| zerossl.ocsp.sectigo.com/ |  172.64.149.23 | | 315 B |
URL zerossl.ocsp.sectigo.com/ IP172.64.149.23:0
Hash071b4d031ebed81430cfe534c0f1d4fc 5a8a2e1dd1f0cab1131727d077c2fd4744ef8003 001fc497395b3bb016f77eb93fb3c5d0c46e426bec3deba889135728c85d72e0
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 May 2024 04:56:15 GMT
Content-Type: application/ocsp-response
Content-Length: 315
Connection: keep-alive
Last-Modified: Tue, 30 Apr 2024 22:20:24 GMT
Expires: Tue, 07 May 2024 22:20:23 GMT
Etag: "5a8a2e1dd1f0cab1131727d077c2fd4744ef8003"
Cache-Control: max-age=494047,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 87d56c77292656a8-OSL
|
|
| |  196.247.57.94 | 301 Moved Permanently | 233 B |
URL User Request GET HTTP/2IP196.247.57.94:443 ASN#41564 Orion Network Limited
CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash1b0c89ce9d6550bdb8ffb709ec690efe 2a390741edf0d071f78eba3c5297291f43c89087 17d48afbcc38a7996c55245504a0d909ddd3886d218c61e7aef9c239861eb745
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 02 May 2024 04:56:15 GMT
content-type: text/html; charset=iso-8859-1
content-length: 233
location: https://www.crocssko.com/
X-Firefox-Spdy: h2
|
|
| | 196.247.57.94 | 200 OK | 5.9 kB |
URL User Request GET HTTP/2IP196.247.57.94:443 ASN#41564 Orion Network Limited
CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (853), with CRLF, LF line terminators Hash2c9171e93dd1e0f386b379fda954c490 edf63f56dda15dae55ad05848fa95e82e4b843f7 dc683348705406a14fd6885747b0c1555f7182fc7117a7733edc34087dc42700
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:15 GMT
content-type: text/html; charset=utf-8
content-length: 5858
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
set-cookie: zenid=fu15omptmmgu5v6bsi253thlrs; path=/; domain=.www.crocssko.com; secure; HttpOnly; SameSite=lax
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images/loader.gif | 196.247.57.94 | 200 OK | 35 kB |
URL GET HTTP/2www.crocssko.com/images/loader.gif IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeGIF image data, version 89a, 128 x 38 Hash362e988184d842aea3a0b5d09a64d13e e4ab705fb063ffd2645ce8a25e59e889e98f211c 82656f23517068a7b3d92badc8c29716e53654cd2574d330b08823ca7f7b8fa4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/loader.gif HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/gif
content-length: 35011
last-modified: Thu, 09 Jun 2022 15:23:04 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62a21058-88c3"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/jscript/jscript_cookies.js | 196.247.57.94 | 200 OK | 430 B |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/jscript/jscript_cookies.js IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (745), with no line terminators Hash65807f4bee7bcb4f6af769919ee805d3 c75e394f474f9238cb539f8b7ef9708cc083eff2 6979054ef7300efc7abcaefb0168e095f82adc208a00837ae1a95e0f72e2b598
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/jscript/jscript_cookies.js HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: application/javascript
content-length: 430
x-accel-version: 0.01
last-modified: Thu, 18 Aug 2022 06:22:16 GMT
accept-ranges: bytes
cache-control: max-age=300
expires: Thu, 02 May 2024 05:01:16 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/images/collection/men.jpg | 196.247.57.94 | 200 OK | 42 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/collection/men.jpg IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 600x200, components 3 Hashb02d37e1b0666fa15578784b3e89da44 76868e2f979e9f96921f8a76c5c921154ccefe0c deb61068abc712bbdd5a07666ca6c8be7d29d4f972d403ae7bfd7eaaacdf5e07
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/collection/men.jpg HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/jpeg
content-length: 41930
last-modified: Thu, 18 Aug 2022 06:23:34 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sat, 01 Jun 2024 04:56:16 GMT
etag: "62fddae6-a3ca"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images/payment.png | 196.247.57.94 | 200 OK | 6.2 kB |
URL GET HTTP/2www.crocssko.com/images/payment.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 248 x 26, 8-bit/color RGBA, non-interlaced Hash1fb5f66cada185d72ccefaeb9e9a2963 584108601272e3ed07abe10b4c3ca2f6b200d552 ef645db0e0a9a267fda954e584782b888929b2827548ecaef07600656022535b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images/payment.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 6248
