490cc6e800d552a876402473 Loading...

	#23 Eval - 2f41f4ef8979ab3953a20db62d77b5da	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 2f41f4ef8979ab3953a20db62d77b5da ddbffee2cd05f39732a031b8b5479b95f1e46796 cff9259f6da44140ce14576ca46634b13d87cdc9cbe8c63d1444f6ecf69b5921 Loading...

	#24 Eval - 1d4095257d5e37a3bdfbf7d267a6cd08	79 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:13 Times Seen1 Hash 1d4095257d5e37a3bdfbf7d267a6cd08 8a3f11a723d02cbd99209e2ff6dec8408f5917af f51d568c66aaed844efd88697a7ec5478e2ce8789553487dcc10093ff501e6e1 Loading...

	#25 Eval - 77233940214cd6138c81bc8eb19853c5	133 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 77233940214cd6138c81bc8eb19853c5 d230b28d18f2898b030fa5ae8f1ee9592aca520f a03f87afd64f5427efe3175c9566a924fb787c9bc16cba2d6b4fc168e09a899c Loading...

	#26 Eval - c02fbe7cc8e67411dbadd81fcf935e8e	529 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash c02fbe7cc8e67411dbadd81fcf935e8e 0d31a50890d46debcace77647e96f70a15c5bb92 b787f63da2b2bcd8a55ab0d60e64aea4245bf24f5da937de68a713a7eede7687 Loading...

	#27 Eval - 97630d950aa3ef2132577dc4cf71a1c1	209 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 97630d950aa3ef2132577dc4cf71a1c1 ceae18b27a869d5e517958fada09dfe6dd5bf3d2 7d0e3d5929f4d637c148cfb889f943d0dec353f04d1997c6472ef586e00076e3 Loading...

	#28 Eval - 68308c54b2669f0acce12671bbd5f775	291 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 68308c54b2669f0acce12671bbd5f775 cb745c34e88c9b95455b530bc22f43db04f78864 5af6c7c4f4f179c0e1aee1832fd44a83a0ace2eef7ab06e623ca345f69bd639c Loading...

	#29 Eval - ac2e849c337a0f5ed74558ec110132c0	77 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash ac2e849c337a0f5ed74558ec110132c0 d089bcc25fa40d9ec784901f3eea3dc64e308512 f1d3e7c6103637ee7c73b495d1464eee3c5b289dec8a570743e32461e81e480e Loading...

	#30 Eval - 56eed2048d4b6d6496abd68715a0cb24	76 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 56eed2048d4b6d6496abd68715a0cb24 006f4a8b0176fe83aa50dbc2fa77a7f21bf0443d 1eb672e6e101a793c82797ef568253a24b93482292fc6c519f5f8430e3144915 Loading...

	#31 Eval - 85a94610378e7e237cc730d80a5f03a6	166 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 85a94610378e7e237cc730d80a5f03a6 c4b07a5fe3a8100d459b539cfbb6011ea2697f70 ecc8484b6ec20e0ce46bbb4874d306234521b718e08fabf539c587291ab20699 Loading...

	#32 Eval - 481a8b720121e14b5142b36a310f4b0c	75 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 481a8b720121e14b5142b36a310f4b0c ebba326a0def6e6ffa85bf0aae09129c3a142c8e 02455c6dd393a294106a782e1901c0aea2ca3a8446f29151b026e0483987f8f9 Loading...

	#33 Eval - 92c9e795a52d293a526e35a5f5b0e46e	47 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 92c9e795a52d293a526e35a5f5b0e46e af8e6839fa45126544d38f594094efc86d63fb14 bc133ede97756221ae8911f5ed6ec6624a8fad2efea763b1414e091cb5b27d5f Loading...

	#34 Eval - 8bcc25c96aa5a71f7a76309077753e67	2 B	2023-03-07	2023-06-15
Pretty Observations First Seen2023-03-07 12:23:15 Last Seen2023-06-15 17:32:36 Times Seen2 Hash 8bcc25c96aa5a71f7a76309077753e67 f095160c09b366f6e7cf905fc1b6024f956231f6 632cd2fea71dcde005af4e07f14b8bc1f68b63d9c1b373dc6048fb87e90af22b Loading...

	#35 Eval - abe295e74fbc82f9450d6537bcfebbed	2 B	2023-03-07	2023-06-28
Pretty Observations First Seen2023-03-07 22:48:07 Last Seen2023-06-28 08:56:20 Times Seen151 Hash abe295e74fbc82f9450d6537bcfebbed 6f31beb67567c94a02c382a3172cd288883189ba c1581457554816bb9acd0212f6be8a7466be96f75846634bd5621ede5d7deed5 Loading...

	#36 Eval - 474e6c59d39ab2b9f9eb79ab75b9da90	2 B	2023-03-08	2024-03-04
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-03-04 13:09:43 Times Seen863 Hash 474e6c59d39ab2b9f9eb79ab75b9da90 ed3ecb50026ed6678c2461bc4c914ecbdbecb738 30dbca900d1617441c40eeee84d3ad783dc9d0b4a1d572ac5882806229791cf6 Loading...

	#37 Eval - 2db95e8e1a9267b7a1188556b2013b33	1 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:15:12 Last Seen2024-04-18 15:43:24 Times Seen10559 Hash 2db95e8e1a9267b7a1188556b2013b33 07c342be6e560e7f43842e2e21b774e61d85f047 acac86c0e609ca906f632b0e2dacccb2b77d22b0621f20ebece1a4835b93f6f0 Loading...

	#38 Eval - 3a3375c990df534f7edcbe160b379a6a	406 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 3a3375c990df534f7edcbe160b379a6a 4737d593407ad9b1550d57d80e08eeaa0418cdf3 bf922f62830791627ddace9408a34c0e023b3b00eee2920c005aca94badfb328 Loading...

	#39 Eval - 8a9dc886b54ceb7387c8c40273cd38ca	95 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 8a9dc886b54ceb7387c8c40273cd38ca 2ca5b1e999a1bd7c5290432b3995b25464f070ea f65f0bb25694a29f0a5ae83c4b47251ea00cf3cbe1dcb555b9c225f148f740ab Loading...

	#40 Eval - 987055457d7b10ee3d3ee0ab63189dff	118 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 987055457d7b10ee3d3ee0ab63189dff 6ba8405d9a832f5b7e1a6c9d2b081603caf7f6e8 d722fade6bf951931c7376b1ea55ad2b4fffd0c2459e97f23e71c3ef055260d4 Loading...

	#41 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 21:06:52 Times Seen52924 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#42 Eval - a5ead69fa75a835acb064aa1179cb815	135 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash a5ead69fa75a835acb064aa1179cb815 f4196c8b01fc84087d2d7a265da64b1fbbb381a1 da9490ff178cb4334561dc2ec2dc1367225466451910cb86679dcfcd94f7d809 Loading...

	#43 Eval - 6a7026b6354a0eab5d721970cdce909c	527 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 6a7026b6354a0eab5d721970cdce909c faaea0f7898cbcd9e7bc4a5b522507f3c83590aa 193b70d1e87b4acad166997e0401d5a85fb059be5fc3f06fa187d4bf6b99dca7 Loading...

	#44 Eval - 79ff3bb5540254b87b088afb74c772a1	2 B	2023-03-08	2023-12-30
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-12-30 17:54:42 Times Seen113 Hash 79ff3bb5540254b87b088afb74c772a1 f569c03276f60311f8a8fcab755fc6ea420da689 6171614c470b797aa286ccc4014a39dbe1baa04311f8e1729ea0b030b157f459 Loading...

	#45 Eval - 9c1aa762193738c2e9bc75da4e1c5191	72 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 9c1aa762193738c2e9bc75da4e1c5191 fa223b694a0bd8f2c0e3d5e9a9eb982a567a9dd8 fc87b127f47d782750518ff6e97fcfb0949da9a5e228b8e0c0c2cdb08ad41b18 Loading...

	#46 Eval - 85f77007a9e604394d9644ca16949ea3	131 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 85f77007a9e604394d9644ca16949ea3 62afc54ece0d00f56863baf5af99e264eef2f200 d197c8f5ff1a9997f6877478f67029e174d9eb8beff38afea9c3ed4c365911f0 Loading...

	#47 Eval - e24eec093f91ccfb0bfbf92fa539794e	70 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash e24eec093f91ccfb0bfbf92fa539794e f5871c7c06d57677e7e137d7e9f4e6a0e78dbefa e157a32d262dd9d09792c42b3441ce3eb2d11ca9955e7730c3dd9697b8ac7e1e Loading...

	#48 Eval - c9a0338b248a88dd1b4c8968614fa26e	415 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash c9a0338b248a88dd1b4c8968614fa26e 609d8ad19c40f33ca3ed64ad853a19e35864ec45 01cb992b815abc6aeadd7500c31179e25cc6ee3e4c289edd6e6f4b318fdb363d Loading...

	#49 Eval - be898e2f823f78c247fda9598e85bf38	165 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash be898e2f823f78c247fda9598e85bf38 bb4d87b1c68a52464e66c5a861eb0b173fef7806 7180da2abc994d2ec32de9668cdbda19e5da45348326b47e6a5858dd5f703436 Loading...

	#50 Eval - dfcf28d0734569a6a693bc8194de62bf	1 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-19 10:36:00 Times Seen8416 Hash dfcf28d0734569a6a693bc8194de62bf a36a6718f54524d846894fb04b5b885b4e43e63b 333e0a1e27815d0ceee55c473fe3dc93d56c63e3bee2b3b4aee8eed6d70191a3 Loading...

	#51 Eval - 7694f4a66316e53c8cdd9d9954bd611d	1 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:20:09 Last Seen2024-04-19 21:06:52 Times Seen10875 Hash 7694f4a66316e53c8cdd9d9954bd611d 22ea1c649c82946aa6e479e1ffd321e4a318b1b0 8e35c2cd3bf6641bdb0e2050b76932cbb2e6034a0ddacc1d9bea82a6ba57f7cf Loading...