last-modified: Thu, 09 Jun 2022 15:19:36 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62a20f88-1868"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/css/stylesheet.css | 196.247.57.94 | 200 OK | 16 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/css/stylesheet.css IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashbd84eb236d34c45da13df2c75b4eb77f a82f1b747ed5783d42e8485ed1a47e97c7bdd328 9451d3f9d5f9e5ff2d5b8249c198dc5c8f49b57ef40ecba2736904c6fb819f8f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/css/stylesheet.css HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 06:21:29 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Thu, 02 May 2024 05:56:16 GMT
etag: W/"62fdda69-ecf6"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/images/logo.svg | 196.247.57.94 | 200 OK | 1.5 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/logo.svg IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash0d644445976d7af94012979e06c5640c 3f9f3bc303f9692d5c2d2ac9b498c0d583ff1e7e 7e9bacbd1d59e33236c96d04de15ffe65032728951fbbf111e70f0a533d282fc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/logo.svg HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/svg+xml
last-modified: Thu, 18 Aug 2022 06:21:52 GMT
vary: Accept-Encoding
cache-control: max-age=864000, public, must-revalidate
expires: Thu, 02 May 2024 05:01:16 GMT
etag: W/"62fdda80-94a"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Quicksand:wght@400;500;600;700&display=swap | 216.58.207.234 | 200 OK | 8.5 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Quicksand:wght@400;500;600;700&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hash687b3522c70baa5549b036297704c11f 472ecf9148a16811f32d92bb82eca38a99851511 1d57bf3e2336e49bb6ee0aa3f19e7d07cfb9136aa061ccc3ac3228f5abd819a2
GET /css2?family=Quicksand:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/includes/templates/crocssko/jscript/jscript_zmain.js | 196.247.57.94 | 200 OK | 17 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/jscript/jscript_zmain.js IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash70fa205c86a2836f80c8e643b27913bb 1f4756c4f369f910f1295eae08bb3aa8d9bd87e3 b7693cb4b2ffa3041ab01c884bf097479dd15f056bee96f80c67ef2d2f8091d9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/jscript/jscript_zmain.js HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 06:22:20 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Thu, 02 May 2024 05:01:16 GMT
etag: W/"62fdda9c-b4c3"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/images/collection/women.jpg | 196.247.57.94 | 200 OK | 69 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/collection/women.jpg IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=164, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=492], baseline, precision 8, 600x200, components 3 Hash39c2700f64ba6728a75466de2c26f9a5 f379bbd03880fb473fc86e837bf8d5640ee859e4 27f3f3ae7f418197da86ddd03c290082b51b2fb359080756901cef82939c8926
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/collection/women.jpg HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/jpeg
content-length: 68938
last-modified: Thu, 18 Aug 2022 06:23:35 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sat, 01 Jun 2024 04:56:16 GMT
etag: "62fddae7-10d4a"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/images/collection/kids.jpg | 196.247.57.94 | 200 OK | 67 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/collection/kids.jpg IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=164, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=492], baseline, precision 8, 600x200, components 3 Hashe7e87c8a7b6258ea2a307d5787e752dc e6737a38cc31f346ca5db5c8df5742d23962e3c3 f6b6e30282d1c981954be508b344649193f1f70c4472b51c4489a980da4ad83a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/collection/kids.jpg HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/jpeg
content-length: 67286
last-modified: Thu, 18 Aug 2022 06:23:33 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sat, 01 Jun 2024 04:56:16 GMT
etag: "62fddae5-106d6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Crimson+Pro:wght@200;300;400;500;600;700;800;900&display=swap | 216.58.207.234 | 200 OK | 8.3 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Crimson+Pro:wght@200;300;400;500;600;700;800;900&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hash25e6a5bad711bc8e00f931c7310b4671 c92879a16f952aef61c9b2186322b0e4d7b6207b 888e00a17be21b5269219ecda324e8b1310efbeacd37f29ef74e15dbb9c28cff
GET /css2?family=Crimson+Pro:wght@200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Slate-Grey-Multi.png | 196.247.57.94 | 200 OK | 122 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Slate-Grey-Multi.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size122 kB (121651 bytes) Hash6719a17dc401f0c0fc71ba44c6faf4e8 e41b35939f954e2fa1347ad3b8249f42f3182c46 35d467254e60ff885acb5b4c942ac86823a85ba1397c8fd71751a60cdc5c3104
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-All-Terrain-Clog-Slate-Grey-Multi.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 121651
last-modified: Wed, 17 Aug 2022 12:09:52 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda90-1db33"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-Animal-Remix-Clog-Bone-Multi-Animal.png | 196.247.57.94 | 200 OK | 193 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-Animal-Remix-Clog-Bone-Multi-Animal.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size193 kB (192713 bytes) Hash7bfa493b9a308ededdba452ec2658fe5 1b235d3c6cc9df750769087d7726aceedff32b6a 9457d4ae8b25774c9f349c6b86f27178d46759111935002f7bf0e3fa2bfd0081
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-Animal-Remix-Clog-Bone-Multi-Animal.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 192713
last-modified: Wed, 17 Aug 2022 12:10:34 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcdaba-2f0c9"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Bistro-Clog-Black.png | 196.247.57.94 | 200 OK | 134 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Bistro-Clog-Black.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size134 kB (133542 bytes) Hashb8e4c0f20fed0ac784526bedfa18bdab afe253e5e027336f65862a7615cd95ff0cd83e17 cfef22cd86a974e3fedea6e056113d68d468d4827ce9a381c9c342564ed39a67
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Bistro-Clog-Black.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 133542
last-modified: Wed, 17 Aug 2022 12:08:52 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda54-209a6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-Lined-Animal-Remix-Clog-Black-Multi-Animal.png | 196.247.57.94 | 200 OK | 164 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-Lined-Animal-Remix-Clog-Black-Multi-Animal.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size164 kB (164262 bytes) Hash5e68b18d5dab05517d9168a8afb8e595 908f858109873fbfc8908d9a05a257005dc9d90a 6d19a9e83902fed64ddc0ed356a0678b05e363d7e936de337944b5bc681bc15e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-Lined-Animal-Remix-Clog-Black-Multi-Animal.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 164262
last-modified: Wed, 17 Aug 2022 12:19:10 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcdcbe-281a6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Chai-Multi.png | 196.247.57.94 | 200 OK | 188 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Chai-Multi.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size188 kB (188415 bytes) Hashdca83cce282f5b78b130211360913a5a 7c906f247276b7dac70f9a45a87d9898f50cf195 d2cac157eab8f0ed38e545de9e096b06e034cdcdf4ca3a30400b275a1d3f48f3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-All-Terrain-Clog-Chai-Multi.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 188415
last-modified: Wed, 17 Aug 2022 12:09:46 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda8a-2dfff"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/images/w6-bundle-full.jpg | 196.247.57.94 | 200 OK | 366 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/w6-bundle-full.jpg IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 2400x1000, components 3 Size366 kB (365683 bytes) Hash883f7335962cfbd636905c9e18141491 bcd25ec1881346bd6e839d69981780111e813b98 82ff358907ee78aa871e4d0c65529894785c32cb8d71dd00a6d3434b653ecbbf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/w6-bundle-full.jpg HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/jpeg
content-length: 365683
last-modified: Thu, 18 Aug 2022 06:22:02 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sat, 01 Jun 2024 04:56:16 GMT
etag: "62fdda8a-59473"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-White-Multi.png | 196.247.57.94 | 200 OK | 192 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-White-Multi.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size192 kB (192508 bytes) Hash2adac5ad485b46e067afe7f80bb83bfc 149e0c0e5891f25075050dc92f26610e6560935b 0612214e0b27f9a2e433ed461ae29ed981bb0ac3185489867614d25811022ece