	#52 Eval - 4b866d82665b3bcd1f03e8c651d06a09	128 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 4b866d82665b3bcd1f03e8c651d06a09 96f345b717f6dde0f34c57deca3e4d8de9e54c52 eb31097a40e9f4eea82063869e362049a176d90febd58d24e52570d3c509dbbf Loading...

	#53 Eval - 16ff8082e28339416baa7519a2f61dfc	71 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 16ff8082e28339416baa7519a2f61dfc 702a6f47e4528cdcacbacd4c04fb76a15238944e ff77b8969117b61fb6480bac6ef142fe015f7b53adc1fefb59a2b39ec7e5f506 Loading...

	#54 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 21:06:52 Times Seen52961 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#55 Eval - 8d9c307cb7f3c4a32822a51922d1ceaa	1 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 10:35:57 Times Seen8094 Hash 8d9c307cb7f3c4a32822a51922d1ceaa b51a60734da64be0e618bacbea2865a8a7dcd669 8ce86a6ae65d3692e7305e2c58ac62eebd97d3d943e093f577da25c36988246b Loading...

	#56 Eval - d8f9c224452ecb68eab1fcf40804a6ed	79 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash d8f9c224452ecb68eab1fcf40804a6ed 2b9b2137fb0cd4cc83418991512455528d7d764a 5259ebd3ef4b5c5275672dc6dcab0c4d671e6bb2cf9fffb28a97dd065951eab3 Loading...

	#57 Eval - 583eb722b77d6c7791d1811f6a42450c	2 B	2023-03-08	2024-02-13
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-02-13 15:47:23 Times Seen778 Hash 583eb722b77d6c7791d1811f6a42450c d5f10c9bc8370694a415ccbaabcb062e36948c5a fc74181ece96ac0d3a8d14da85058f9a336cab3ea77d797cfbb9fadcf49e86d0 Loading...

	#58 Eval - 8a037f133bb0e8c182fc57d57b715447	143 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 8a037f133bb0e8c182fc57d57b715447 bbe078f115b90e4fd0e38613d1480e7b6f7a7094 46435e36cef2e9bf652f9b20ad854f74fbbdd03dc71e088aeaf52fc29dc5bfe4 Loading...

	#59 Eval - cd241ed7a765abf9a51854586e4a6b93	557 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash cd241ed7a765abf9a51854586e4a6b93 54875ac3de269da4bf4be7429bd370a8368f62a2 e5259d064dc1c1f0630f461aeadc45637c3c84795bfe0c44cdc7a58fa4fb0ca2 Loading...

	#60 Eval - 9d07a947d9ce04208e4948d66e1e54e5	93 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 9d07a947d9ce04208e4948d66e1e54e5 422e5142e5eb903dfbd890e52436d4518b83d5e6 d647fcb4a8386bd05a52f7d1e11f09659a455a5b8a5e4903a09ce1e4b52b35fc Loading...

	#61 Eval - 30d5b99c654da853b920174227a214fc	82 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 30d5b99c654da853b920174227a214fc df1a886e5f0aa32d6e3efdc1b67dd1960d0a9c9e f29a9f09877d5eab4e39570c8e289b6f6a1a5ec1a9a9c86568e1f7f19619485d Loading...

	#62 Eval - 46fee00be7a15b602d4649aaec4f14be	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 46fee00be7a15b602d4649aaec4f14be 30d5c4b091875a3d8c27d267a307d62cffdd770b 2666ceb18e8d35cdb2f8cae3690645adf88c9d20b9e136d3a6c3a4eec9be74b2 Loading...

	#63 Eval - 8192c484afdb5fc21489ad746b9abf55	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 8192c484afdb5fc21489ad746b9abf55 857bfb6ec728ee920f068cc75d3269141959d857 1bb149a0fdcf12951f6262417b68e7e2753d61799afb8156ec2bc3bae419bc7f Loading...

	#64 Eval - f9eab7a52fbda6f4788f438ba1a8da94	2 B	2023-03-08	2024-01-30
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-01-30 08:57:22 Times Seen154 Hash f9eab7a52fbda6f4788f438ba1a8da94 7abc8b445c35d211046a856f946dde96a8b48bf8 b3c51f8a64fa28ac50ec1233d1178413cc04536d4ae21bb290ffc8d053074456 Loading...

	#65 Eval - f2323161ffee07a37f458ad9d8e1b42a	250 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash f2323161ffee07a37f458ad9d8e1b42a cd54b8bf2a56e8996af3a016bff66d39dd514018 f313f2b9e30edda5e63bcea9c5880580cf0219d5c7f0b3710829742ebd291eb0 Loading...

	#66 Eval - 6ec66e124fb93c190e9207b0b82f542a	2 B	2023-03-07	2024-02-13
Pretty Observations First Seen2023-03-07 12:23:19 Last Seen2024-02-13 07:52:21 Times Seen376 Hash 6ec66e124fb93c190e9207b0b82f542a 5efb4ac2212f109ebc889dc2a735f791dfc4119a 3d9fc4bde7ceef058d65b00186e79c1f14b42687b491644c303065135b644e18 Loading...

	#67 Eval - c663da401cf173784bd3d00ace1c30c9	321 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash c663da401cf173784bd3d00ace1c30c9 9bdddc3a1096ea04925679f9c3c38949b9237d0d 7f5d74cd3e4b01577558dfdc0fa57968dd377400f5788054b6dc4443147f306d Loading...

	#68 Eval - fa78929240bdae94cf899eaf3631df0e	140 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash fa78929240bdae94cf899eaf3631df0e d97b46a2ee74b2c11c0bda883911276cbd5e8e1b f1bc0396d5c7a0be469cc462d5a3ab737dbdf59b34757eae30a2c6a50545041c Loading...

	#69 Eval - b89fb5c484caf52fd686e263743f7f54	723 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash b89fb5c484caf52fd686e263743f7f54 7892121fad17f204f68b39c4e3fc471554c88339 112d702364dd979eb55299d5bf748cf9106702b9b55894677ed51094d85e7f23 Loading...

	#70 Eval - 9387ee7421635e3aab9001fad317dace	94 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 9387ee7421635e3aab9001fad317dace f1d16782213fa88a129ba124030b3c817063900e 22e52dc78594b95bd527f44b3f38a73dfd513cef5154e661ca21e46bef540555 Loading...

	#71 Eval - aca7d6df136cdb3bea789172e11bd7c4	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash aca7d6df136cdb3bea789172e11bd7c4 e3a9c4cae4746133ff8ef87e6e5837d92cbbeaaa 35a3f992447b5304a28b319bab35f4bf7914c68a9b00411d46e9cae803003874 Loading...

	#72 Eval - 1f1d6da9808f6906366e1a8f0aecb02e	154 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 1f1d6da9808f6906366e1a8f0aecb02e 17c704ec2388352df7e14c2755c3030c51217d68 1576dfbbae2c10213683672ff8f9beea79f92fd22a28f065598da173890fb1d3 Loading...

	#73 Eval - 415290769594460e2e485922904f345d	1 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:11:47 Last Seen2024-04-19 16:01:29 Times Seen9760 Hash 415290769594460e2e485922904f345d 95cb0bfd2977c761298d9624e4b4d4c72a39974a a1fce4363854ff888cff4b8e7875d600c2682390412a8cf79b37d0b11148b0fa Loading...

	#74 Eval - 1f941eafc9c151387b7839eda9c6dcc7	212 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 1f941eafc9c151387b7839eda9c6dcc7 02609c1957ba16cdc6db60c43600dda7cac01b82 38617756983621fd8159e51b9ba392f885a4805a25039f597648cc19dacca257 Loading...

	#75 Eval - 37eb0f5d21cf9b646fcc7fed33099672	138 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 37eb0f5d21cf9b646fcc7fed33099672 02e51531080e79eb2093e4089eef39cf9c18b6ad e81df36e20659d8a472054a437f305d4a075506d36ac0d235ba656d3c6be0888 Loading...

	#76 Eval - c1d9f50f86825a1a2302ec2449c17196	1 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:11:48 Last Seen2024-04-19 12:41:01 Times Seen8343 Hash c1d9f50f86825a1a2302ec2449c17196 7cf184f4c67ad58283ecb19349720b0cae756829 44bd7ae60f478fae1061e11a7739f4b94d1daf917982d33b6fc8a01a63f89c21 Loading...

	#77 Eval - eb547e1979a4a68b69a2c0a0849c848e	328 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash eb547e1979a4a68b69a2c0a0849c848e befd1037eb6c5190a651500f446bce646f52d63f c13d2eb98101c4a0e1523a144784e65d74da9405590ac5a9c98d26297f36abca Loading...

	#78 Eval - 5ab0471d172cb45eacd93ded7611cbf0	130 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 5ab0471d172cb45eacd93ded7611cbf0 a8e8f5209abcb18cbd84e0623c8fc097b9cb82c4 01cc9298337bf742061782ba446349092669c4e3491add233c877c41b4ab8aba Loading...

	#79 Eval - 5ce34759b9b46554064e2e2544b76187	214 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 5ce34759b9b46554064e2e2544b76187 170d49205ecb47855f571692dc83361649c84928 bcf1298eed87f800c444e6a7e403fcd1e2802ae8a99680a7bb8bd537117a8ee0 Loading...

	#80 Eval - 3c16b94e5b9ab2dc3358ef2d4751f5a5	66 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 3c16b94e5b9ab2dc3358ef2d4751f5a5 c83a73bc8d81c32d8bcb0ddbdea7bd41b253ba26 7005a1013362553efe87492ff5cf2a7bc856ac1677e4258e071565658a8d4dba Loading...