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-All-Terrain-Clog-White-Multi.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 192508
last-modified: Wed, 17 Aug 2022 12:09:56 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda94-2effc"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Bistro-Clog-White.png | 196.247.57.94 | 200 OK | 143 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Bistro-Clog-White.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size143 kB (143185 bytes) Hash7f796ea2ba7e8ff22ff9b69f38042854 3f415995b7d5820f17c7d752b4dd770b5fcebe0c ebc4ce57cbe035b73837d4078794f41ddbcef4fd49c9d36cfd05dcc5697b4016
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Bistro-Clog-White.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 143185
last-modified: Wed, 17 Aug 2022 12:09:00 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda5c-22f51"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Black.png | 196.247.57.94 | 200 OK | 132 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Black.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size132 kB (131721 bytes) Hashbd4483718b426ee542272a956cad78b0 3e46503a0b3a8b90a25a9a6da8a377c743570a97 df3cd8f08de965aa7215b002c5e8d4486759f380b2083cabc1ee7bfec2360fa7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-All-Terrain-Clog-Black.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 131721
last-modified: Wed, 17 Aug 2022 12:09:42 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda86-20289"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Aloe.png | 196.247.57.94 | 200 OK | 223 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Aloe.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size223 kB (223203 bytes) Hash08eaeb8320975317bb0564a9c922d2f5 62f0f6991e808750ee09ca120e927d8581e51e37 7f9edf2522150786637ae30f36e51827bfbd72713be7bd17941ed5b7fb1e4365
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-All-Terrain-Clog-Aloe.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 223203
last-modified: Wed, 17 Aug 2022 12:09:32 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda7c-367e3"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap | 216.58.207.234 | 200 OK | 142 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Size142 kB (141488 bytes) Hash20b436c5e846769cc5bcd95ecf3e36f2 689f9457f8ec3b1c3e655d4131e99d45322950fc 64d4804bc52700bef8127619e31f60e54d66fe3083bd3a80a7eceb1ed4f3a204
GET /css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/images//prroductss/Bistro-Clog-Navy.png | 196.247.57.94 | 200 OK | 252 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Bistro-Clog-Navy.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size252 kB (251476 bytes) Hashe9bb3aef04da4630096fe00d1aa54063 90fa4f9cd2692789885424a29bfbd0018d55aff7 ae4a804d0a1c7e4913d8cc0aacdece8683775c709f96aead3dd1416257c8ccca
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Bistro-Clog-Navy.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 251476
last-modified: Wed, 17 Aug 2022 12:08:56 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda58-3d654"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Black-Multi.png | 196.247.57.94 | 200 OK | 217 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-All-Terrain-Clog-Black-Multi.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size217 kB (217417 bytes) Hash634788faf1d017b79ba9dfbb88f7a985 029932d3fe5dc17c54183fb9ece372e503d251eb 1b0e64347276083f20e63d9abcbfd56e0295068912a710e8efab0250985fc257
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-All-Terrain-Clog-Black-Multi.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 217417
last-modified: Wed, 17 Aug 2022 12:09:38 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcda82-35149"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/images//prroductss/Classic-Bandana-Clog-Multi.png | 196.247.57.94 | 200 OK | 267 kB |
URL GET HTTP/2www.crocssko.com/images//prroductss/Classic-Bandana-Clog-Multi.png IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typePNG image data, 960 x 802, 8-bit colormap, non-interlaced Size267 kB (267222 bytes) Hashdff82f99eee65dc05bbc69caf2d8933d ba5bb505c3157cf050b838194906a68a779818fe 85260bcf5eb8e3fe0842fa211abab9945b8673c4d607d718e215e5d194fe9bc8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /images//prroductss/Classic-Bandana-Clog-Multi.png HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/png