	#81 Eval - 0ac0dd65e82e143ab04d378a0133bf9e	2 B	2023-03-08	2024-04-15
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-04-15 15:27:27 Times Seen24 Hash 0ac0dd65e82e143ab04d378a0133bf9e 6fc823a7a2112f457790477915251a750c62eca3 fc7e9c0ba3b43a140aceeca91075b7c5fdfe7bdf09def12e521457d959370cb1 Loading...

	#82 Eval - 219de28d04a28434abf07f948a9c6b7f	274 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 219de28d04a28434abf07f948a9c6b7f 15f391bb90618af545a59dc9ab6606018360f4a8 ba9e66c7fc026f6bb7ac0c513ccefb9890b360a027b89a2ac1dff2c97780607e Loading...

	#83 Eval - 5b93c2da7b258caece71f19f661f19fd	330 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 5b93c2da7b258caece71f19f661f19fd d46ab01af57a490f545cf75ef5791dfed56e98d1 176be543419967232a00d57d5f3a8093617a2281de257924882c8c392b9c4e87 Loading...

	#84 Eval - 923db922542fbe09e7ff87bb31b2f310	2 B	2023-03-08	2024-04-15
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-04-15 15:27:28 Times Seen916 Hash 923db922542fbe09e7ff87bb31b2f310 aaeeecafb1a594ca179abb5eeb0eeb326b85a2a7 96d5c2e9349201e3a6adc06614678133de408b0314fe9742b9c2fb30db31add6 Loading...

	#85 Eval - 3c19e7bf79c0cad4f3592b075fc29c32	2 B	2023-03-08	2023-09-19
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-09-19 08:44:22 Times Seen115 Hash 3c19e7bf79c0cad4f3592b075fc29c32 838ec76bd683cc94ebe655ef04656e6bd273bb03 43f02fcda5eca7b6d0d9c9b1fe1b75dfb5fca6b667b8fc5be65efb1804ba93c6 Loading...

	#86 Eval - aa78371dd3139f1b78decc1153481029	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash aa78371dd3139f1b78decc1153481029 aa9a8e6c307f73143d69e53259fe53ea6ca2dcc4 117ebefcff04346cb5bbe262f10939ada9ad84af8dd3420270732059a36bf130 Loading...

	#87 Eval - 42a26b968d176776c61e0093cba9d314	2 B	2023-03-08	2024-03-05
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2024-03-05 23:41:49 Times Seen813 Hash 42a26b968d176776c61e0093cba9d314 08254b82e0c1bab21cbac04266ec05fa42c01ffb dc248255056595845ee176a9458e3b1626bd7840cfb94cd4913beebfb7932bf7 Loading...

	#88 Eval - 1a3972b084f77cfe66220d0c0c5561f9	96 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:13 Times Seen1 Hash 1a3972b084f77cfe66220d0c0c5561f9 7d1fd851187b172758314e62476cd87d393fbbba 418de3a13680073fcb3efedc8710b0938518effaacd0dc53c9824265cdcbfe4f Loading...

	#89 Eval - be2761781d6e727a2a220609bd56dcde	725 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash be2761781d6e727a2a220609bd56dcde 94a08f2766ba75cc34044bc123746e40deea06e9 7739b6e02de13d05cafbc2aeec5dc4c26f8d40e846ff2ee51e06fe2998750d94 Loading...

	#90 Eval - e440757435b66ed3077e4358903867c3	272 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash e440757435b66ed3077e4358903867c3 82c1d9495acf80c6fd4ed17b11fb337cb26e5c78 d4de03f9ddad3d2a5292296efc73f7358fbe309548071bab3523bc66005307d3 Loading...

	#91 Eval - 7944c26a406ca12f1f917116cdcc74a3	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 7944c26a406ca12f1f917116cdcc74a3 6a7d9a944fd636455006c5f90e6bec04137811fa d0f92c8f8e897c6a966e19048f7397f68fc31e78d11c890c156611eb7cc18d2b Loading...

	#92 Eval - a30d1d799512fc28422db8254cc8770f	255 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash a30d1d799512fc28422db8254cc8770f b853b278714f58ce4679a7e499a16ab6e7fd62f4 f23e4906d713af5e88afece71e0ce578fed9487481fc6ce2f70e7334bb5f6aa6 Loading...

	#93 Eval - f8a23514f972526e92679b3785d33ae1	89 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash f8a23514f972526e92679b3785d33ae1 7b1784d0f8c1e54d0561fba048ceaebd3800c7f4 b288a220ca48431cff79414a6e202dca10a03447627ae754e6356a9b303a0e5a Loading...

	#94 Eval - a362de1b3758d0e1618a318ba034920e	22 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash a362de1b3758d0e1618a318ba034920e 7f48357a82ca36dbfbab1e8d7841c85a9582b86c afb3cd1a04124893a1a9e64cdc3591761a7bdeafb759f6f2bd85e082292afdde Loading...

	#95 Eval - d4f481b59fab6ecb6bbecb226bab48c7	354 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash d4f481b59fab6ecb6bbecb226bab48c7 99264fe47a0c6cad8b87d858a97e4920e642f7bd e77371160c28da068c1daddd7eee2f882b4b6c1291a3051d23d9e01f0c7bd8e6 Loading...

	#96 Eval - 051e3b55117dd4e81a4ae19860a2cd26	2 B	2023-03-08	2023-11-04
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-11-04 03:32:07 Times Seen6 Hash 051e3b55117dd4e81a4ae19860a2cd26 96c2b633735be0ea89a5301e61957b0c1376c398 63a41c9d13a510122872993da51cdde1c69ee628fef540d83e8d9d8e61a74bd0 Loading...

	#97 Eval - ddee7da61cdd8e3aefea63782149c136	561 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash ddee7da61cdd8e3aefea63782149c136 dccdc7303a9b651c63912b8eae41ed9ba2b087b8 b6ab5ad75b0d849f2e5e3c8477efe5326c77da37bb3117b333d0efd840d60736 Loading...

	#98 Eval - 1d71b736bd9494f61817374f5095015b	464 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash 1d71b736bd9494f61817374f5095015b 4bbf9e9ae4f38bd6ce23b8ba1604ebc083c26dbf 6b82ddc59d8ef90397d39a25d5f6473795b0115e9edc00e28f51b6edae9e8a0b Loading...

	#99 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

	#100 Eval - c50ffbfcf1f9cf454057c5b386187c9d	51 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash c50ffbfcf1f9cf454057c5b386187c9d b939b76ff37bc55f87dab13542349b10afbb4f12 cead81dc8de8eca67b094d289cd292b2c7d6006ee3a6786d75089b69627e4c84 Loading...

	#101 Eval - fc99dfc08b126c323e0e40b81cd72b05	156 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash fc99dfc08b126c323e0e40b81cd72b05 6f1c6ebf4a2d7b98db01402d17524aa99d031da5 1811be105e52eae6efacabce37d2b61d32429e9df2955bcc458a69257874fa1c Loading...

	#102 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 15:25:57 Times Seen48551 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#103 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 21:06:52 Times Seen53217 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#104 Eval - 11a35b973649177d432e86de97b70c45	59 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:13 Times Seen1 Hash 11a35b973649177d432e86de97b70c45 6676b7ebdd5154d24b9abebcdb77f9b93e594fa3 cde959370a71912d80b29e81e6e79a1317a17fe7664a15d9430c0e74ee697017 Loading...

	#105 Eval - a8d34b6838393b55e63f616fb7c7d85e	252 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash a8d34b6838393b55e63f616fb7c7d85e 951dc6d0f48cd703ff8a30eb220713fedb765042 6397642823763622644f63797d9f017940aec04589701bf797efe39e3ec55467 Loading...

	#106 Eval - ae2ceda60db397ff5031547e2eb66122	132 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 21:58:54 Last Seen2023-03-12 18:56:14 Times Seen1 Hash ae2ceda60db397ff5031547e2eb66122 d625f251252969422c87a5703043197a0022ed52 92f822f2032a25631b3c64f1bb3625b2439863acb5fcc6ab9619ab4be29c8af3 Loading...

HTTP Transactions (118)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8598
Expires: Mon, 12 Dec 2022 18:34:38 GMT
Date: Mon, 12 Dec 2022 16:11:20 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3551
Expires: Mon, 12 Dec 2022 17:10:31 GMT
Date: Mon, 12 Dec 2022 16:11:20 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dbd022fec0a71226daaf29b7563a8896
c37d14dc7b3849a4bb815fa325fb5e70fae54039
22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB"
Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16079
Expires: Mon, 12 Dec 2022 20:39:20 GMT
Date: Mon, 12 Dec 2022 16:11:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 12 Dec 2022 16:08:37 GMT
content-type: application/json
age: 164
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: MfqVowtpMsjGjUd/syzoRnB6JpjMq3D7sUb1oobzrmAnrXQORsgTixJ4Mt/q3MTY7P1AB8U1Kxo=
x-amz-request-id: 0F3Z626KGYJ3PKRJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 12 Dec 2022 15:49:39 GMT
age: 1302
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 12 Dec 2022 16:11:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

crezu.vn/

35.229.199.189

301 Moved Permanently

178 B

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 12 Dec 2022 16:11:21 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://crezu.vn/
Referrer-Policy: no-referrer-when-downgrade
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 12 Dec 2022 15:33:17 GMT
age: 2284
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee19f96e42a0eca99d00c8d91f977c35
3bf8dbf8b8ce6ea7adadf7bb92cae2f9502fbee9
6d8adcb1494bfe2ca73cd6b77eb57b2d08e07b05eb892fea98a1fde0bfb2ea12

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3526
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:21 GMT
Last-Modified: Mon, 12 Dec 2022 15:12:35 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
1971380e672dbae4d376cb666d0f10f5
53d17be003ac7dc82557ce801706bb4b0198e390
085ae6ed8dfa7ed449522e9c3005bf8e2f0bed4e2abe25a9cfe976999b148667

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 12 Dec 2022 10:17:02 GMT
Expires: Mon, 19 Dec 2022 10:17:01 GMT
Etag: "53d17be003ac7dc82557ce801706bb4b0198e390"
Cache-Control: max-age=582939,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc459b4eb515-OSL

push.services.mozilla.com/

54.149.51.98

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.51.98:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bPTp5iemb3IVJ2pRiIsGWA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: m/3QjV2qtLuovNeVVzZXNgSfHtI=

crezu.vn/

35.229.199.189

200 OK

9.4 kB

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2768), with CRLF, LF line terminators
Size
9.4 kB (9381 bytes)
Hash
ab1d4429250eeb01bec1ee69d3f01439
7a39f0b42ac3537840d660905439775d0f9c4d09
5f4f6092eb1db690dc30121dd9c48837eb24872373d245b9ad93bb30baaef8cf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://crezu.vn/>; rel=shortlink
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleoptimize.com/optimize.js?id=OPT-W6HX45D

142.250.74.78

200 OK

47 kB

URL HTTP/2
www.googleoptimize.com/optimize.js?id=OPT-W6HX45D
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
47 kB (46743 bytes)
Hash
d4afe2504792e5c71fbb5476ae212a47
109d5739db74cea653fad646e133bb4a23872f7f
fe9b32c5bd89939074c00a478e817935226345825b472be5c07d59d72836c0c1

HTTP Headers

GET /optimize.js?id=OPT-W6HX45D HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Dec 2022 16:11:22 GMT
expires: Mon, 12 Dec 2022 16:11:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
858b6c164f76330e5504ce2ac811a85f
6c86b0c3907955a6ee85fb1fe74650c76f5cdadc
aba4b3840e2473f3c2c965662f56058a61ab593cd4602041e54272a270dff4f6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 03:40:18 GMT
Expires: Sun, 18 Dec 2022 03:40:17 GMT
Etag: "6c86b0c3907955a6ee85fb1fe74650c76f5cdadc"
Cache-Control: max-age=472734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc4a9a821c12-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
858b6c164f76330e5504ce2ac811a85f
6c86b0c3907955a6ee85fb1fe74650c76f5cdadc
aba4b3840e2473f3c2c965662f56058a61ab593cd4602041e54272a270dff4f6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 03:40:18 GMT
Expires: Sun, 18 Dec 2022 03:40:17 GMT
Etag: "6c86b0c3907955a6ee85fb1fe74650c76f5cdadc"
Cache-Control: max-age=472734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc4a9ed90b02-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
858b6c164f76330e5504ce2ac811a85f
6c86b0c3907955a6ee85fb1fe74650c76f5cdadc
aba4b3840e2473f3c2c965662f56058a61ab593cd4602041e54272a270dff4f6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 03:40:18 GMT
Expires: Sun, 18 Dec 2022 03:40:17 GMT
Etag: "6c86b0c3907955a6ee85fb1fe74650c76f5cdadc"
Cache-Control: max-age=472734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc4ab934b4eb-OSL

cdn.crezu.net/wp_js/dist/countries/vn.js

35.201.76.189

200 OK

1.1 kB

URL HTTP/2
cdn.crezu.net/wp_js/dist/countries/vn.js
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (2221), with no line terminators
Size
1.1 kB (1126 bytes)
Hash
fa6eb4545efbbb80b8d3490154e70060
04c3c337e4562631e0d8c697388dd463966aa931
1d7abb7ec549db7246d4e683e08b808ec9c4fe58fd6eb85c5477c6983bbbf5b1

HTTP Headers

GET /wp_js/dist/countries/vn.js HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 1126
date: Fri, 09 Dec 2022 20:11:40 GMT
expires: Fri, 16 Dec 2022 20:11:40 GMT
cache-control: max-age=604800,public
age: 244782
last-modified: Tue, 13 Sep 2022 13:04:07 GMT
etag: W/"63207fc7-905"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2

35.201.76.189

200 OK

22 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21592, version 1.0\012- data
Size
22 kB (21592 bytes)
Hash
d3e761b0f31f4426d434c1c149658c0f
26b413b6022045aca71e7d704fb328057aa367ce
1a184f7278e085eefeb8f573274e20d522bebf61fb47020103a8b1894a520fc4

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21592
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Fri, 09 Dec 2022 20:30:56 GMT
expires: Fri, 16 Dec 2022 20:30:56 GMT
cache-control: max-age=604800,public
age: 243626
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-5458"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/main-styles-v2.css

35.201.76.189

200 OK

6.2 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/main-styles-v2.css
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30674)
Size
6.2 kB (6158 bytes)
Hash
44893c35091827632f86deca53f6d995
96b19a76dc51fb71225eb57e230bae646c645148
96ef0f76da0c07358334c1ae4bab3b3890ad3708c16230efdf2717310eda86ef

HTTP Headers

GET /wp_styles/dist/main-styles-v2.css HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 6158
date: Fri, 09 Dec 2022 14:37:58 GMT
expires: Fri, 16 Dec 2022 14:37:58 GMT
cache-control: max-age=604800,public
age: 264804
last-modified: Mon, 03 May 2021 10:33:26 GMT
etag: W/"608fd176-77d3"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2

35.201.76.189

200 OK

21 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21412, version 1.0\012- data
Size
21 kB (21412 bytes)
Hash
382519586d60c7be70a094b4e31812da
aa3bab15388bf6a4f6c81fb55b8ed1b7bc990764
55f533905b01ab966780d976f024ffdfaf4ce43ac29144e0f16f8be140a65f05

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21412
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Fri, 09 Dec 2022 21:20:45 GMT
expires: Fri, 16 Dec 2022 21:20:45 GMT
cache-control: max-age=604800,public
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-53a4"
content-type: application/octet-stream
age: 240637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2

35.201.76.189

200 OK

22 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21720, version 1.0\012- data
Size
22 kB (21720 bytes)
Hash
f80fae0b587b789f7ff6d153eb6c9253
6facf7f293b0e4c9817c8c39ef206bda4998ceef
9fc022d568ea2d8ba6e55c4388fc8cf594fbdfbfbb47420ed1fbc1a1a9f9eff2

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21720
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Fri, 09 Dec 2022 21:20:21 GMT
expires: Fri, 16 Dec 2022 21:20:21 GMT
cache-control: max-age=604800,public
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-54d8"
content-type: application/octet-stream
age: 240661
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/page-index-v2.css

35.201.76.189

200 OK

5.1 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/page-index-v2.css
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (24326)
Size
5.1 kB (5138 bytes)
Hash
d28020c27996b89c4d00115e91a53b63
8d4b06d3fdf484a9b60e47f494abba7b2e74c3bf
2ef68a919a967578c3a7c09b54768a215c0070446c3cd26fa8dd7dad60475f47

HTTP Headers

GET /wp_styles/dist/page-index-v2.css HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 5138
date: Fri, 09 Dec 2022 21:04:43 GMT
expires: Fri, 16 Dec 2022 21:04:43 GMT
cache-control: max-age=604800,public
age: 241599
last-modified: Mon, 03 May 2021 08:11:19 GMT
etag: W/"608fb027-5f07"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
858b6c164f76330e5504ce2ac811a85f
6c86b0c3907955a6ee85fb1fe74650c76f5cdadc
aba4b3840e2473f3c2c965662f56058a61ab593cd4602041e54272a270dff4f6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 03:40:18 GMT
Expires: Sun, 18 Dec 2022 03:40:17 GMT
Etag: "6c86b0c3907955a6ee85fb1fe74650c76f5cdadc"
Cache-Control: max-age=472734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc4b4b831c12-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
858b6c164f76330e5504ce2ac811a85f
6c86b0c3907955a6ee85fb1fe74650c76f5cdadc
aba4b3840e2473f3c2c965662f56058a61ab593cd4602041e54272a270dff4f6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 03:40:18 GMT
Expires: Sun, 18 Dec 2022 03:40:17 GMT
Etag: "6c86b0c3907955a6ee85fb1fe74650c76f5cdadc"
Cache-Control: max-age=472734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc4a999cb515-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
858b6c164f76330e5504ce2ac811a85f
6c86b0c3907955a6ee85fb1fe74650c76f5cdadc
aba4b3840e2473f3c2c965662f56058a61ab593cd4602041e54272a270dff4f6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 03:40:18 GMT
Expires: Sun, 18 Dec 2022 03:40:17 GMT
Etag: "6c86b0c3907955a6ee85fb1fe74650c76f5cdadc"
Cache-Control: max-age=472734,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc4a9b49fac4-OSL

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11130
Expires: Mon, 12 Dec 2022 19:16:53 GMT
Date: Mon, 12 Dec 2022 16:11:23 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11130
Expires: Mon, 12 Dec 2022 19:16:53 GMT
Date: Mon, 12 Dec 2022 16:11:23 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11130
Expires: Mon, 12 Dec 2022 19:16:53 GMT
Date: Mon, 12 Dec 2022 16:11:23 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc582b370-f952-4f63-9937-1de61f295c46.jpeg