content-length: 267222
last-modified: Wed, 17 Aug 2022 12:10:38 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62fcdabe-413d6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap | 216.58.207.234 | 200 OK | 1.4 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hash0f75f0c28371570f94af1828f552205c 34fedd23ecb9357ec29554132fb9cc554e91cfda e9c6b52694037586ccc51cbe5ae3e56fb27a9ea15795ed004cc83a2641b1dfc3
GET /css2?family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/includes/templates/crocssko/images/Crocs.jpg | 196.247.57.94 | 200 OK | 597 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/Crocs.jpg IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 2400x1180, components 3 Size597 kB (596809 bytes) Hash3527dee15632aa40f2c952bd5ff6013c b3f06be0d6b8a2a19640b6b029ca2f03f6aac411 171b4cfeb81302a045aea4e78875f69393967412691092bfd2a654c7e36147b5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/Crocs.jpg HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: image/jpeg
content-length: 596809
last-modified: Thu, 18 Aug 2022 06:21:48 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sat, 01 Jun 2024 04:56:16 GMT
etag: "62fdda7c-91b49"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/jscript/jquery.min.js | 196.247.57.94 | 200 OK | 72 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/jscript/jquery.min.js IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash46a56a8901c79d4024dd96c4665bbf04 5f1c7f4ca186785658f1e9160ad07084f051b0ef 8bdf6fc99e5da183491f7dcb8dfc3b40e3025d8293af304f67273569edf5c570
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/jscript/jquery.min.js HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 06:22:15 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Thu, 02 May 2024 05:01:16 GMT
etag: W/"62fdda97-15d9d"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap | 216.58.207.234 | 200 OK | 5.6 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hasha28d6a513a4a4c7412fb58f533c34c22 88bc2294903f2bb04eafafabbf2a4829512b5f62 b4c2a267cd8aa652a7d4b030baa9f27d2d77eae0e3a7ecf731a94443a995f6a0
GET /css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700;800&display=swap | 216.58.207.234 | 200 OK | 5.6 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700;800&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hash3bc3fb7efccbfa20b72fa564d5686724 d8bd04315f5329ac1d857ffe4ced9c96b02e479d 90991341bfe4dc77443f349b6600f6ea5556ceb21f2ce1475db4aefbf766cde3
GET /css2?family=Jost:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/includes/templates/crocssko/jscript/jscript_plugins.js | 196.247.57.94 | 200 OK | 273 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/jscript/jscript_plugins.js IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
Size273 kB (273266 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/jscript/jscript_plugins.js HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 06:22:20 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Thu, 02 May 2024 05:01:16 GMT
etag: W/"62fdda9c-42b72"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/fonts/annimex-icons.ttf?teavmy | 196.247.57.94 | 200 OK | 141 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/fonts/annimex-icons.ttf?teavmy IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, adorn-icons Size141 kB (140608 bytes) Hash7d3c0284348a1f07b4cd6ff41354551b 6ff4eb286a7b3c980866382a40dd9279c99cb9cd 924025d175bc0292a137b2b46a4ee48e77c8618c3ea19e44214b6abf30f16005
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/fonts/annimex-icons.ttf?teavmy HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/includes/templates/crocssko/css/style_allplugins.css
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: application/x-font-ttf
content-length: 140608
last-modified: Thu, 18 Aug 2022 06:21:36 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Thu, 02 May 2024 05:01:16 GMT
etag: "62fdda70-22540"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/icon?family=Material+Icons | 216.58.207.234 | 200 OK | 565 B |
URL GET HTTP/2fonts.googleapis.com/icon?family=Material+Icons IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (588), with no line terminators Hash959a533a3dc02649e0cc3f8f67d942af 34db49ff64aed8b51beaba5b9928ad504a4df335 24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Poppins:wght@200;300;400;500;600;700;800;900&display=swap | 216.58.207.234 | 200 OK | 6.3 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Poppins:wght@200;300;400;500;600;700;800;900&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (6448), with no line terminators Hash5597ed8188a3994391b999f6caf0d0ec a647507c2dfaa80293672a339035e11335a7509b 40f0d46e2291b1365735633e70f2aac322fb4741fa001a7e8485692d660bb740