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc582b370-f952-4f63-9937-1de61f295c46.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5452 bytes)
Hash
24d5e5918cf53c569d6674e598228246
241a28d882355e06b0a2428c931f9d72dd5c6c53
2ebf30d1844d23a2b7516b900b1aa4473e5c042b0e0ecb2c39675d4b4bc7910e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc582b370-f952-4f63-9937-1de61f295c46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5452
x-amzn-requestid: eb6aca44-e834-4123-b191-eb3f007bf7b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6OCrGM-IAMFnxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393f6dd-71fee2de2dd69c7d1d4d32fe;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 03:02:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SQJoOlmklC9KQSsedNiaNHyhmvIUvHCg0IU1PfXcZba1LXU-7VmMjw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 02:35:07 GMT
age: 48976
etag: "241a28d882355e06b0a2428c931f9d72dd5c6c53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6438 bytes)
Hash
75dd1ecae61b991cd21929deb9244aac
4f14c9f7b36dfa356877251f1e6a0f5936286c4b
3435eda8961bb9954fcf5fd7c957ce58fd7aa4bb9e00525b8f42756adcf341e7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6438
x-amzn-requestid: 517b1627-9789-48e8-b5df-106fee878820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENaGN6IAMFoUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d88-28cbd126745e8ab15d937936;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: amWbF9zOStURk7mvKoCOs0babDMecP7hOWzf4Hrn8RGThFiqv-_elg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:59:55 GMT
etag: "4f14c9f7b36dfa356877251f1e6a0f5936286c4b"
content-type: image/jpeg
age: 65488
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5619 bytes)
Hash
9f8d3e3c9e5d2ed74c3894b4825fcc2f
6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da
9e44f93e65206ae7095cf9177296f4f528f1c2597cffa4853b7d6dcabf032796

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5619
x-amzn-requestid: df7189d2-5cad-43a2-9511-20c5de53f710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAEMPFCSIAMF4uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d81-729683c606fd6abc5bc70534;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kbfjvh64NjCUE-e-3z7W58vyJMisRwERUV_W99jn3vrErY4bF1SFsg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:59:55 GMT
etag: "6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da"
content-type: image/jpeg
age: 65488
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7919 bytes)
Hash
b1a13d12c326848d5b7adeb2562a35a5
d795c519ea637a213aab1d80daaf44ce5ad19069
f7b99c93b99268e1b2fa438d493cf23cd75a98833710ddd22b5278a76e9f019a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7919
x-amzn-requestid: c090b5fd-ff70-48a1-9c6b-256a0776cbfd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c59nPEILoAMFr_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393dc94-691a58a54b9f102b23b65c31;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 01:10:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H4M6KBFi0Rt1SsR3dAj1MdfUrQW0Su19fOX1pIPpO89wi97VMnrMXw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 14:43:33 GMT
age: 5270
etag: "d795c519ea637a213aab1d80daaf44ce5ad19069"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6311 bytes)
Hash
2020df3404a4b7c3e142af4a1330b848
2fe69b52fe03128e86550bf08474ecac82682384
37a52c158d5cfdf3589e19163cf446c02ce1466f444656080b02da82d2bcefae

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6311
x-amzn-requestid: 46ccaee0-bde8-4be6-9dc8-46e3ae356dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUYH10oAMF8Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc1b-2440251f06cb950a57489555;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UU3eyJXDqth6F65_913HL9lqA3qZHfGExAV89BRzHpQho5wZbQRTmw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:38:41 GMT
age: 66762
etag: "2fe69b52fe03128e86550bf08474ecac82682384"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4720 bytes)
Hash
38876d760ef06c8471468c474c1e28a7
d43cd03d5eb3e7618b6fb70c935010c2ac92ad32
a0747f29eb6084eef42d3c247594973b02c619c7ec56b6137e24b6d0362557a0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4720
x-amzn-requestid: dd990fe1-8447-403e-b276-40889af5baa0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENuF6SoAMF7oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d8a-59b5a8f92ef6111e64e16079;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kwweq9Tz-UmF0uP_LKgkPlXwvak8U55ZoBW37FyytkDV0peSujBf5Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 22:16:48 GMT
age: 64475
etag: "d43cd03d5eb3e7618b6fb70c935010c2ac92ad32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

crezu.vn/

35.229.199.189

200 OK

9.4 kB

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2768), with CRLF, LF line terminators
Size
9.4 kB (9381 bytes)
Hash
ab1d4429250eeb01bec1ee69d3f01439
7a39f0b42ac3537840d660905439775d0f9c4d09
5f4f6092eb1db690dc30121dd9c48837eb24872373d245b9ad93bb30baaef8cf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://crezu.vn/>; rel=shortlink
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2

35.201.76.189

200 OK

21 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21360, version 1.0\012- data
Size
21 kB (21360 bytes)
Hash
18ff681b6fd4b3645bd79be2e233db5d
3f442dca2316418bfe2bb03cd7381c11ddd8696b
8cb0daebe68af6edb17c8b3d6de089dadd6c650a1d35102b0b0d4b7f418f37e3

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21360
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Fri, 09 Dec 2022 20:11:13 GMT
expires: Fri, 16 Dec 2022 20:11:13 GMT
cache-control: max-age=604800,public
age: 244810
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-5370"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-MB47FWT

142.250.74.168

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MB47FWT
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (13165)
Size
48 kB (47702 bytes)
Hash
bc41e9e7261c5acd17b6841c924468df
30855058169f9d039585d56e2e03839918de8e26
057a4aff6acec774b6a73e747a2dc65d2e71899a0fb7b6762fb1598a71381a7b

HTTP Headers

GET /gtm.js?id=GTM-MB47FWT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Dec 2022 16:11:23 GMT
expires: Mon, 12 Dec 2022 16:11:23 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47702
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js

35.229.199.189

200 OK

4.2 kB

URL HTTP/1.1
crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:23 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Dec 2021 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61c931da-2bd8"
Expires: Tue, 12 Dec 2023 16:11:23 GMT
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

crezu.vn/wp-includes/js/jquery/jquery.min.js

35.229.199.189

200 OK

31 kB

URL HTTP/1.1
crezu.vn/wp-includes/js/jquery/jquery.min.js
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (65447)
Size
31 kB (30953 bytes)
Hash
7a6e4a1e4a67fac0cd39ca1dd1982f47
a8bf880e5db17a703293d5a3c92623a97d5a1df1
daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:23 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Dec 2021 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61c931da-15db1"
Expires: Tue, 12 Dec 2023 16:11:23 GMT
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

crezu.vn/wp-content/uploads/2020/06/i-features_5.svg

35.229.199.189

200 OK

2.1 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_5.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.1 kB (2091 bytes)
Hash
bb87b33ca35f41c025af5c28568b5293
91271fd2f7cf39772013a62ff57294ae50c3498b
556d27c8ea76b142dbd2881871326a1d2504b370354d736d28e3e901ec660e32

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_5.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 2091
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-82b"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_6.svg

35.229.199.189

200 OK

1.6 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_6.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.6 kB (1576 bytes)
Hash
02a5d0561bace2cb9fbe159805d962a1
cfa04978dfa4330e436bc77aa441df0ecba0d355
df24b2830508fce89942dab30f69a5ca4db4bbf58adc7cfd96988cb0170c2ee2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_6.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 1576
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-628"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-how_1.svg

35.229.199.189

200 OK

2.1 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-how_1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (500)
Size
2.1 kB (2104 bytes)
Hash
f75c29b79b644fe2af9e6c6f4277ea52
698c6f94140c75019494054efeecaafa4ac52e25
448c14ae3ea6ee580cfe55b026763ceae02797026af57430210ea1899a2c161d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-how_1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 2104
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-838"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1400 bytes)
Hash
1f436a8745e8fcd33484b6e755ea5b85
6181a1d4a415ec46e7de9c8250ce3b7eea060eec
09ec800b43246672c5acc434ef5791f67a6ed9d8a4f8fee4536648da58adda73

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-steps_2.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 1400
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-578"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg

35.229.199.189

200 OK

1.7 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.7 kB (1692 bytes)
Hash
e042f65fd5447503e8da0e4970b0c199
65bdcc0350f574fd5024f92b1ed424ffb56747cb
3297c5d4095385ee70fc545a8c779af6c24ca408234277aa48f1f72f04cb00bb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-steps_3.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 1692
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-69c"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg

35.229.199.189

200 OK

1.3 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1314), with no line terminators
Size
1.3 kB (1314 bytes)
Hash
2ceedc8d9a446e412dd95f395afcbf92
4eae61fae712c00dd9478ce2f695040048951b09
7252d50c41d5ac8cc02cb403d92af957aa866379b4868253fc5e18d95ec0ac3f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_1_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 1314
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-522"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq

23.36.79.17

200 OK

1.3 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (2824)
Size
1.3 kB (1275 bytes)
Hash
d77a5d12f8ea293af5ff24beec321276
fafa4e40080ef964a7e141df80bca5ddd19a6cd7
affed227aaba219f3a5446e1df345e83b7a7976f88cb700a56bff18f27cdef4e

HTTP Headers

GET /i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221212161124EDAB2A608E0E11765F0A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e653aec3ebbe2f88fb30104a3dfa66c85a5293107c6695b4faaa1241df04a947a1aec13d6f20575042c4a86f8d271e10c
content-encoding: gzip
expires: Mon, 12 Dec 2022 16:11:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 12 Dec 2022 16:11:24 GMT
content-length: 1275
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2IowwmSRX5evBEnARf3FbJZMWRt; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=0, origin; dur=98
x-origin-response-time: 98,23.36.79.13
x-akamai-request-id: 4bfcbcab
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMA.js

23.36.79.17

200 OK

62 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/main.MTRjZDliOGFlMA.js
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (25602)
Size
62 kB (62390 bytes)
Hash
46e419afe1d1eae8b3cc5879882fa98e
042f443a29546c4322266b2a3b30ca575a5c4811
f0afb51c6106aac41448e6e47d8287ce2a8aa871805b2cbb3fdee26d7e19dcf6

HTTP Headers

GET /i18n/pixel/static/main.MTRjZDliOGFlMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2IowwmSRX5evBEnARf3FbJZMWRt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221201150723ED924227A87E5FF9CE13
x-tt-trace-host: 01fab06eb892e489693f2d013b537b14c6ac6b3db49a7ad94a982cf2deb9586f77b6b87a497e52ea023ad71249767d7bc5be6f4f71e9dd38e20c74f6d048e77ccf225b8783d230e6360c1412e69163aa4f
content-encoding: gzip
content-length: 62390
date: Mon, 12 Dec 2022 16:11:24 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=16
x-akamai-request-id: 4bfcbe4c
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/static/identify_87671.js

23.36.79.17

200 OK

31 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/identify_87671.js
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30897 bytes)
Hash
3904a2d72a2f511d5c880e9ee1ecf51c
3d31bba82f4e6465d39158df7bf21aaf737c3383
0b9166ee15325fef2b2014ff8ea844cf5766b7605f566c274048152e8b1cd8f1

HTTP Headers

GET /i18n/pixel/static/identify_87671.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2IowwmSRX5evBEnARf3FbJZMWRt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221025132316F80FA7E63D4578714882
x-tt-trace-host: 015720010e4cdc282df4fc80cf78bd2dddb7690c595eb6de72e640e5719fc1783fa3a117acf8783861c9b1a0e011382f534f2e840e795a57845c7147ea27ce830a72cd5dec7a946e64d3ac2f92a831f887
content-encoding: gzip
content-length: 30897
date: Mon, 12 Dec 2022 16:11:24 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=14
x-akamai-request-id: 4bfcbf72
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/reasons-bg-1.jpg

35.229.199.189

200 OK

26 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/reasons-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1059, components 3\012- data
Size
26 kB (25669 bytes)
Hash
02e092c5f202def3e9eac031f95eb48c
3b4237e861aa593c0ee3aa82fbf8e4288cdf5d20
f09ef1cc5d6a8adf77b56ca0eaecabf79f203c54adc4b819dfcb80da9b3f66c1

HTTP Headers

GET /wp-content/uploads/2020/06/reasons-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/jpeg
Content-Length: 25669
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-6445"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg

35.229.199.189

200 OK

767 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (767), with no line terminators
Size
767 B (767 bytes)
Hash
e84efaf1719ad77956be01b392c948e3
fc12e82a6069109935195405bf14ca2647b24ea4
f8855091b86157e3031ff7bd83de79774c39b544a03621a3f0d6c5089e853265

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_2_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 767
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-2ff"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg

35.229.199.189

200 OK

995 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (995), with no line terminators
Size
995 B (995 bytes)
Hash
ab691b37694e88569c740e756f749d72
ce7eef7b93d2bd1459f110d1f92ac002c725f5d6
1815baca451359a96a497960c7b683c884a2d98c489a859987c4d2ddc31bb34c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_3_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 995
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3e3"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg

35.229.199.189

200 OK

994 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (994), with no line terminators
Size
994 B (994 bytes)
Hash
3bccec9e980fc058bd34ad9d72146f52
fd2c93ec15dcae241151f92b7d8afd9c045850c0
887c1087b8f1844eac159251d9c0e7c54ebafbd9c407d4aa24020984de4f362c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_4_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/svg+xml
Content-Length: 994
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3e2"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

analytics.tiktok.com/api/v2/pixel

23.36.79.17

200 OK

0 B

URL HTTP/2
analytics.tiktok.com/api/v2/pixel
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 750
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2IowwmSRX5evBEnARf3FbJZMWRt
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221212161124577437ABA9F7C07B6A93
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e3948cb893d3bdcee6a29951aa4fdaf0b565b71034f1873254503841bfe23942b8b26ddb4530ac367c41d1c531f61fd6c
expires: Mon, 12 Dec 2022 16:11:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 12 Dec 2022 16:11:25 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=29, cdn-cache; desc=MISS, edge; dur=5, origin; dur=124
x-origin-response-time: 124,23.36.79.13
x-akamai-request-id: 4bfcbfbe
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg

35.229.199.189

200 OK

975 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (975), with no line terminators
Size
975 B (975 bytes)
Hash
bb83a1cd720bdb334469307133a7c6bf
27cd0a030624bd9790a934fd98380765a81bef27
2f4f475af323531d07b7958d4a950b6ba3e0d9170e0a393fee5d015ff994ddde

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_5_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/svg+xml
Content-Length: 975
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3cf"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_1.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (367)
Size
1.4 kB (1424 bytes)
Hash
5f0bf761d06057761739358144a3c0d9
01f9f1e78b84343006bef643c7a4a96d9f5fa963
683aceecf2c98c3ddf5df73629c3b27699acfefd45f52a1a58875fae80814706

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/svg+xml
Content-Length: 1424
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-590"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_2.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_2.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1410 bytes)
Hash
53e16b555f8b956692b40d76c66e179c
cea0cab68c42103c3b04b697f70bc14fbce3976f
3e322656801f28d9037a8f4613f3e2bfe86186abaa310143da7c8c670e113d9a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_2.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/svg+xml
Content-Length: 1410
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-582"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_3.svg

35.229.199.189

200 OK

2.0 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_3.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.0 kB (1976 bytes)
Hash
9a9742f9fd057c843613de86028e512a
81af2a20b90ee584caff1c35e88c93f4f7376f49
129e11347ab8ac7dc247b07c215697493cfa5d4c12330f27a45dd647d5197f2c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_3.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/svg+xml
Content-Length: 1976
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-7b8"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/main-bg-1.jpg

35.229.199.189

200 OK

78 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/main-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1059, components 3\012- data
Size
78 kB (78316 bytes)
Hash
63e47dec6ec30bbb7b60fdd2f7a4a072
a5a83dbf7cd9ff7702b6a917857df5c34357dabd
efedacc636328d2abf34a81397bd7479678c36c4fd81d561b7bd1874d4d2a394

HTTP Headers

GET /wp-content/uploads/2020/06/main-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/jpeg
Content-Length: 78316
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-131ec"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_4.svg

35.229.199.189

200 OK

1.6 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_4.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.6 kB (1573 bytes)
Hash
0b753860c91d42902a7e79d0eb2c8feb
e692cbd0e87881e84bd8e1bed79ab864ccb1f566
178e8780c9215813a39e7d44c53391fe05afbe4662cc05cd1b963c7a502f2fce

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_4.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/svg+xml
Content-Length: 1573
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-625"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/p-testimonials-1.png

35.229.199.189

200 OK

44 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/p-testimonials-1.png
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 515 x 515, 4-bit colormap, non-interlaced\012- data
Size
44 kB (44384 bytes)
Hash
5129082012a1cdc5ece89f3e6188f836
20d34ebc2acd372d68666fa593734f6ddaaa0dc7
787a65143a1dce74ed95f22008c82c03c5a85ad6f70ab2383b1911adacbb4f58

HTTP Headers

GET /wp-content/uploads/2020/06/p-testimonials-1.png HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:24 GMT
Content-Type: image/png
Content-Length: 44384
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-ad60"
Expires: Tue, 12 Dec 2023 16:11:24 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3a1942bd2fc7c60d1cfffd1b72f202c1
2b95e8b0f97322d14ba4797016bf34314795771f
219bdf287c5cd0a9141d291c0d07db3831f095f2be854cbfe654ac57f2b7e49e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4680
Cache-Control: max-age=95133
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:25 GMT
Etag: "63961102-1d7"
Expires: Tue, 13 Dec 2022 18:36:58 GMT
Last-Modified: Sun, 11 Dec 2022 17:18:58 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

216.239.38.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.38.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 12 Dec 2022 15:34:02 GMT
expires: Mon, 12 Dec 2022 17:34:02 GMT
cache-control: public, max-age=7200
age: 2243
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c797045ce2453615ff57e1749364ccd
30192a4c14e94cdb789832ead604861432296e2e
96867aa0b5bea168df793e580b71dcf005c1afb5786780230b8aadfc4bf6648c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27317 bytes)
Hash
ef019950fc6b50e9529e8b155a12106c
6afb749a3540fc752cf127ca7e517510098a4391
0b602212719a764b2b81f0253f2cec7e8470aae35eb22e95b5e9069b9e6706e8

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: JOTyv+5Jy8Bh+VxmtWvvvprs9pWLKhx0o5xG8TcB3E9jiPvh1T+327KBY90fwkvayYc4urz6epEf19C1qNFf6Q==
priority: u=3,i
content-length: 27317
x-fb-trip-id: 1904183273
date: Mon, 12 Dec 2022 16:11:25 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3a1942bd2fc7c60d1cfffd1b72f202c1
2b95e8b0f97322d14ba4797016bf34314795771f
219bdf287c5cd0a9141d291c0d07db3831f095f2be854cbfe654ac57f2b7e49e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4680
Cache-Control: max-age=95133
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:25 GMT
Etag: "63961102-1d7"
Expires: Tue, 13 Dec 2022 18:36:58 GMT
Last-Modified: Sun, 11 Dec 2022 17:18:58 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274

216.58.211.2

200 OK

50 kB

URL HTTP/2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4885)
Size
50 kB (49631 bytes)
Hash
4c3242d46e747fb0b1c08eae60370504
7ab210197afabe881a21bd89b8da481bb3319108
c1355f30a5625470454198059e1193f9cc24882c603cae5310ec32498e7a1562

HTTP Headers

GET /pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 12 Dec 2022 16:11:25 GMT
expires: Mon, 12 Dec 2022 16:11:25 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 12984733321695528943
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49631
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c797045ce2453615ff57e1749364ccd
30192a4c14e94cdb789832ead604861432296e2e
96867aa0b5bea168df793e580b71dcf005c1afb5786780230b8aadfc4bf6648c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

crezu.vn/wp-content/uploads/2020/06/favicon.ico

35.229.199.189

200 OK

1.2 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/favicon.ico
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
3c8ab0dad807a7a2e7b8222c08070f94
c7123a2cd64c91d5542b920d5abb3ddb0aa12402
7ab970a4b7b0d077f91ec990046d5610af466b333c6a8ee5a72018b2f79011c0

HTTP Headers

GET /wp-content/uploads/2020/06/favicon.ico HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F; rsns_cnt_1=811269; rsns_cnt_2=1634; _tt_enable_cookie=1; _ttp=905bfe69-2871-4e27-a54b-b6a4bd4f2cff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-47e"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&gjid=1223100865&_gid=2126238558.1670861484&_u=YEBAAEAAAAAAACABI~&z=1526744368