GET /css2?family=Poppins:wght@200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Merienda:wght@400;700&display=swap | 216.58.207.234 | 200 OK | 2.4 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Merienda:wght@400;700&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (2424), with no line terminators Hash4c11106146294a0f2e0f9a7cd792e1d2 53f4815a87a769d098f64ad9dfafc157f7d572d1 66f67ff9a9b48f878ba4db2df85dcb68e5640e189ecc19cb7a4a8604b7412e94
GET /css2?family=Merienda:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/includes/templates/crocssko/css/style_allplugins.css | 196.247.57.94 | 200 OK | 221 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/css/style_allplugins.css IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
Size221 kB (220793 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/css/style_allplugins.css HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 06:21:30 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Thu, 02 May 2024 05:56:16 GMT
etag: W/"62fdda6a-35e79"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap | 216.58.207.234 | 200 OK | 11 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
Hasheb9023562ab1966f30dc99199c862e99 c61e56985a7df5262657c080393142f4f3e674b0 23daa07b4cbfa8e9a4a4aa17f77ebab31297e8dcd5f1c082dc21f284ab5dd03a
GET /css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Archivo+Narrow:wght@400;500;600;700&display=swap | 216.58.207.234 | 200 OK | 5.0 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Archivo+Narrow:wght@400;500;600;700&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (5076), with no line terminators Hash48d4822accd8873d2852967645115cef 1b20048c205fa24b4fff0afa458ee1fa2c45612f 27b1f874ce4c14645ec6df13bdf94d9a3381db78c5e4720903dd20d0e4bbc0b7
GET /css2?family=Archivo+Narrow:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Staatliches&display=swap | 216.58.207.234 | 200 OK | 808 B |
URL GET HTTP/3fonts.googleapis.com/css2?family=Staatliches&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (826), with no line terminators Hashda420df8479f8779cde5fc034d4cc67b 40e95fcf89bfd02023345af67b83dd45543c29d9 21c8c585a8724114950fa78cb426dd7ff797cab8c34cb44231ea087c6c515d61
GET /css2?family=Staatliches&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 142.250.74.67 | 200 OK | 7.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP142.250.74.67:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0 Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crocssko.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 03:25:26 GMT
expires: Wed, 30 Apr 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 178250
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto+Condensed:wght@300;400;700&display=swap | 216.58.207.234 | 200 OK | 7.6 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Roboto+Condensed:wght@300;400;700&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (7812), with no line terminators Hashea047ba198aaa7637f27cf64c74fa8be 52329f1f70a60957c92db2a590bb97b25796dc19 11a942088d049579ba79db59d72e631d2e26f1fc2b12ee0dba2e2e3ff65d2477
GET /css2?family=Roboto+Condensed:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 142.250.74.67 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP142.250.74.67:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crocssko.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:52:39 GMT
expires: Fri, 02 May 2025 01:52:39 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 11017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/css/style_common.css | 196.247.57.94 | 200 OK | 43 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/css/style_common.css IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeassembler source, ASCII text, with very long lines (451) Hash49a7db3d5ccaf7fe7570472bc1a7756b 498cb97e1f9b6d058c026cc778565196c6ccafa8 b6c96938fe7287701a95051678fd3ef2a0435749ae833f78d3ed88310107d895
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/css/style_common.css HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 06:21:31 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Thu, 02 May 2024 05:56:16 GMT
etag: W/"62fdda6b-a7fa"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap | 216.58.207.234 | 200 OK | 9.5 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (9708), with no line terminators Hashcbb724e5f0c70cc680b0a3cf208a602e 7bb23f4e0d2a2306ce2a8c44b5c29778235d4580 533e25ed8b776dfe43e6cfb857fa5feee61b4e554dead3ec80cbaf2afa928d21
GET /css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.crocssko.com/includes/templates/crocssko/images/favicon.ico | 196.247.57.94 | 200 OK | 36 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/images/favicon.ico IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeMS Windows icon resource - 5 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, 64x64, 32 bits/pixel Hash328386fdda521a0d31bfc318249e0584 99a9fcac8a86993f6b483e56436ee9a0f97be98f a8e27be2a5e72f47d5c2866decf21301ccd6e6efceba65e548304bbd96fe0605
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/images/favicon.ico HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:17 GMT
content-type: image/x-icon
content-length: 35874
last-modified: Thu, 18 Aug 2022 06:21:49 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Fri, 03 May 2024 04:56:17 GMT
etag: "62fdda7d-8c22"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 | 142.250.74.67 | 200 OK | 8.0 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP142.250.74.67:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0 Hash72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crocssko.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:53:15 GMT
expires: Fri, 02 May 2025 01:53:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 10981
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.crocssko.com/includes/templates/crocssko/css/style_zo.css | 196.247.57.94 | 200 OK | 112 kB |
URL GET HTTP/2www.crocssko.com/includes/templates/crocssko/css/style_zo.css IP196.247.57.94:443 ASN#41564 Orion Network Limited
Requested byhttps://www.crocssko.com/ CertificateIssuerZeroSSL Subjectcrocssko.com Fingerprint8E:7B:DB:8B:07:01:09:F3:35:8F:57:1C:27:61:17:78:83:D7:7B:D4 ValiditySun, 07 Apr 2024 00:00:00 GMT - Sat, 06 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (731) Size112 kB (112161 bytes) Hashd12235ead99d35210d96244fe52b090b 98a2eea8f79e0663223929d47ce34e3bd5e424fa 15f192f9cd553c0cd0f9d8936b514d7ccf3094c7bf4a890f7524f82d12b8bfce
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/crocssko/css/style_zo.css HTTP/1.1
Host: www.crocssko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Cookie: zenid=fu15omptmmgu5v6bsi253thlrs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 04:56:16 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 06:21:32 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Thu, 02 May 2024 05:56:16 GMT
etag: W/"62fdda6c-1b621"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap | 216.58.207.234 | 200 OK | 9.3 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (9530), with no line terminators Hashc5939125786ce6b5ed8c4f0a2bedcf52 528777daa60c7b5d52e78018151ba873c94d640e 819fb2fbdc024c04b03c88da5d5c7e0bdb4616630d72ab65491cbaab120f46ec
GET /css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Alata&display=swap | 216.58.207.234 | 200 OK | 1.2 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Alata&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (1179), with no line terminators Hash1f9ff1758f44a8354f9be6ccf531cb8a 7fd5c0f675262d59736c063d0569dd7fab71256f 37dfb66736045e51980abc5c9c002b3a658a8fadc626f4a0aacf957fe90b6809
GET /css2?family=Alata&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap | 216.58.207.234 | 200 OK | 11 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
Hash0f3106ce705bbf98161187fc94d15542 99688690db95c115bbc142ac516d7aa8d8bfade8 376aa716f5acbcefc1b0a7684a56f4d642f23bf6534917d787d163c2ad81ebb4
GET /css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Glegoo:wght@400;700&display=swap | 216.58.207.234 | 200 OK | 2.3 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Glegoo:wght@400;700&display=swap IP216.58.207.234:443
Requested byhttps://www.crocssko.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (2310), with no line terminators Hash5cf712cf2b0969e17db3030c359175fe a6bd8bc94377508e45d8b0708c67057efd7ec40d 2590d0359a53a2ba40a5f4074121465e36893f365cf2a67f7c803249cbad479e
GET /css2?family=Glegoo:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.crocssko.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 04:56:16 GMT
date: Thu, 02 May 2024 04:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|