108.177.14.157

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&gjid=1223100865&_gid=2126238558.1670861484&_u=YEBAAEAAAAAAACABI~&z=1526744368
IP
108.177.14.157:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&gjid=1223100865&_gid=2126238558.1670861484&_u=YEBAAEAAAAAAACABI~&z=1526744368 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://crezu.vn
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Dec 2022 16:11:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/cta-bg-1.jpg

35.229.199.189

200 OK

46 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/cta-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x769, components 3\012- data
Size
46 kB (46358 bytes)
Hash
2aecb34c19abfc82857e24a295304c34
be5c553d479b94d326d289586a059d2c44cd2927
172e470842d47668241da11a8e495b5fa3e5a3cb4c62b8cc9b794b3f52d3828b

HTTP Headers

GET /wp-content/uploads/2020/06/cta-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-12%2016%3A11%3A22%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Dec 2022 16:11:25 GMT
Content-Type: image/jpeg
Content-Length: 46358
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-b516"
Expires: Tue, 12 Dec 2023 16:11:25 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b14162cab0131ca3a7e7c1c6d72c77f3
87a1ae365bc2a459c323770eb9632d28649b2b1b
759526e8274b5fa52e1a46496e286cc04466a27c41a8f20de6aee1b756feb87c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d34b599fbe827a037e3d3c887e8c7906
bb06f635d48f5c5f1c609ef48ea990dc1127bc22
262e9c266237839291275569f1d1eca231745d260fb711e2da55e9d5395a695f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&_u=YEBAAEAAAAAAACABI~&z=882073819

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&_u=YEBAAEAAAAAAACABI~&z=882073819
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&_u=YEBAAEAAAAAAACABI~&z=882073819 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 16:11:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a41c1c2a6aad29835a33369555bbe359
4e104748d3d8c3237d58e03b6f7493fcc9182142
a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&_u=YEBAAEAAAAAAACABI~&z=882073819

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&_u=YEBAAEAAAAAAACABI~&z=882073819
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1199819474.1670861484&jid=1336792638&_u=YEBAAEAAAAAAACABI~&z=882073819 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 16:11:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1

216.58.207.226

200 OK

250 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (383), with no line terminators
Size
250 B (250 bytes)
Hash
17823baa08c5a9897ad47f6507a91c93
f2cc8f486deea37d30848b4bac1d87048de2d5de
ce01d362f5c0e2a2f652399c2295806342113075e5099cdc958bc4fec48a7259

HTTP Headers

GET /gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 12 Dec 2022 16:11:26 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

adservice.google.no/adsid/integrator.js?domain=crezu.vn

142.250.74.130

200 OK

100 B

URL HTTP/2
adservice.google.no/adsid/integrator.js?domain=crezu.vn
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=crezu.vn HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 12 Dec 2022 16:11:26 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

adservice.google.com/adsid/integrator.js?domain=crezu.vn

142.250.74.98

200 OK

100 B

URL HTTP/2
adservice.google.com/adsid/integrator.js?domain=crezu.vn
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=crezu.vn HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 12 Dec 2022 16:11:26 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a41c1c2a6aad29835a33369555bbe359
4e104748d3d8c3237d58e03b6f7493fcc9182142
a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d34b599fbe827a037e3d3c887e8c7906
bb06f635d48f5c5f1c609ef48ea990dc1127bc22
262e9c266237839291275569f1d1eca231745d260fb711e2da55e9d5395a695f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1670861484203&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670861484203.2033780306&it=1670861483821&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1670861484203&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670861484203.2033780306&it=1670861483821&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1670861484203&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670861484203.2033780306&it=1670861483821&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 12 Dec 2022 16:11:26 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6d462d3e6bc6168ee30040355f8b96ee
7578100cefe27a95fc25fa11481d78353185a9f0
7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6d462d3e6bc6168ee30040355f8b96ee
7578100cefe27a95fc25fa11481d78353185a9f0
7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0f3dad0d025c4b6b8abd5d698f00cfbd
3a82ecac8709c7acd620316502a0e774ac3b1170
8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fbfffb5fcbad3e6bde4b6213a2eacf5c
99eeb782b4fe7f7b7a28f2f73b32181641a0c83f
b9337d74bf95ad077f59921f673eb4a9023d1413630f367f8b8636a9e61b7959

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/mysidia/1eaa1e49c6d827e7897bafa951c60a71.js?tag=client_fast_engine_2019

142.250.74.99

200 OK

4.2 kB

URL HTTP/2
www.gstatic.com/mysidia/1eaa1e49c6d827e7897bafa951c60a71.js?tag=client_fast_engine_2019
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2316)
Size
4.2 kB (4197 bytes)
Hash
a408df81f5373342be86d63b0e4eebed
aa05184209c9e4aa1d26b1a877779a071afcb689
abaf67b0b6979d0c6c760985ee88660395b54becf10b3702e45eefc57c19c375

HTTP Headers

GET /mysidia/1eaa1e49c6d827e7897bafa951c60a71.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4197
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 22:10:09 GMT
expires: Sun, 05 Mar 2023 22:10:09 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 05 Dec 2022 20:45:21 GMT
content-type: text/javascript
age: 583277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fbfffb5fcbad3e6bde4b6213a2eacf5c
99eeb782b4fe7f7b7a28f2f73b32181641a0c83f
b9337d74bf95ad077f59921f673eb4a9023d1413630f367f8b8636a9e61b7959

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/mysidia/6200ddedc9583236b464cb8aa5d42a3e.js?tag=text/vanilla_highlight_ms

142.250.74.99

200 OK

4.6 kB

URL HTTP/2
www.gstatic.com/mysidia/6200ddedc9583236b464cb8aa5d42a3e.js?tag=text/vanilla_highlight_ms
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
C++ source, ASCII text, with very long lines (2147)
Size
4.6 kB (4601 bytes)
Hash
a5831d1236e849b94d767528bdd16910
bc713aea1387732ed288c5d9753be77ff99676a9
343f25e8118f369ca72f84638a4372c51dccb0ad0d014110aa0a220255b65fcc

HTTP Headers

GET /mysidia/6200ddedc9583236b464cb8aa5d42a3e.js?tag=text/vanilla_highlight_ms HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4601
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 22:34:37 GMT
expires: Sun, 05 Mar 2023 22:34:37 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 05 Dec 2022 20:45:21 GMT
content-type: text/javascript
age: 581809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tpc.googlesyndication.com/pagead/js/r20221206/r20110914/abg_lite_fy2021.js

172.217.21.161

200 OK

9.4 kB

URL HTTP/2
tpc.googlesyndication.com/pagead/js/r20221206/r20110914/abg_lite_fy2021.js
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1592)
Size
9.4 kB (9443 bytes)
Hash
5a5aa8d035ffaad9c0b8653b0a412d2f
f09fe4da7a3d328089a611e314d326aa5cb598f5
de6d29b666b737e039c2de5bedaf81dda437c47a79e17d0d10f188358916187a

HTTP Headers

GET /pagead/js/r20221206/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9443
x-xss-protection: 0
date: Sun, 11 Dec 2022 18:25:11 GMT
expires: Sun, 25 Dec 2022 18:25:11 GMT
cache-control: public, max-age=1209600
age: 78375
etag: 9828741834572772835
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js

172.217.21.161

200 OK

7.5 kB

URL HTTP/2
tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1542)
Size
7.5 kB (7480 bytes)
Hash
6f59900fa87e133bae329372aebefe36
260937d2934233c07b112f3564ec9eca7b529fd7
156c12ec7d6973b5742504716567b70740dd66bee9cc0e1a1608df56e77011fd

HTTP Headers

GET /pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7480
x-xss-protection: 0
date: Sun, 11 Dec 2022 18:25:11 GMT
expires: Sun, 25 Dec 2022 18:25:11 GMT
cache-control: public, max-age=1209600
age: 78375
etag: 15631949847000551034
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6d462d3e6bc6168ee30040355f8b96ee
7578100cefe27a95fc25fa11481d78353185a9f0
7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914

142.250.74.98

200 OK

48 kB

URL HTTP/2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3501)
Size
48 kB (47725 bytes)
Hash
0aea457deb170b60b680d7d723b4a6e2
3acbe700c709c2c5c07d6fb145ea7b448cc07a90
86c662679bc2508be7e8064c91055a3c5be7db2c24d58e5f27676f35702ba339

HTTP Headers

GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47725
date: Mon, 12 Dec 2022 16:11:26 GMT
expires: Mon, 12 Dec 2022 16:11:26 GMT
cache-control: private, max-age=3000
etag: "1670417373259609"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/drt/s?v=r20120211

142.250.74.98

200 OK

145 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
145 B (145 bytes)
Hash
92235b51835ea17fa6d313a73f3c2b8f
1e310139fd2be77b54f39c7c64e1616fd35785ad
2cf3e738572a24733a96c3be1d798e95e2bff434d37d6f28cde31ce53df8e333

HTTP Headers

GET /pagead/drt/s?v=r20120211 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1670861484&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1670861483895&bpp=2&bdt=1957&idt=312&shv=r20221206&mjsv=m202212050101&ptt=9&saldr=aa&abxe=1&cookie=ID%3Dd496cf84186eaccb-2288e096fad900f5%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MYxPmOdMhmIZ_qLhg0LlzWAm5d6Ww&gpic=UID%3D00000b91877c705d%3AT%3D1670861486%3ART%3D1670861486%3AS%3DALNI_MY-Q22gGEQ66-cZAokNeImETqXcOg&prev_fmts=0x0&nras=1&correlator=1274321317716&frm=20&pv=1&ga_vid=1199819474.1670861484&ga_sid=1670861484&ga_hid=224391404&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31071219%2C44778741%2C31061690&oid=2&pvsid=633410832654523&tmod=614942969&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=R3lcrQqY81&p=https%3A//crezu.vn&dtd=396
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 145
x-xss-protection: 0
date: Mon, 12 Dec 2022 15:57:51 GMT
cache-control: public, max-age=3600
content-type: text/html; charset=UTF-8
age: 815
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0f3dad0d025c4b6b8abd5d698f00cfbd
3a82ecac8709c7acd620316502a0e774ac3b1170
8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 16:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Size
28 kB (28288 bytes)
Hash
53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 20:35:00 GMT
expires: Thu, 07 Dec 2023 20:35:00 GMT
cache-control: public, max-age=31536000
age: 416186
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjwUvaYr.woff2

216.58.207.227

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjwUvaYr.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13676, version 1.0\012- data
Size
14 kB (13676 bytes)
Hash
4d4f9793319b2d94573820ba75773f27
ced5af48d828c8530af2fbb52c760720df8ceca6
8878d98ccb41ec139e1d88104ed132d3050c7231042659e67212728988413979

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjwUvaYr.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13676
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 18:56:04 GMT
expires: Wed, 06 Dec 2023 18:56:04 GMT
cache-control: public, max-age=31536000
age: 508522
last-modified: Wed, 01 Jun 2022 19:05:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPj0UvaYr.woff2

216.58.207.227

200 OK

6.0 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPj0UvaYr.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6024, version 1.0\012- data
Size
6.0 kB (6024 bytes)
Hash
a573c01e49f793b851ca2f2c5fe5561e
a51ecae4e163eb37f2983e9337bffc2957caa004
5ccac6220939e464bae744df0cabc646ca1078d982ea076783e905f47eb4014d

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPj0UvaYr.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6024
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 20:35:40 GMT
expires: Thu, 07 Dec 2023 20:35:40 GMT
cache-control: public, max-age=31536000
age: 416146
last-modified: Wed, 01 Jun 2022 19:05:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a7ff0747c806c40e6614640b3d95399
ad5dbb852b90a158d9d71464a09035ee57314d5b
245deb1dafb9a261b4ae5ba2983c33e4756c24c36d08991b992a18d525379196

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "245DEB1DAFB9A261B4AE5BA2983C33E4756C24C36D08991B992A18D525379196"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20139
Expires: Mon, 12 Dec 2022 21:47:07 GMT
Date: Mon, 12 Dec 2022 16:11:28 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
acd9a4f230c912d8b8c12524ee9dd9c7
8ad8821d26c57589410296913253986c5084bf87
e4e5a2498c4fa1cc560bb1b38e91a9c52021e95b5a2eb01cf0f2da06d5dd632e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4E5A2498C4FA1CC560BB1B38E91A9C52021E95B5A2EB01CF0F2DA06D5DD632E"
Last-Modified: Sat, 10 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 12 Dec 2022 22:11:28 GMT
Date: Mon, 12 Dec 2022 16:11:28 GMT
Connection: keep-alive

events.crezu.net/api/event

35.240.92.105

204 No Content

0 B

URL HTTP/1.1
events.crezu.net/api/event
IP
35.240.92.105:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/event HTTP/1.1
Host: events.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://crezu.vn/
Origin: https://crezu.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 12 Dec 2022 16:11:28 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,X-API-KEY,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0

events.crezu.net/api/event

35.240.92.105

201 Created

0 B

URL HTTP/1.1
events.crezu.net/api/event
IP
35.240.92.105:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/event HTTP/1.1
Host: events.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://crezu.vn/
Content-Type: application/json
Origin: https://crezu.vn
Content-Length: 229
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 201 Created
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 12 Dec 2022 16:11:28 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-API-KEY,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
da49438e6e579cb1f8fcdef9252252aa
10fa8579cd85b91fa61df5aef560af5cfc4f591e
eb2e7163a787db18dc5f0db22481ec03eb8dec909913fd2b3551cb75f6942587

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 22:33:18 GMT
Expires: Fri, 16 Dec 2022 22:33:17 GMT
Etag: "10fa8579cd85b91fa61df5aef560af5cfc4f591e"
Cache-Control: max-age=367908,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc70dbef1c12-OSL

cdn.morecashpls.com/landings/img/i-push-01.svg

34.107.249.96

200 OK

1.4 kB

URL HTTP/2
cdn.morecashpls.com/landings/img/i-push-01.svg
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1391 bytes)
Hash
050c4f432d5c68e5d8efc4afbda71930
635f6e484ce444e6f237899b553596f504722a41
5bacac65cd03f5724f8e242261b6cd170831f4783c2f46c5885a9c32fdf84850

HTTP Headers

GET /landings/img/i-push-01.svg HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 1391
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Thu, 08 Dec 2022 21:10:09 GMT
expires: Thu, 15 Dec 2022 21:10:09 GMT
cache-control: max-age=604800,public
age: 327679
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-56f"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/img-push-arrow.png

34.107.249.96

200 OK

21 kB

URL HTTP/2
cdn.morecashpls.com/landings/img/img-push-arrow.png
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
PNG image data, 680 x 231, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20616 bytes)
Hash
bf9cb4b97700e1d2e3f7e9ce7bd575ff
ce87fbfff8bea8017a94fe748e3fadcd930457e3
194d53b4483d0fc25f7ccf7f5431893376d633324170f6366d4de0eb102fe25e

HTTP Headers

GET /landings/img/img-push-arrow.png HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 20616
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Sun, 11 Dec 2022 19:29:11 GMT
expires: Sun, 18 Dec 2022 19:29:11 GMT
cache-control: max-age=604800,public
age: 74537
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-5088"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/i-push-close.svg

34.107.249.96

200 OK

639 B

URL HTTP/2
cdn.morecashpls.com/landings/img/i-push-close.svg
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
639 B (639 bytes)
Hash
a942d9fd63a2eebe28676f7c9c463596
06cb2b6fbc48a08c06dd5396b647e7d64d2d0c46
5e0440d1f014655b2a7c9a0ce23aa09e79d49d7afce588d3f7d54a89e92ceb6f

HTTP Headers

GET /landings/img/i-push-close.svg HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 639
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Tue, 06 Dec 2022 17:57:11 GMT
expires: Tue, 13 Dec 2022 17:57:11 GMT
cache-control: max-age=604800,public
age: 512057
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-27f"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
da49438e6e579cb1f8fcdef9252252aa
10fa8579cd85b91fa61df5aef560af5cfc4f591e
eb2e7163a787db18dc5f0db22481ec03eb8dec909913fd2b3551cb75f6942587

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 22:33:18 GMT
Expires: Fri, 16 Dec 2022 22:33:17 GMT
Etag: "10fa8579cd85b91fa61df5aef560af5cfc4f591e"
Cache-Control: max-age=367908,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc70cdb00b02-OSL

cdn.morecashpls.com/landings/css/push-v3.css

34.107.249.96

200 OK

1.3 kB

URL HTTP/2
cdn.morecashpls.com/landings/css/push-v3.css
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.3 kB (1254 bytes)
Hash
9b3dabbba782acdda13a74404d21cfc1
2cdd6bbe614fde4bca786c3ef2648aaee8db6746
d5bbc7b2b07e2f335cad7ac686480869210523b7d095ef6885f1b5cbc51d9bc5

HTTP Headers

GET /landings/css/push-v3.css HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 1254
date: Thu, 08 Dec 2022 21:54:33 GMT
expires: Thu, 15 Dec 2022 21:54:33 GMT
cache-control: max-age=604800,public
age: 325015
last-modified: Tue, 19 Jul 2022 08:15:29 GMT
etag: W/"62d66821-14e0"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
da49438e6e579cb1f8fcdef9252252aa
10fa8579cd85b91fa61df5aef560af5cfc4f591e
eb2e7163a787db18dc5f0db22481ec03eb8dec909913fd2b3551cb75f6942587

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 22:33:18 GMT
Expires: Fri, 16 Dec 2022 22:33:17 GMT
Etag: "10fa8579cd85b91fa61df5aef560af5cfc4f591e"
Cache-Control: max-age=367908,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc717e3bfac4-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
da49438e6e579cb1f8fcdef9252252aa
10fa8579cd85b91fa61df5aef560af5cfc4f591e
eb2e7163a787db18dc5f0db22481ec03eb8dec909913fd2b3551cb75f6942587

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 22:33:18 GMT
Expires: Fri, 16 Dec 2022 22:33:17 GMT
Etag: "10fa8579cd85b91fa61df5aef560af5cfc4f591e"
Cache-Control: max-age=367908,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc70dbe4b515-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
da49438e6e579cb1f8fcdef9252252aa
10fa8579cd85b91fa61df5aef560af5cfc4f591e
eb2e7163a787db18dc5f0db22481ec03eb8dec909913fd2b3551cb75f6942587

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 16:11:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 22:33:18 GMT
Expires: Fri, 16 Dec 2022 22:33:17 GMT
Etag: "10fa8579cd85b91fa61df5aef560af5cfc4f591e"
Cache-Control: max-age=367908,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7787bc70dad9b4eb-OSL

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb38d4a88-9422-41e0-90f0-cc19c2816f8a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6789 bytes)
Hash
ccb6f5a22e2436f35e44eb111ecba475
646216151e3c1aa66f30c323f0ad19b713dc6b90
0855d5b41708252c6bdb88382c64c6ed89721523d430333a5816b85f9e901b4b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb38d4a88-9422-41e0-90f0-cc19c2816f8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 692cfc2b-ef1e-432b-adc6-cbe71b948ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAD7HFCOIAMFk1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d13-6e956e071331a1560d4f6f3f;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:35:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _oHlFqzoduZMveEpKAjhlrpdCQqdAOU-UrcM8DWwXR70K1e7xYA2Qw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:35:15 GMT
etag: "646216151e3c1aa66f30c323f0ad19b713dc6b90"
content-type: image/jpeg
age: 66975
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Dec 2022 16:11:26 GMT
date: Mon, 12 Dec 2022 16:11:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (156)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations