Report - crezu.vn/

Report Overview

Submitted URL
crezu.vn/
IP
35.229.199.189
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-12-23 16:10:57
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
cdn.crezu.net	708765	2019-06-07T20:19:29Z	2023-03-08T23:11:57Z	2.0 kB	88 kB	35.201.76.189
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	374 B	48 kB	142.250.74.168
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-09T09:24:51Z	510 B	694 B	142.250.74.163
tpc.googlesyndication.com	126	2020-01-16T09:35:32Z	2023-03-09T11:36:12Z	860 B	18 kB	172.217.21.161
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
www.googleoptimize.com	1604	2019-07-16T12:17:19Z	2023-03-09T10:58:24Z	377 B	48 kB	142.250.74.46
partner.googleadservices.com	798	2012-10-03T03:04:21Z	2023-03-09T08:43:03Z	448 B	912 B	216.58.207.194
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	511 B	694 B	142.250.74.132
www.googletagservices.com	169	2021-02-14T04:54:38Z	2023-03-09T13:41:05Z	422 B	49 kB	142.250.74.162
events.crezu.net	unknown	2022-08-30T18:56:21Z	2023-03-09T09:33:27Z	906 B	816 B	35.240.92.105
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-09T13:41:05Z	516 B	5.0 kB	172.217.21.162
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-09T07:43:12Z	591 B	703 B	64.233.161.154
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	571 B	349 B	31.13.72.36
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T11:25:06Z	4.4 kB	12 kB	104.18.32.68
cdn.morecashpls.com	unknown	2020-01-15T21:36:58Z	2023-03-06T01:58:27Z	1.6 kB	26 kB	34.107.249.96
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	1.0 kB	2.4 kB	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	5.1 kB	10 kB	142.250.74.131
analytics.tiktok.com	1182	2020-02-29T14:09:05Z	2023-03-09T05:14:35Z	1.8 kB	104 kB	95.101.10.203
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-09T13:41:04Z	436 B	50 kB	142.250.74.98
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	3.0 kB	8.0 kB	23.36.76.226
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-09T05:09:57Z	366 B	29 kB	31.13.72.12
crezu.vn	479041	2020-02-12T20:29:10Z	2023-03-09T12:58:13Z	16 kB	278 kB	35.229.199.189
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	68 kB	34.120.237.76
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-09T13:53:17Z	365 B	21 kB	142.250.74.110
p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com	unknown			543 B	1.3 kB	142.250.74.99
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	34.214.64.191
adservice.google.com	76	2021-02-20T17:10:48Z	2023-03-09T13:58:16Z	384 B	779 B	216.58.207.194
adservice.google.no	96969	2018-06-20T01:38:38Z	2023-03-09T05:13:18Z	383 B	1.1 kB	216.58.211.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-23	medium	crezu.vn/	Phishing
2022-12-23	medium	crezu.vn/	Phishing
2022-12-23	medium	crezu.vn/	Phishing
2022-12-23	medium	crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js	Phishing
2022-12-23	medium	crezu.vn/wp-includes/js/jquery/jquery.min.js	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-features_5.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-features_6.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-how_1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-features_1.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-features_2.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-features_3.svg	Phishing
2022-12-23	medium	crezu.vn/wp-content/uploads/2020/06/i-features_4.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (156)

	URL	Size	First Seen	Last Seen
	adservice.google.com/adsid/integrator.js?domain=crezu.vn	107 B	2023-03-07	2024-02-03
Pretty URL adservice.google.com/adsid/integrator.js?domain=crezu.vn IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-02-03 18:43:04 Times Seen27539 Hash d9c47f48660b656705d0ff86fc850de8 bceb9478f69cdfc2eb87ae6b80e95dbaac8b6769 a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	5.1 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash df27db8ffcbf0f944538ca08b2e722f1 d8a4a51f9f8fecac3b1014a57fcc68330e9b7b54 f8437d110d7cce7fd92835b2907c211876ea9418887bee5f891af764153baec3 Loading...

	tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/one_click_handler_one_afma_fy2021.js	35 kB	2023-03-08	2023-03-12
Pretty URL tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/one_click_handler_one_afma_fy2021.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:16 Last Seen2023-03-12 14:35:21 Times Seen1 Hash 22f7b8c921b7df7ac5ec850387249fb5 39dd57507fe6ad7786d4d08b5877af9f184944db 20e61b393e246051ebe36f186c4c5a8a0ab4efa227f16ec0c4cf57d60e0388d1 Loading...

	cdn.crezu.net/wp_js/dist/countries/vn.js	2.3 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/countries/vn.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a9d4583f2975ed60e02d35256e02f294 5d35599e3de6c949d60f664111601b2faceebe1f e4a25340f810f50486892a572227d0ad55ea05c5a8c19f5a1516064b45a19630 Loading...

	crezu.vn/	887 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash a8323f57db042cb664345dc40fd03ee0 d6d3976086348b9e971a1855875492b5821309ba 6b978ad14deab77956c782dd0f9364502500ba19ea6f4309e93ce7df2511a8ac Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-09	2024-02-19
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 09:12:38 Last Seen2024-02-19 23:40:48 Times Seen21 Hash 8923a23f541784b67eece6aa2fa0a66f f2cad61f4ec65b3792e1295219a36c1f94fce6af 55c4e9ba07b641e64caa17bfcbdc63b1721a58554bd449401e600db3f6b95cf9 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	18 B	2023-03-07	2023-12-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2023-12-10 23:37:06 Times Seen1996 Hash 364903be35e41b2e14a841071c35f191 58dcb22af21e5f7fd6e5bef578eb1b9a7ddd34a5 b29dd4c3347306fe999d36cab04ed9a9ef863d885d11c86ebbb571802f25ff59 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	48 B	2023-03-08	2024-04-02
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:23 Last Seen2024-04-02 23:20:19 Times Seen928 Hash dfd55c442c4c64f52bdc00f1640365b8 185edf749dd7f7e9e306cbd66754014865913418 08ce2c892c70199949416429fdf400b479a4db4187524fdae6b84c9e9676281b Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1	383 B	2023-03-10	2023-03-10
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1 IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 94c0bd54d868691c95b2a99995ac1843 e82044f9e4d9a23fefb5013ef9bcc669ff898aed 5d894b6ab4863830281bcb98b42828b5583b57ba02c096fad12681a99640cb62 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	15 kB	2023-03-08	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:28:19 Last Seen2023-03-12 14:34:18 Times Seen1 Hash 85e92f4084f9fa57dfd6b5b26e49499a 9b84d334905125230377fee950044cccd8abc270 be4e3ad8822675e2a09180009e51645190657750dff1341913eb004cea39fe38 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	7.0 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:16 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 8fb7ae1dfe264bede1883961836d18ac 388b325fea585e6780e0f30cb43a7df0f28b5035 7e206584502ccfa5cd025eb15a4534f380a0ff375e2d988899f7a668935e65bf Loading...

	tpc.googlesyndication.com/pagead/js/r20221207/r20110914/abg_lite_fy2021.js	24 kB	2023-03-08	2023-03-12
Pretty URL tpc.googlesyndication.com/pagead/js/r20221207/r20110914/abg_lite_fy2021.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:17 Last Seen2023-03-12 14:35:21 Times Seen1 Hash f458f507accf48c72fb80e2ba2f9f399 9359f3aba34e2459324ff54f6c2922c6201b7c60 86a2a3999c65a6ee0bbee35ac7515f04856e0fcbcebdffd56001c0dc924d887a Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	91 B	2023-03-07	2023-12-09
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-12-09 21:56:02 Times Seen1361 Hash c82428a35f2157d1ffc58db62a62642c 23a3ba37c8219ada20ade938bf6ab027ddfaa32e c202f499070bf24f65287263b3c7fd4a221000ebc2e9a9eb1da84c48faf83f7a Loading...

	crezu.vn/	337 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:46:45 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 387867ec31ab625c2b11dbda114eeae7 82c0f167e9db6ad698f7c328e6644f007ae1ea55 2e9cb852f3374b9fcaaa7b7d7e11093183f5f87520cad4fa2f4f42f60dafcdd2 Loading...

	crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-27
Pretty URL crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-27 02:39:29 Times Seen68686 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	crezu.vn/	59 B	2023-03-08	2024-04-23
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2024-04-23 04:24:15 Times Seen17 Hash 75c3ddaba57b6cdcc4f3738bc2de6411 180e587d472ee9b5c30355ab0af2613fbab68dc7 5954b3d73de78c313ea5f4d20cf782ed407f6f037e2f248374231e8071edd131 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	10 kB	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 5958993374f8f10fe0887f74e00a4adc 7c39fe1c7aea686965e6abf29e6ab213bab040a8 b0c4da6cc95cb150ce14f93dec0c5a371dceb866ca6438bfbbf5bc976f248631 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	29 B	2023-03-09	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:48:12 Last Seen2023-11-03 08:02:11 Times Seen3 Hash cd3621d77409d6bdaf75248f60e73eaa c75d623bdc3f2dcc83de83cf02c7b9a43828b649 f5a16a77143cbcdd8b54f9742556ee2fb4a37262eb759809886bfeda60a670e6 Loading...

	www.google.com/recaptcha/api2/aframe	614 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/api2/aframe IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2023-04-05 02:12:11 Times Seen4624 Hash e9e28069c47a530a55f8c7e015a1b38b 2eced601ebdbe39ca274f61c71376ea4bcb8dfff 5fc84aaac11d3157f560666107a0551c67974bbd141130882f9579a5a92e0c52 Loading...

	cdn.crezu.net/wp_js/dist/page-index.js	253 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/page-index.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2023-03-12 11:54:29 Times Seen1 Hash e91a5cb04b0c07fd75919a8017b15bfd 5114fca99f583383d768620928f05f49d017be43 414589bc3d737b9c3281339dcfe4231517038c26aacd56ad739a9de8ea81d401 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-27
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-27 02:03:36 Times Seen1536 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	connect.facebook.net/signals/config/181455369817902?v=2.9.90&r=stable	300 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/signals/config/181455369817902?v=2.9.90&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 621af111206bf7509e0e3dd0d1b84070 d90821f72d164d1ca1f96b75fe6b07cf3fff84fc b02c5fc3ae8c3026ae4aa3a5b49b70b2fc3683a1739d9662f6d3dba83d64d96a Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&adk=293675617&adf=814277786&lmt=1671811849&plat=3%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32&plas=135x742_r&format=0x0&url=https%3A%2F%2Fcrezu.vn%2F&ea=0&pra=5&wgl=1&dt=1671811848860&bpp=4&bdt=1858&idt=174&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&nras=1&correlator=7348308282102&frm=20&pv=2&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=341	4.4 kB	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&adk=293675617&adf=814277786&lmt=1671811849&plat=3%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32&plas=135x742_r&format=0x0&url=https%3A%2F%2Fcrezu.vn%2F&ea=0&pra=5&wgl=1&dt=1671811848860&bpp=4&bdt=1858&idt=174&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&nras=1&correlator=7348308282102&frm=20&pv=2&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=1&uci=a!1&fsb=1&dtd=341 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 9364eb6ec6309e6b710866d5c165dd6c 72ef9b758c9e7910dcfd642ff45e961312adf037 9bbbfec2fdd676373eb73535dc68123703919e938ad978291829797679a54b08 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	19 B	2023-03-07	2024-04-25
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 20:39:17 Times Seen2233 Hash 65bb46e3f84073f672c022f98f42245e 2d0aed946f65bf94f57fe36798d2540727b212e3 375bc1a8808edc2a20b432f223e06e981b02feb9d34f558260aa537495f3533f Loading...

	tpc.googlesyndication.com/sodar/sodar2/225/runner.html	13 kB	2023-03-07	2024-02-23
Pretty URL tpc.googlesyndication.com/sodar/sodar2/225/runner.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-02-23 22:40:33 Times Seen4633 Hash 04889347291e33491547245846d18c4f fa0e1917fb2630c86eab067505751a72ba001c6a f4a5d6b45c241fa0ce6ba4ae8b035ad725d67c4091ce8a99bc9c2364295b8fd8 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MB47FWT	135 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MB47FWT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 2d9775027e329c147318e75ada555d4e 062c783e90571bcdeabff0fa2788b89f0f1cceda c07f37c568af65d02f020dc3444c0e81e92db4a4799f5f89d9f9919fcd6b26f0 Loading...

	analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq	3.5 kB	2023-03-10	2023-03-10
Pretty URL analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq IP 95.101.10.203 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 97b87e404981d1a055a1af4de4e9dc24 fe9eb8dfe9bc0c7e7eb9f472468b9bc0c97fdf2c 66e28ef9f7dad52f4a7be73b0e5fb5253dce75c668b7fd38a5411e3118245ece Loading...

	analytics.tiktok.com/i18n/pixel/static/identify_13839.js	117 kB	2023-03-08	2023-12-01
Pretty URL analytics.tiktok.com/i18n/pixel/static/identify_13839.js IP 95.101.10.203 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-12-01 19:12:12 Times Seen8 Hash 2882420796825a8886ceecc7c4ed1a6c d9cba04c7337ba026b4a962b6e33f5f431fc68de 6efa775a864aba5b3b1bc9ce6335a617693c712d3a65633cbe6751fa1d291a9c Loading...

	p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html	41 B	2023-03-07	2023-04-05
Pretty URL p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:52 Last Seen2023-04-05 02:08:04 Times Seen126 Hash 3771158c63956b18e3b6da88c49e1b41 04606f9af586fbc5e96418531d8801a18f7d957a bd6a7dfa78bde067000dca46cf0ddbd8cb19a81ea642b623a5613011d98502c9 Loading...

	tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/window_focus_fy2021.js	2.7 kB	2023-03-08	2024-04-25
Pretty URL tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/window_focus_fy2021.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2024-04-25 20:39:32 Times Seen2172 Hash 9ef158292b617d358506529b02c73629 843852d8addbf1a7f96c5607179e1c9423ed8a4c 3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5 Loading...

	cdn.crezu.net/landings/js/get_token_with_custom_prompt.js?rand=1671811850842	122 kB	2023-03-09	2023-03-13
Pretty URL cdn.crezu.net/landings/js/get_token_with_custom_prompt.js?rand=1671811850842 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:16:37 Last Seen2023-03-13 03:13:25 Times Seen1 Hash d4a20e6e449bbdb9d1f1ef14bf75e751 4b7f77695216a91e477df24a78173d934db78937 9bb5ae62de13926b26390223fba930aa19c3129ad1db43771ae9f12dc8aa609e Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 06:26:07 Times Seen37112282 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googleoptimize.com/optimize.js?id=OPT-W6HX45D	122 kB	2023-03-10	2023-03-10
Pretty URL www.googleoptimize.com/optimize.js?id=OPT-W6HX45D IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash bdbf73417a5418dc18726de2cb4009d7 88be177d205d7a9e1e427f8835c8c9aaf760ff02 024ccb1368597f16e6a64130e5c62ee10f105da129c13b35a9857befb9c46e30 Loading...

	crezu.vn/	363 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash ab94b81668bd457bc93cf53a0fff406b debb07e523ba9075657861d504bd339dbfef9bf3 21e18622ddb4baf73de4d3df46982f34c47286f72d60d7d85bed33a7b3722a6f Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	435 B	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 45c459e58d0f85938f0419eedcfb3182 a0b3fbe8659669f7bce1bcf4076343823857163d 21a0771602d8cf0724b1d7f057c6d50c52dda284c7259d04ddf806fabe95f9fc Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	9 B	2023-03-07	2024-04-25
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 20:39:22 Times Seen2253 Hash c8308edb31948449adfea16b3e2d316d 38d59d97a7ea7498b50a40eabdfde6c3f446be3b 5c1324674560cf5a651810c1e7ad9643cd2472144d432b7a62a743a19f6f86c4 Loading...

	pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212060101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6373705936907274&plah=crezu.vn&bust=31071220	365 kB	2023-03-09	2023-03-12
Pretty URL pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212060101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6373705936907274&plah=crezu.vn&bust=31071220 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 05:12:47 Last Seen2023-03-12 14:05:37 Times Seen1 Hash 706860649a707d621ee02f83de7b14fb f3e70d983a8e18c1724cf489ce588752c49e79c5 79051c7e6a26dd12c831bce4d11d11d12261787dfb3ab685e350faac099ce7fe Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	3.8 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 87820c822f9e9d8b14f339e30c6d4d5a b021236d93a2b6176144a3eff9ad1539ca69e136 d937b43a9ccd370d053337de2b2d65cf29effd4bf31be41e767358b76cb05101 Loading...

	googleads.g.doubleclick.net/pagead/html/r20221207/r20190131/zrt_lookup.html	9.7 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/html/r20221207/r20190131/zrt_lookup.html IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 5ba05061c66d3e3a39f0573557899b0d f31c916b0c5ba50856c2d505c6a07ac2e3703dea 821afaa0abe5e4fb2292f52492b24ad0e290f7c43766602293856e911b5d1499 Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	667 B	2023-03-07	2024-04-02
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:12 Last Seen2024-04-02 23:20:19 Times Seen625 Hash 266fa50e801a713c1a404874cc1e21e5 9f01c436794411577f8137a87cdae54b7edb56f6 2264dec516e93bd143e1888320e2764d38aae7bb9aa3b2822c4095a6605f24dd Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	12 kB	2023-03-08	2023-03-12
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:14:40 Last Seen2023-03-12 14:26:11 Times Seen1 Hash 35e6bf4b53f667df39b74f4a78b27acc f158e87d211c02f1736d92beea6c72382bea512c fdf2111cb2aef378b33ad2c2633933bda3d94fd93c70fede5882d6c9ad80898c Loading...

	googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349	770 B	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6373705936907274&output=html&h=280&slotname=5783772548&adk=3286587177&adf=1589166693&pi=t.ma~as.5783772548&w=1200&fwrn=4&fwrnh=100&lmt=1671811849&rafmt=1&format=1200x280&url=https%3A%2F%2Fcrezu.vn%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&dt=1671811848860&bpp=1&bdt=1859&idt=199&shv=r20221207&mjsv=m202212060101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D12ac43a1f3c8ba45-22ed74f453da0031%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MbV13-UoJZYau7Bn_sjsFO_Ip4Crg&gpic=UID%3D00000b973e69cb15%3AT%3D1671811850%3ART%3D1671811850%3AS%3DALNI_MYHpbwHW4-H62vWoYrpWmu64kz8WQ&prev_fmts=0x0&nras=1&correlator=7348308282102&frm=20&pv=1&ga_vid=1763168227.1671811849&ga_sid=1671811849&ga_hid=400953938&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=34&ady=1890&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C44773809%2C31071220%2C44780792&oid=2&pvsid=1465438082736922&tmod=672788501&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=ArcKPGFccJ&p=https%3A//crezu.vn&dtd=349 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:03:21 Last Seen2023-03-10 07:03:21 Times Seen1 Hash 13eedae9b76b0a86bd9829fb1bd7af32 18d14240d22c1135f93cf1333a0153bfa4090db9 7f82864e98b6adda87840e7bc10a6ecf3c5c4b12e9aa8baf97dfff7d4f9fc888 Loading...

	tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/qs_click_protection_fy2021.js	18 kB	2023-03-08	2023-03-12
Pretty URL tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/qs_click_protection_fy2021.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:33:16 Last Seen2023-03-12 14:35:21 Times Seen1 Hash 8b9321f847dd35f8b9d7bf4b2f2638d0 a54f3f434e62752fe4653c21b611eb729d56e9d6 000cb4237204c839588365b865b4ceb28c4d78ba054f6e5a4c7a5e25f36e0c9c Loading...

	cdn.crezu.net/wp_js/dist/common.js	147 kB	2023-03-08	2023-03-12
Pretty URL cdn.crezu.net/wp_js/dist/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:54:36 Last Seen2023-03-12 11:54:29 Times Seen1 Hash 4996f1a2917ba55aa9392eb02679a1d2 87a78fef6e52b0fae7cf09b2d73bfaca634547a6 cf2860efcfb8a10f8ff538ba2557fe0ed7afd18a14c4539a2a788305734d141c Loading...

	crezu.vn/	488 B	2023-03-08	2023-03-12
Pretty URL crezu.vn/ IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:35:24 Last Seen2023-03-12 20:13:07 Times Seen1 Hash 4d8c78ea6a81f88dd60f9496776ff950 c3610fdc4868a6668cabc66d147300ee3578dc52 437fbac922cd71c8156120219b9c4814f42f4831c030fa74247f9b691d12e31f Loading...

	crezu.vn/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-27
Pretty URL crezu.vn/wp-includes/js/jquery/jquery.min.js IP 35.229.199.189 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-27 02:39:29 Times Seen31858 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com/v6exp3/iframe.html	4.4 kB	2023-03-07	2023-03-17
Pretty URL p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com/v6exp3/iframe.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:52 Last Seen2023-03-17 10:41:52 Times Seen1 Hash d828c73904f6478d0ab75dfa7113d9e9 5cdfe8ad7c199f1b8bec450d10c59996c0c252aa 62bd43fe6cedc84a05f5633c50f4a11cf623e26b7e82134c83c825db31fa5118 Loading...

	pagead2.googlesyndication.com/bg/3WpNOUgrN-_pxVw2NAHVNtofer_w6aLb3ZHXGHAM44Y.js	37 kB	2023-03-10	2023-03-12
Pretty URL pagead2.googlesyndication.com/bg/3WpNOUgrN-_pxVw2NAHVNtofer_w6aLb3ZHXGHAM44Y.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 1a81ac7708e7b2a03c1b65e9fd0a165e cabf8e49c526e233dc38fdf881915a262c44016b dd6a4d39482b37efe9c55c363401d536da1f7abff0e9a2dbdd91d718700ce386 Loading...

	tpc.googlesyndication.com/sodar/sodar2.js	17 kB	2023-03-07	2024-04-27
Pretty URL tpc.googlesyndication.com/sodar/sodar2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-27 00:51:49 Times Seen17696 Hash 2cc87e9764aebcbbf36ff2061e6a2793 b4f2ffdf4c695aa79f0e63651c18a88729c2407b 61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb Loading...

		Size	First Seen	Last Seen
	#1 Eval - c6ae6cacfcc32d8dede04611dbfa4ec7	55 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash c6ae6cacfcc32d8dede04611dbfa4ec7 5c48eb70cfc7417595164821ab607a91bd2280fa 773ad0aa11c6a57aa1cb906c233effd234453359b3028a78d2c27d984f4d9ea8 Loading...

	#2 Eval - 5dbc98dcc983a70728bd082d1a47546e	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-27 00:49:35 Times Seen11475 Hash 5dbc98dcc983a70728bd082d1a47546e 02aa629c8b16cd17a44f3a0efec2feed43937642 8de0b3c47f112c59745f717a626932264c422a7563954872e237b223af4ad643 Loading...

	#3 Eval - 3fec914df575d6cdecccd60d1290c9cd	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 3fec914df575d6cdecccd60d1290c9cd 0156017fc4bf29d6c6501f6ee8d212a9ffdf8fe2 514c371ab32dfdd8a7ef7e77b4f310058d661802a1328daaaca60a244bc126cb Loading...

	#4 Eval - c5ba59ab2b6d26a09ab8c9d40430e596	79 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash c5ba59ab2b6d26a09ab8c9d40430e596 09937159bfaf30daa2b7ba9201170a524a464472 d73189755a698bff5599bb1934180e8d4e252093c99cb4d02c66eafffd6d38f3 Loading...

	#5 Eval - 29fe827f7e79a22c8a4330814240e0d2	470 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 29fe827f7e79a22c8a4330814240e0d2 278baabe6a5c184d5fc15abc52b0defb1b284e1e 1c073edefa96be28dc2bbbdc037f09f4a431cf83c5aac4eeaf189ed62cc4a4ec Loading...

	#6 Eval - bba4e665eb25f16172f10fe669bb3eaf	350 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash bba4e665eb25f16172f10fe669bb3eaf 8efed1f9fcae3220adb10967e4d083daee0e8358 3a4c56ea34b242495e8aabcd8895e409100b51ca53e80db842ce37efec999783 Loading...

	#7 Eval - 3728cf0389729ede180ee77bf94994eb	66 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 3728cf0389729ede180ee77bf94994eb d0f6e62094895dca811549462cf9e242f21999d7 b7c40189d28477a4efc9fe523678eec3d1e6cbf21efabfc276b170232ee8d8e4 Loading...

	#8 Eval - 17f4edc649333ccb8e665537c15b1d32	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 17f4edc649333ccb8e665537c15b1d32 91e97fada27cb5a3d3879c38080195d2eed79e72 cba930d58c935cc7cd3a519dbbe543a53aef9867449fbdbdec30adb71281570f Loading...

	#9 Eval - 5da90b514748e8450af419dc7f42def0	26 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 5da90b514748e8450af419dc7f42def0 d263dbbf9a2a6800737d19191305265c8baffa5e 5e3c0a902b570b2d3117087bab583dbf4f88ab1b1ef0e8d3e9121c66d5dcba66 Loading...

	#10 Eval - 72b923c3a3060103399617d70b0859b0	2 B	2023-03-10	2024-03-11
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-03-11 00:17:52 Times Seen64 Hash 72b923c3a3060103399617d70b0859b0 65c90435cfea3bddd8f2b380b122899721fe077a 21041b0f2f72b3ad8518093ee1ad3f5eba5694e6d4819cfe775583a450f103ce Loading...

	#11 Eval - 5bc574a47246f122016869b32a6aa6f0	2 B	2023-03-10	2024-04-17
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-04-17 16:45:39 Times Seen393 Hash 5bc574a47246f122016869b32a6aa6f0 466aee172dcb133d1a14592b22c63b7de3030485 8a934fad7bbf4b682c9ee824d3fa38633175d52dc789790cf254dbf8b69e9ff3 Loading...

	#12 Eval - ed2b5c0139cec8ad2873829dc1117d50	2 B	2023-03-10	2024-04-03
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2024-04-03 06:16:49 Times Seen578 Hash ed2b5c0139cec8ad2873829dc1117d50 db3d405b10675998c030223177d42e71b4e7a312 b8d31e852725afb1e26d53bab6095b2bff1749c9275be13ed1c05a56ed31ec09 Loading...

	#13 Eval - f9b31758c70ec12f546e5253c8e223cf	328 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash f9b31758c70ec12f546e5253c8e223cf 8b427055d80e895ea7816ebe36e83e87e1977434 ad4fa45fc2b689ecf0fbeb6b2200536013461b11b51386f68659142588d9c7fc Loading...

	#14 Eval - 82b653dce8debdce2928f0d5f4daa3d1	128 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 82b653dce8debdce2928f0d5f4daa3d1 d2e7bded19f469571493a5f6f0ad22195b13aba8 230f8a9508768444f7e11c75e48338e1225a8db3b565ff9288ec11b4db76501b Loading...

	#15 Eval - 095cffea08219e91187e726c1707958b	330 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 095cffea08219e91187e726c1707958b 2eaf0b90bac1417edd5aa2079b2e8bdd1d8a2572 12ec4170bc9a62b2e1cc25f91aa8a865e57fb08de350e13e1f333976fec0bdf0 Loading...

	#16 Eval - 925ab312a51a924ab68d9812baa788ff	2 B	2023-03-10	2024-03-11
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-03-11 18:26:42 Times Seen41 Hash 925ab312a51a924ab68d9812baa788ff 64c3f5e89864d5e803ba483fadc3c80068321744 60547bd9ab11c5459a6fffa441ed70d662c73f05c37822da5f3a653f95a9d2a4 Loading...

	#17 Eval - 46c0ba23922ec51b76c7c3e93685da3e	2 B	2023-03-07	2024-01-19
Pretty Observations First Seen2023-03-07 17:52:42 Last Seen2024-01-19 08:52:39 Times Seen99 Hash 46c0ba23922ec51b76c7c3e93685da3e f27f0b2a81a3f6a03b3f675019f84b62e73045fa 6d50c9d1a88bbe7f6420dc07cbc7bdd02e9bfb7dfec29c0b5a8226b362bb5e87 Loading...

	#18 Eval - 89ebb2ddf156d00a89dc8e840ed54ac2	152 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 89ebb2ddf156d00a89dc8e840ed54ac2 89269d9db20f2e40468e6e50daf1646292321ef8 a7eccafc7f9a87b47f3b66e552debe5f0750367f81a78d6ac0c9d18bdff49a51 Loading...

	#19 Eval - 9489a9c54c8a4ce4fb9b55309f9b52bc	258 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 9489a9c54c8a4ce4fb9b55309f9b52bc fa079e8f1b7790b645486553abfe92f53e3f9718 3f5ee1f6737044c456a07579e4ed2ee07d8cc4e55ecd9cfa961faa7242693eef Loading...

	#20 Eval - 28983a4a5ad0e8fa64f05cba6667bdc6	132 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 28983a4a5ad0e8fa64f05cba6667bdc6 62d760d046148169c32b405f86e9eeff9165e040 68db7c705d5aa47df066bd71d2968772938fed349a322f2db0bfb6f53b5c099e Loading...

	#21 Eval - 8e7dd5d3e76aa952e21999a5537dcffb	2 B	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 12:25:56 Last Seen2024-04-21 08:50:28 Times Seen792 Hash 8e7dd5d3e76aa952e21999a5537dcffb d7dd16a449d381860d0e1e8c293facbc8b693892 aa1be933fec0f68c7d1ef42b15259b73f88c582d5f535753d9ad647394deefe8 Loading...

	#22 Eval - 92eb5ffee6ae2fec3ad71c777531578f	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:11:47 Last Seen2024-04-27 01:54:12 Times Seen10499 Hash 92eb5ffee6ae2fec3ad71c777531578f e9d71f5ee7c92d6dc9e92ffdad17b8bd49418f98 3e23e8160039594a33894f6564e1b1348bbd7a0088d42c4acb73eeaed59c009d Loading...

	#23 Eval - c4a5b5e310ed4c323e04d72afae39f53	2 B	2023-03-08	2023-10-21
Pretty Observations First Seen2023-03-08 01:12:09 Last Seen2023-10-21 23:16:25 Times Seen50 Hash c4a5b5e310ed4c323e04d72afae39f53 d4e002f7e91722e936830a810412fc60ad9ce963 88ec733fe83cac4e9bfac07dd71605664848a76ca98465ef7d518574828b0e91 Loading...

	#24 Eval - 1c83f06b8cdc40d0b4b4390110b6e55b	94 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 1c83f06b8cdc40d0b4b4390110b6e55b c9b6ed7dc437ee7066f6e6d558ceee15432455b9 caee235168340daa8c6b28db655d8844bcdb00cd2c198906ef59e6b16d1cb88f Loading...

	#25 Eval - c564a5b95926b87e6aab28b5ba26a544	215 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash c564a5b95926b87e6aab28b5ba26a544 8dac6efdd08f57ccdc82711372618b511b734dd8 308246a044891aaeab586166cd583cb41f65d41e48cf067f3a2254bf5d78a2be Loading...

	#26 Eval - 79e9bdbe28dd1842b0705771998091a5	118 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 79e9bdbe28dd1842b0705771998091a5 4f4968ae50895630ce191125eb8697f6b7e38de7 b45e72baf5af4c18e11881acf708dc396d7ec0ebf7e4e1a0c7d241ad394eda35 Loading...

	#27 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 05:43:05 Times Seen53342 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#28 Eval - b3081e636c51350d1dd4e29f9e00599e	26 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash b3081e636c51350d1dd4e29f9e00599e 0daee2bc776457e77b483bf918cec6873449a95f 052ab45cf23dc6b338ef6d9b45c1103d99558abe9bc9ec9d970462c990d60a6f Loading...

	#29 Eval - e3b2167c33540c2748e37843224b37bc	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash e3b2167c33540c2748e37843224b37bc 36ac52e543705e8d3b55e80f9d07d2a89210ddad 5cd9cb736ccbbc4dd48dec119102a5e1bb6e50d6b433d9a28e25b2b0accba8e7 Loading...

	#30 Eval - abc28407a441723537cce0ad128fdfc1	133 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash abc28407a441723537cce0ad128fdfc1 48b9c538bd6901e30f95352756d34d63b1e81f39 2a6f0221adef9f99c30d8600cfe76b9be8b794349a8e4e10eb528da2fe74a0bf Loading...

	#31 Eval - 0fb42ee31363a5c1ce3534a4a08ff227	134 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 0fb42ee31363a5c1ce3534a4a08ff227 c96eab28ff73e08507450c5675fa4a33977045bb be4fcc2b28e33ee3a69083bb5b98382dbf3b3b80722d8a4aaa90186f634c4636 Loading...

	#32 Eval - 8d92abb98ff2403efb9ebf35095a980f	427 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 8d92abb98ff2403efb9ebf35095a980f 7c864a7bd90fef2635b116257e6aa6ee31e79a6d c0f7f74cf33e5e40c9dc07f63bc22f5af6e977ef26f8517bf5fa2f922252f9e3 Loading...

	#33 Eval - e78bec28dfd8d77a8c99a1fa9bc5e584	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash e78bec28dfd8d77a8c99a1fa9bc5e584 4aeec074b13118e642b0cb534db843c790f8ba53 161f6a76043ed3a4e2190f98488f86d0e5b3a5427cb6c9f9546fc06b761f2c88 Loading...

	#34 Eval - 9836d5be63638e58d838453b236051e5	46 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 9836d5be63638e58d838453b236051e5 7f6b5b2a664e307b610e5260c122d691a234409c d06c702728c0930cfbd0024fdd623fa1ff36529823b2360cf716a44662f32541 Loading...

	#35 Eval - 82cce9b5c24502391105742c8d5f8dcd	44 kB	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 07:03:22 Last Seen2023-03-10 07:03:22 Times Seen1 Hash 82cce9b5c24502391105742c8d5f8dcd 8609f87d997e8e7b625417da506989906b510c87 f647da22070054afcc01966c69ba816542f0bbb11d0efc6731094ba2348070ee Loading...

	#36 Eval - 8a07f2998754e3bd84c5b2705aee6fc3	70 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 8a07f2998754e3bd84c5b2705aee6fc3 31452841e836307cf25e8b958cbf2ac3ba67b26d 3309285089a713aba648e3874412c0014585a27b483e934f889c641fbd891cd3 Loading...

	#37 Eval - 6ea2511875d303e818b501704258d889	114 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 6ea2511875d303e818b501704258d889 9ec4fecb63f1b3e6a7f890d5a451edf7e5aca88b 8a1bcf3dfa41f98f742008015882107381de1cc50ea62248e73073cf412abefa Loading...

	#38 Eval - 77f4d1590598422d93119ea426c12602	253 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 77f4d1590598422d93119ea426c12602 a0325b2c6770719fb388eb1c675b07da0d47cb98 2490adcdf3f6529e0f80d455bf1d04dac9577d3336b4b8bb27b29093ecbbda64 Loading...

	#39 Eval - 3a64428573da54e3d3413e289406b16f	82 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 3a64428573da54e3d3413e289406b16f 4cf52e0dc396dd40f24faa2543c41ea8e348db0a ce6567dc9ae16be9fde9b1cfef34025ae92aaf0b05fa25b6fd172f4864fd0259 Loading...

	#40 Eval - 574fe715cc6d7d3f26c5509d9f485f5f	137 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 574fe715cc6d7d3f26c5509d9f485f5f b5781466c4c9131a794458eb387402190ea81e78 5004fd0ce5eedfcb4f46d0118eb80f4c308ff4d6b5fb5a14469430cc82c0443f Loading...

	#41 Eval - 67824ecf84f5816f07b74fa956bdbcd2	2 B	2023-03-10	2024-04-17
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-04-17 16:45:39 Times Seen134 Hash 67824ecf84f5816f07b74fa956bdbcd2 1460dc33fdc66db88bdcc5b32057457efeed3ce5 97cc252894654d521fdaa06ca7762f8e5634e13ad3843c0422c38b6c972afe71 Loading...

	#42 Eval - 9e3669d19b675bd57058fd4664205d2a	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:11:47 Last Seen2024-04-27 01:54:13 Times Seen8114 Hash 9e3669d19b675bd57058fd4664205d2a 7a38d8cbd20d9932ba948efaa364bb62651d5ad4 4c94485e0c21ae6c41ce1dfe7b6bfaceea5ab68e40a2476f50208e526f506080 Loading...

	#43 Eval - 7457cdd15d09bfc6c4dbb5d2b6f87390	2 B	2023-03-10	2024-04-11
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-04-11 21:42:21 Times Seen584 Hash 7457cdd15d09bfc6c4dbb5d2b6f87390 f9aca9fb84cee1f117a742e47ee30540dc7ab110 9a526bb7420e1c78eab1106a3238449735c3510cbf1d60bd1de8a3ee5358dd06 Loading...

	#44 Eval - cbcdc42735becf4a9f36146d1b915e7b	322 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash cbcdc42735becf4a9f36146d1b915e7b 94c083e22ab54b9d79c374a064fd56d1478a2db6 80bd5a7b8d67454c190fecd46b1f1ea28d59a9dcb51e26c14ba9169224ef6671 Loading...

	#45 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 05:43:06 Times Seen53303 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#46 Eval - 4d693a8619963f7750462b678770e604	2 B	2023-03-08	2024-01-19
Pretty Observations First Seen2023-03-08 03:40:36 Last Seen2024-01-19 08:52:39 Times Seen1626 Hash 4d693a8619963f7750462b678770e604 91052b1cecbef0d754d1ca776f805e3a4876d0ac 1d92ad4b6987fa0347cc5d2fb6cf9e47c83f4f6caeb3b5ef6f629730528921c3 Loading...

	#47 Eval - f08146ba08e63aefc78ef938af9e39e4	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash f08146ba08e63aefc78ef938af9e39e4 0529f3a4c143e1f30550ed0eb4a1482e92c3e572 74d221a2cf09fad87870acbd277e1f0e9de4d1c8051e60fbdfbab984b4e434eb Loading...

	#48 Eval - 19e844dbe03be2c301084c9435c03f9a	92 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 19e844dbe03be2c301084c9435c03f9a 86633eba8f09a9eccaa318df5edbe3730d467a38 9406caff70a23120b9fb2a05826754dbe8e2504bb83ea5d9d59209d05205afe5 Loading...

	#49 Eval - 85d9c0963dbddcb70b01d50c7700946a	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash 85d9c0963dbddcb70b01d50c7700946a 2e2d5fc1907886e274704148ed5aff66c85ae2c8 3fba8ab4d93fd3eb45c3cde87bb0f85c0830979e36c5eb5cff7a2400a8d945c3 Loading...

	#50 Eval - 0227c13b4ec28c5dae11889299d64135	2 B	2023-03-10	2024-04-27
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-04-27 05:43:06 Times Seen46 Hash 0227c13b4ec28c5dae11889299d64135 d161f2f0b05542586ed1c7279376fe5f3bf1c777 e019e899d2babc91425a538442bf9fc0a0fe64abce93e918e66493a38238f798 Loading...

	#51 Eval - 2136a7a819de582f07901a51826c3597	255 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 2136a7a819de582f07901a51826c3597 fb06823c526c6da6a34998f72d1b42aa9060de5a 20b4d185e99b97ce90e34ece3067a83eb5deb6e9de3ebeb59deda9bdf53af24d Loading...

	#52 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

	#53 Eval - cf0b6e8087b2bdf96b81b6f883694c2c	26 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash cf0b6e8087b2bdf96b81b6f883694c2c 1c4f235db5e7a634708c0cf62214174cf05ca235 f95070ed25370fd0802695a63a26ed9262f2dcfc8aa6a36e94041ab8ff914a19 Loading...

	#54 Eval - d9e73ae08ada146ed5d3312f9cc933dc	95 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash d9e73ae08ada146ed5d3312f9cc933dc 5e3d1e83933ad532a42a16dd0d45ef079943c037 000967633a63adc74675be72c13c16b2db789df3b727c91ccbabee73ff59622b Loading...

	#55 Eval - bb9289563f12b1b99053f894f5f38fd8	140 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash bb9289563f12b1b99053f894f5f38fd8 61499a72199f60e67c6e0861a851a1688409855f 71058e15b728ebf8d5b782b12d86fa87578f268873aef593bf0dee2fd8278a2c Loading...

	#56 Eval - 50763098156171549f55b4dcc05a2434	80 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash 50763098156171549f55b4dcc05a2434 1c5fd0ac151bdb106f2f0bf4d55e8c0a882c7530 9e794a90e2d14ffef9ae19bc0abf9c4d7a1296295e8f0b8a5f41e8451d92cc44 Loading...

	#57 Eval - c1d9f50f86825a1a2302ec2449c17196	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:11:48 Last Seen2024-04-27 01:54:12 Times Seen8361 Hash c1d9f50f86825a1a2302ec2449c17196 7cf184f4c67ad58283ecb19349720b0cae756829 44bd7ae60f478fae1061e11a7739f4b94d1daf917982d33b6fc8a01a63f89c21 Loading...

	#58 Eval - 3309e29ccb8e65756d1a5c0244c9a977	79 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 3309e29ccb8e65756d1a5c0244c9a977 6fbc0a9208c8e31872cb256627e10e3c3ea09b16 7943c0dc9fff92d425ad5ddacd31b73d73e79c4b4178110cb0ed0e77ee86f739 Loading...

	#59 Eval - c3eb467d0afd53be46999805c970aa6b	79 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash c3eb467d0afd53be46999805c970aa6b 6d16c954e5e9e76f2aa8b6f17aa2f37d1cf7e0e7 72d6c57ab3febee686b15e1ae53d10bc863990be82f4d75d9b2ff05a326a0d07 Loading...

	#60 Eval - 840911cf83525e9e7396e2352628c685	295 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 840911cf83525e9e7396e2352628c685 7003de14a4981b2245c338c940fd51090dc925ae 1a5242047a1c86b1f3d87421c64282b73172461ddb82821aaa8e97752ff0f2ea Loading...

	#61 Eval - dba20b3b4cc5ad9ed6d21499a2f3b881	22 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash dba20b3b4cc5ad9ed6d21499a2f3b881 0ebd7659f5d46197346b57d87b2e99ef68fba56c 6bc7774971dd3277e04d860498b46c4ff37d575f734b6de024a8e189af292b15 Loading...

	#62 Eval - 41bdefff7e109588f5f1f70f9f039058	598 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 41bdefff7e109588f5f1f70f9f039058 3b3abebb7fa48058c5d9d9ea9103ecadd25b8d4f 5df54f1221a87e26f7105ab3f96f5e772b6c810a68c284c924c4b8ef5c5c52fe Loading...

	#63 Eval - 7aa09691729f8b5160ee8fc0a854cd6d	820 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 7aa09691729f8b5160ee8fc0a854cd6d 6afa8f95264ad295c4ec4e7fa8be54824d7fbb28 c80f91c73701bd71ff37e1fe277c44f508df4f55b1cd01ff2974433c59ac92c0 Loading...

	#64 Eval - 6ab3fddf206b44f4e81316b555c38302	593 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 6ab3fddf206b44f4e81316b555c38302 89f6ed214cdf2ad6a18e20debca2b622a78b539a a4d345686cafa3cd5bdc3cb4b6755c55d3c9724d7a6bfa7554ff139c1ed5beb2 Loading...

	#65 Eval - f766019a16d6507c72ffa4527ceb893d	2 B	2023-03-10	2024-01-15
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-01-15 18:50:46 Times Seen2 Hash f766019a16d6507c72ffa4527ceb893d 48400d235c432d1eea2a667bf266329b46abf7dd 4da97f504eea5b0f77731a48a1fefce71f8fc07e093558715e34c556cdc2186c Loading...

	#66 Eval - 18670245849a7ba01669bdac40144a82	2 B	2023-03-10	2023-09-06
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-09-06 08:34:21 Times Seen294 Hash 18670245849a7ba01669bdac40144a82 e3abab127fc08e943b5af4ddc724ad02fac18949 82cefa8283d30fda9c86f8a976b95d79b395d4cff62a3c8242c7153039bfcde6 Loading...

	#67 Eval - 1755f21afb4983923e13239d01d41465	217 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 1755f21afb4983923e13239d01d41465 6a7bd1342ffde2218308163aee9897fc2e3d8bc8 50458afc34cdba8763c4e46142cb37930aebef6b88ec90f12192407dbc2fba8c Loading...

	#68 Eval - c6af2a3e2d2bad793ae8920cf497ab24	458 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash c6af2a3e2d2bad793ae8920cf497ab24 c10e33b855ead1c70ed5d5ce1982a3cca396246e c24a448a20ebfebe53c3d7a98524228106daba5bcaa7e10d77063c9cb93f936a Loading...

	#69 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 05:43:06 Times Seen54734 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#70 Eval - 5fad87520737aeca2d30d89bbd7f9abb	818 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 5fad87520737aeca2d30d89bbd7f9abb d569902b3ee21a555184ddb18a269f6126e15ed6 7a84f6d780d191c05b9fa09163facfe8f310c1f30eb61d06882c711afd64fb71 Loading...

	#71 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-27 04:27:53 Times Seen48890 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#72 Eval - c5294fbd746deb7b8aad8c8851955987	204 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash c5294fbd746deb7b8aad8c8851955987 348d58f6bf3c3bc40582d7d13d42bf98964b96e7 f3bf8a2b70756951313b279270b54b9a504ff020bb407f0a27b1a156e44b804e Loading...

	#73 Eval - 43575ccd573f6ce83c2ce1c4a47cdfdc	2 B	2023-03-10	2023-11-04
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-11-04 00:02:53 Times Seen127 Hash 43575ccd573f6ce83c2ce1c4a47cdfdc 768f85adb8ac99e2da94600ba3b23d92d468b742 128e034a10d37f80cf41cabfb95c452c6ebc72320d5545ae443fe85c39123067 Loading...

	#74 Eval - 5369ecb7a64c1266c4b9c6fe64cbeb33	143 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 5369ecb7a64c1266c4b9c6fe64cbeb33 ec901454d1af77e97c24840db0acfad47569d81b 067f4373a7cba30fefce4b6d5c1d60f7f06e35af14370e4ef87e06dc81a11351 Loading...

	#75 Eval - 3f8d4dd2f7b15192476bd3031d3d8129	96 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 3f8d4dd2f7b15192476bd3031d3d8129 bd1e6a4e43e5565165934ef5596da6446c8f754d 423ef826a4552f18382c0f358064f21c48cb74da26e7c0119d091aa8a2386dcc Loading...

	#76 Eval - fe612dabd30f05cc1b85034a6fc1d66b	639 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash fe612dabd30f05cc1b85034a6fc1d66b 7979d4d8333caed966ef8f55e4b42bafd1460ca5 d601306c22211270f8f245f60126b029a4329e3bf84da68a1338a8f223227533 Loading...

	#77 Eval - 281147af02b6a11e14af8ee574265cf3	132 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 281147af02b6a11e14af8ee574265cf3 4d65fb88f95c71b7992a5d71b1270a1aaac44250 27f8a669d30a4ea1550f76b0d411643e8943a8df53be206fd1ad86a44997fb9f Loading...

	#78 Eval - dd4521e9cabb012393066ab0f88a01ec	42 kB	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 07:03:22 Last Seen2023-03-10 07:03:22 Times Seen1 Hash dd4521e9cabb012393066ab0f88a01ec db98e03f7561f4b146aa020e0ccfbce05dc193e5 d0a27917cb4795e96848640fdda895915c44c9aa8bd9b918017b033c77b98ac0 Loading...

	#79 Eval - e87b1aca5ef086508b630d3790bf1a78	637 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash e87b1aca5ef086508b630d3790bf1a78 b8babff13f0ebba7de2365a161a85ea7562e4d33 e165073a9a24ce7a797764f785bfbb62a3f8233396d3008e53989d31e85ccda2 Loading...

	#80 Eval - b511bc0fbe3eda14bbd00521c33abc1d	59 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash b511bc0fbe3eda14bbd00521c33abc1d 81c371b757d2c0e988ae4e909ad8df4634640b8b 06e0ed18f96e581b293b3057f218435daac96d1bf66476aa29301ef48b559e40 Loading...

	#81 Eval - b652f1b0707318e4aea82ad9786c2994	169 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash b652f1b0707318e4aea82ad9786c2994 8b84a8e96dafe1ab26b7d9a7b2b5b4a79f326209 21f00bd52560b4ebd85f7503a61d5e5cbc6429ef80e6d6015402151d4c4c192a Loading...

	#82 Eval - 6a5bb76730f9f2f6e7bbe43312bb2fce	78 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 6a5bb76730f9f2f6e7bbe43312bb2fce 07308450f21ed76149e0b1528425a8d50d7af4e7 5c7cac08af2dd747b0abbd95665fcd3700c18f5d17bebf4723c221bad69030d5 Loading...

	#83 Eval - 25d1a47533c226a66f4a8c2950a469f8	79 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 25d1a47533c226a66f4a8c2950a469f8 3f6b498ab74eff425ead7e4e10022a4e4f32cdfd 9e28ef45af9250e0640a6ea7659be647f9791d11a005d9b52e37cd5247b328a9 Loading...

	#84 Eval - 44c29edb103a2872f519ad0c9a0fdaaa	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:20:09 Last Seen2024-04-27 01:54:12 Times Seen9232 Hash 44c29edb103a2872f519ad0c9a0fdaaa 511993d3c99719e38a6779073019dacd7178ddb9 5c62e091b8c0565f1bafad0dad5934276143ae2ccef7a5381e8ada5b1a8d26d2 Loading...

	#85 Eval - 90532ae55589b9e3c0f373feb36c0f0f	77 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 90532ae55589b9e3c0f373feb36c0f0f 35ae2a1b013b19fb7c4b757e70320dde1ee3830c a476097aad02722f46f875b4bde5cfd260d5e3407dce26ba4ccc2ea2ded241e2 Loading...

	#86 Eval - 6f8f57715090da2632453988d9a1501b	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 12:09:42 Last Seen2024-04-27 04:27:53 Times Seen7969 Hash 6f8f57715090da2632453988d9a1501b 6b0d31c0d563223024da45691584643ac78c96e8 62c66a7a5dd70c3146618063c344e531e6d4b59e379808443ce962b3abd63c5a Loading...

	#87 Eval - 5dd32b49edad78cb80da2c0d5dea76be	53 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 5dd32b49edad78cb80da2c0d5dea76be 1ced2afb506cbaaea3212202c81154b2a79193ee 5d9e4e23584186cd965339ddbac081e9c4e780a9e94372d91e1eae7174f50cd3 Loading...

	#88 Eval - 0f0702c0177224232011f2abb6a8e08a	70 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 0f0702c0177224232011f2abb6a8e08a 3aa111d4cf9d871dc1eb0e45f90300dbcc625ccd 4213bc13bff669f4cd686a018d3fb37b3cd390dedb07d3ff8fb35430a879145d Loading...

	#89 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 05:43:06 Times Seen53597 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#90 Eval - b28bbc28c157bb33b14dffa77f75ca39	131 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash b28bbc28c157bb33b14dffa77f75ca39 417fc84d2470635e83b82f686f88c26aaf8fae35 83193f7f53e3fc931e4121c66fa9bf30f9304a076b39e26701a89d31661636bb Loading...

	#91 Eval - 3b5ab1a0da193d2ba042ad648c4dd8f5	78 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 3b5ab1a0da193d2ba042ad648c4dd8f5 5d56d689e4df07c6938445f9547e7ba46d4350b6 0dc3913d311ca6da5b5a0e42a4b8a00f6eb6ec9e42ed5cc56a307b72397ce65a Loading...

	#92 Eval - 161efc186735513a5d3f3478bdef4f60	130 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 161efc186735513a5d3f3478bdef4f60 b592b19bd6fa5ab98206dedcf36be2a18dc0305b 2e73d7ce731f78666867c259b973950023d38002e5c3ab54a4e22e324c5b74f7 Loading...

	#93 Eval - 7e9293e90055a83d4943872232ff638f	2 B	2023-03-07	2024-04-17
Pretty Observations First Seen2023-03-07 12:02:01 Last Seen2024-04-17 16:45:40 Times Seen240 Hash 7e9293e90055a83d4943872232ff638f d7fc2445898a8879fcae598a4c99350afb325941 db5f1a085a445a011e36f2e5014265ae744db959b05c5097464d6982589f26f4 Loading...

	#94 Eval - 982a89d8fafe0b8fc43d331a554c4112	255 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 982a89d8fafe0b8fc43d331a554c4112 9354171b7b79c7b47e76de7be12feb849aa92cfe 3be8a329f2f86f08013812a7abc5976ee583ec782cfc3facc306d821f2e22958 Loading...

	#95 Eval - bd4496eb0285aba06273987971f6063a	35 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 05:43:06 Times Seen38701 Hash bd4496eb0285aba06273987971f6063a 8c7d085c9d54b41debd437430b6852de7f898857 f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b Loading...

	#96 Eval - 181bf7c460729e3fd31687b2dd0109e9	212 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 181bf7c460729e3fd31687b2dd0109e9 3f191027d4270df42f371a81d4366304b4b19908 3388d478eceec53f9fe9386b77e04c5dc590e863229a03b7664ae8c055638ff2 Loading...

	#97 Eval - 7b734cc4e247937f2cc0077ba3292ede	96 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 7b734cc4e247937f2cc0077ba3292ede 0258c6a709baedba3d790180a8fa38cf2b03c7ea 53420687857c56054bec295d03a1d7f03a258e168d919a0f6d9b23a32b9a9744 Loading...

	#98 Eval - 4d6da6d163bbbe170965f5feb20782fc	352 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash 4d6da6d163bbbe170965f5feb20782fc 471677cad4b8775a8d8931d05ec1cdfd2f1c108d bc340cd32ef0a49e03ca4cb7d295f29378be5fc3f9695cc3dbb5f2bc44e82a04 Loading...

	#99 Eval - 398041f2403231f1183af881e9e1564a	106 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 398041f2403231f1183af881e9e1564a 751ed4549a99e6f09e2c1677ce3bb962843ebce6 23aaf51df7ef3b2426f17c3a84c506cb16e70038d4222c9bd9c0cebb93cef4d7 Loading...

	#100 Eval - 76691d6c490242887e52e65aeb8e9512	2 B	2023-03-08	2024-04-27
Pretty Observations First Seen2023-03-08 21:28:20 Last Seen2024-04-27 04:27:53 Times Seen280 Hash 76691d6c490242887e52e65aeb8e9512 4150bdbfaf0d329db2f9728950bcf7f6fbf2b850 d2405c9dc2c5390a96ac362541444e1ece42aa3ef65cf795fd95be3ced21cf32 Loading...

	#101 Eval - 05184b2fec44bde3ebe5d5f386d7e1eb	2 B	2023-03-10	2024-03-27
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2024-03-27 15:25:43 Times Seen15 Hash 05184b2fec44bde3ebe5d5f386d7e1eb feabc42e06f3f4b9b1c1537b987e1f1c4025bc24 8df123a9f767bc2907f8da2c949427d32cb77f8b135fd0f85d06f2172138ef38 Loading...

	#102 Eval - 129c39ba240d944906ff48beb3081052	69 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 129c39ba240d944906ff48beb3081052 e23b73e8cdb6f10ee0cdf84af142c60e1ca960df 6e5a4a415819459ae5102c5f01d5697bc6c002121e6ba76c634e09636f512319 Loading...

	#103 Eval - 4a8a08f09d37b73795649038408b5f33	1 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:15:05 Last Seen2024-04-27 01:54:13 Times Seen8902 Hash 4a8a08f09d37b73795649038408b5f33 84a516841ba77a5b4648de2cd0dfcb30ea46dbb4 2e7d2c03a9507ae265ecf5b5356885a53393a2029d241394997265a1a25aefc6 Loading...

	#104 Eval - 75870d4dc35f195961b1057feb2de508	77 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash 75870d4dc35f195961b1057feb2de508 68364e176813e43ca7e784d6c24b949e9f823f02 e6a0a62d361ebfcd294aa365b551cf06ddbf24753f55ce1ad0476adf4e134883 Loading...

	#105 Eval - f6d5293b9884fbdac0240af5a8e34846	159 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:02 Times Seen1 Hash f6d5293b9884fbdac0240af5a8e34846 ded6267fa4c73a85cf660e04f8489570f4a861a7 8ce4f62eafdacf8eec86b86c247d1f8ff471f00e5e5ff4e23cd7b73097091aab Loading...

	#106 Eval - c202b45151cb4887dec967794f7bd0f5	92 B	2023-03-10	2023-03-12
Pretty Observations First Seen2023-03-10 00:34:24 Last Seen2023-03-12 19:30:01 Times Seen1 Hash c202b45151cb4887dec967794f7bd0f5 967023c5e5118f028ecdf7c69436ce750570a7d9 6ff9e6e5f5b4b50594e223989134c43802116120c7dda23de4979b40f38de279 Loading...

		Size	First Seen	Last Seen
	#1 Write - f315f5f2c187a05af1ace62d5f6aa477	54 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-27 05:43:06 Times Seen3861 Hash f315f5f2c187a05af1ace62d5f6aa477 47d77a2a1665cb6202028ecd89b50920287d9148 166a4ec3cb90d525f7f744c7616c01b36bebd6dcecd486c8f5be14ccc0a7b3da Loading...

HTTP Transactions (106)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d6a971d765338f107fe9d2c67fa4bbdf
a72bdf191446a37fa0420cc9d7c087aaff757cd6
dc5291c136b0b81621a02679a31f6b7c852e2803429d54c2a9afcc8edf031328

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC5291C136B0B81621A02679A31F6B7C852E2803429D54C2A9AFCC8EDF031328"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5799
Expires: Fri, 23 Dec 2022 17:47:24 GMT
Date: Fri, 23 Dec 2022 16:10:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e300ca7d2d586dd1ca0c185ef6b0da5
3914cfd3b7aa6e1d1117bf509319479e489ed2a4
91c8810ad137faf4393f7d15f9c619c06d124a7aaebfa21290dca614db2c7757

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91C8810AD137FAF4393F7D15F9C619C06D124A7AAEBFA21290DCA614DB2C7757"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9186
Expires: Fri, 23 Dec 2022 18:43:51 GMT
Date: Fri, 23 Dec 2022 16:10:45 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 23 Dec 2022 15:34:46 GMT
content-type: application/json
age: 2159
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7f0ad5c2841a345f98197c2f1e86f4d
84cbfd91934a8715baba4a2da46451f35597c99c
be30540f2e06a3565c9b38bdbb9691f707d692b196bdcef5d671708aa9609795

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE30540F2E06A3565C9B38BDBB9691F707D692B196BDCEF5D671708AA9609795"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5325
Expires: Fri, 23 Dec 2022 17:39:30 GMT
Date: Fri, 23 Dec 2022 16:10:45 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 3s0dzrvME4lEA7fN2iMlu2s9VO0n6IUwtpouoIEtN15P3pF5cHRssl1xTcLhfsxKCMTndM7dL2k=
x-amz-request-id: FDKQ187TTVMCBPV9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Dec 2022 15:56:15 GMT
age: 870
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Dec 2022 16:10:45 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

crezu.vn/

35.229.199.189

301 Moved Permanently

178 B

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 23 Dec 2022 16:10:45 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://crezu.vn/
Referrer-Policy: no-referrer-when-downgrade
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 23 Dec 2022 16:08:02 GMT
age: 163
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c615c937e6371bda0824b44af0c21c74
b097d69452bcc60085f563d094388185c26f0e7d
9f1194921b5d57dd52a217a47e69ad4cec7c08378c73c8dfccc3817119fcbb41

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3458
Cache-Control: max-age=150819
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:46 GMT
Etag: "63a56fa7-1d7"
Expires: Sun, 25 Dec 2022 10:04:25 GMT
Last-Modified: Fri, 23 Dec 2022 09:06:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.214.64.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.64.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6EowEGL5jg7sNNE7omKvXA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZVW4LQPrd9PrHf1nZCR5MrQt0v4=

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
f55c5f4e7a2ddeb2870ab56ec31e5e72
77e3872bc508f0ba42ec6a5f1872ddd7ca09bd95
ba4bf790e73479a369001682338293df9e8b8a7b8283e94b35d61f6eaea65408

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 22:17:02 GMT
Expires: Thu, 29 Dec 2022 22:17:01 GMT
Etag: "77e3872bc508f0ba42ec6a5f1872ddd7ca09bd95"
Cache-Control: max-age=539774,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e877d15b521-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
f55c5f4e7a2ddeb2870ab56ec31e5e72
77e3872bc508f0ba42ec6a5f1872ddd7ca09bd95
ba4bf790e73479a369001682338293df9e8b8a7b8283e94b35d61f6eaea65408

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 22:17:02 GMT
Expires: Thu, 29 Dec 2022 22:17:01 GMT
Etag: "77e3872bc508f0ba42ec6a5f1872ddd7ca09bd95"
Cache-Control: max-age=539774,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e88fc870b02-OSL

crezu.vn/

35.229.199.189

200 OK

9.4 kB

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2768), with CRLF, LF line terminators
Size
9.4 kB (9381 bytes)
Hash
ab1d4429250eeb01bec1ee69d3f01439
7a39f0b42ac3537840d660905439775d0f9c4d09
5f4f6092eb1db690dc30121dd9c48837eb24872373d245b9ad93bb30baaef8cf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://crezu.vn/>; rel=shortlink
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b4064cd37eb4b1ac411189b0a7427ab4
23d775267bf9350ab08b1b28580ee5593b146d61
dc9c41cc8379d77eaba4bccb038ccd4e3b9cde1571cfe0e102c91b01881e239f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
13a926753424f47b8aaf8f2975487a17
a8b43c323aa83e7c209a3c40650fda82bda41c0e
d74c7ccb5093bfdebc48a5ffa25e025c3e9bc27c7d01f617127534ebaa8ced28

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 15:40:22 GMT
Expires: Wed, 28 Dec 2022 15:40:21 GMT
Etag: "a8b43c323aa83e7c209a3c40650fda82bda41c0e"
Cache-Control: max-age=429573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e8d4a11b521-OSL

www.googleoptimize.com/optimize.js?id=OPT-W6HX45D

142.250.74.46

200 OK

47 kB

URL HTTP/2
www.googleoptimize.com/optimize.js?id=OPT-W6HX45D
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
47 kB (46740 bytes)
Hash
d3a273d42f4aba32cd30f32dd9d6e077
d56b4f03dff177831989a213653a0500e468fece
adfc38b783798e25e832999850a37aea8cb26db5f389b471c24ba0d614cac99f

HTTP Headers

GET /optimize.js?id=OPT-W6HX45D HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Dec 2022 16:10:47 GMT
expires: Fri, 23 Dec 2022 16:10:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46740
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2

35.201.76.189

200 OK

22 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21720, version 1.0\012- data
Size
22 kB (21720 bytes)
Hash
f80fae0b587b789f7ff6d153eb6c9253
6facf7f293b0e4c9817c8c39ef206bda4998ceef
9fc022d568ea2d8ba6e55c4388fc8cf594fbdfbfbb47420ed1fbc1a1a9f9eff2

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-800.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21720
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Thu, 22 Dec 2022 10:18:53 GMT
expires: Thu, 29 Dec 2022 10:18:53 GMT
cache-control: max-age=604800,public
age: 107514
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-54d8"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2

35.201.76.189

200 OK

21 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21360, version 1.0\012- data
Size
21 kB (21360 bytes)
Hash
18ff681b6fd4b3645bd79be2e233db5d
3f442dca2316418bfe2bb03cd7381c11ddd8696b
8cb0daebe68af6edb17c8b3d6de089dadd6c650a1d35102b0b0d4b7f418f37e3

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-500.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21360
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Thu, 22 Dec 2022 10:18:53 GMT
expires: Thu, 29 Dec 2022 10:18:53 GMT
cache-control: max-age=604800,public
age: 107514
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-5370"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2

35.201.76.189

200 OK

21 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21412, version 1.0\012- data
Size
21 kB (21412 bytes)
Hash
382519586d60c7be70a094b4e31812da
aa3bab15388bf6a4f6c81fb55b8ed1b7bc990764
55f533905b01ab966780d976f024ffdfaf4ce43ac29144e0f16f8be140a65f05

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-regular.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21412
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Thu, 22 Dec 2022 07:16:30 GMT
expires: Thu, 29 Dec 2022 07:16:30 GMT
cache-control: max-age=604800,public
age: 118457
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-53a4"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2

35.201.76.189

200 OK

22 kB

URL HTTP/2
cdn.crezu.net/wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2
IP
35.201.76.189:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21592, version 1.0\012- data
Size
22 kB (21592 bytes)
Hash
d3e761b0f31f4426d434c1c149658c0f
26b413b6022045aca71e7d704fb328057aa367ce
1a184f7278e085eefeb8f573274e20d522bebf61fb47020103a8b1894a520fc4

HTTP Headers

GET /wp_styles/dist/fonts/montserrat-v14-latin_vietnamese-700.woff2 HTTP/1.1
Host: cdn.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 21592
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Thu, 22 Dec 2022 10:18:53 GMT
expires: Thu, 29 Dec 2022 10:18:53 GMT
cache-control: max-age=604800,public
age: 107514
last-modified: Thu, 20 Feb 2020 12:08:51 GMT
etag: "5e4e76d3-5458"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b4064cd37eb4b1ac411189b0a7427ab4
23d775267bf9350ab08b1b28580ee5593b146d61
dc9c41cc8379d77eaba4bccb038ccd4e3b9cde1571cfe0e102c91b01881e239f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
13a926753424f47b8aaf8f2975487a17
a8b43c323aa83e7c209a3c40650fda82bda41c0e
d74c7ccb5093bfdebc48a5ffa25e025c3e9bc27c7d01f617127534ebaa8ced28

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 15:40:22 GMT
Expires: Wed, 28 Dec 2022 15:40:21 GMT
Etag: "a8b43c323aa83e7c209a3c40650fda82bda41c0e"
Cache-Control: max-age=429573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e8d4c9cb4f9-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
13a926753424f47b8aaf8f2975487a17
a8b43c323aa83e7c209a3c40650fda82bda41c0e
d74c7ccb5093bfdebc48a5ffa25e025c3e9bc27c7d01f617127534ebaa8ced28

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 15:40:22 GMT
Expires: Wed, 28 Dec 2022 15:40:21 GMT
Etag: "a8b43c323aa83e7c209a3c40650fda82bda41c0e"
Cache-Control: max-age=429573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e8d4f1e0b02-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
13a926753424f47b8aaf8f2975487a17
a8b43c323aa83e7c209a3c40650fda82bda41c0e
d74c7ccb5093bfdebc48a5ffa25e025c3e9bc27c7d01f617127534ebaa8ced28

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 15:40:22 GMT
Expires: Wed, 28 Dec 2022 15:40:21 GMT
Etag: "a8b43c323aa83e7c209a3c40650fda82bda41c0e"
Cache-Control: max-age=429573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e8d7b06b4e8-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
13a926753424f47b8aaf8f2975487a17
a8b43c323aa83e7c209a3c40650fda82bda41c0e
d74c7ccb5093bfdebc48a5ffa25e025c3e9bc27c7d01f617127534ebaa8ced28

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 15:40:22 GMT
Expires: Wed, 28 Dec 2022 15:40:21 GMT
Etag: "a8b43c323aa83e7c209a3c40650fda82bda41c0e"
Cache-Control: max-age=429573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e8deaa8b521-OSL

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14758
Expires: Fri, 23 Dec 2022 20:16:45 GMT
Date: Fri, 23 Dec 2022 16:10:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14758
Expires: Fri, 23 Dec 2022 20:16:45 GMT
Date: Fri, 23 Dec 2022 16:10:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14758
Expires: Fri, 23 Dec 2022 20:16:45 GMT
Date: Fri, 23 Dec 2022 16:10:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14758
Expires: Fri, 23 Dec 2022 20:16:45 GMT
Date: Fri, 23 Dec 2022 16:10:47 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11471 bytes)
Hash
5dd6622433d537fbb91a04bd3b57d873
552f216608b819b4f65f0574e421f4a761f0d721
5e9b03133d928378a775ab52ec6e58cd7753aa2975a4966534353c0d6bc46af5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11471
x-amzn-requestid: 20d9459a-710b-4fcf-bfce-9f0c5f513740
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbNEqGPnoAMFcDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a12884-4a93ab9047181db109d328e2;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 03:14:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qFwWS-f0U1hSbrFFgBiGNzXRvZyvR90n_MI7jfYfWsyv2W6jH8D-9w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 04:54:20 GMT
age: 40587
etag: "552f216608b819b4f65f0574e421f4a761f0d721"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdce5468-cf1b-4a55-968b-1aaa101e60d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11939 bytes)
Hash
38cc82b5e5d8c2fee6f51021e156ec81
eafb4e029313caabcdbdc1002abcab95f66e91b1
b8cad011e1a98ee4e896f00263495aab7f9cab986736a7a5b4187b8e94c46493

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdce5468-cf1b-4a55-968b-1aaa101e60d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11939
x-amzn-requestid: a00e5ab5-ad16-4576-b046-381e36456998
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUhqE94oAMFu5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce0a-28687ad51eea1f6f3ce8cc86;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uIDvI3BVK0v68x1jkgw9GB0U1i3l2kyW81q2Kiy3ZDREqQmyUTXCnQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:38:11 GMT
age: 66756
etag: "eafb4e029313caabcdbdc1002abcab95f66e91b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12794 bytes)
Hash
7ee73339f3e7eaeb4c1ecab1a24632a8
48ff42e4329102d6a006b8f947bfaf29c0a5de17
ae5787d0df124d7d95ccaaf58148bb46c931610ca908cd58787748da5b75a1c0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12794
x-amzn-requestid: 82617475-f461-429b-b38d-0c84eee33754
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dk55IGPioAMFi1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a509d3-0dfc997d3853974a08914362;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 01:52:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -24dBoLhaZcF6kjZCYp8EJSAYmslMmv15G3oPgPAydPxVA0j51Vs3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 01:52:20 GMT
age: 51507
etag: "48ff42e4329102d6a006b8f947bfaf29c0a5de17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5659 bytes)
Hash
2d4cf077d410b94f1326e942304f9e9b
98fb13feecfada3cc8b467aa48d7cdf1ed8ab001
ec82cd83bfd4da849888b0535c9764cd4d462ef9e12c5934512858375908dfe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5659
x-amzn-requestid: bc225a93-868b-42d4-aa94-c8fa16ef2c64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dk33gHUqIAMFg1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a50696-7710727f0f086a791a0e7939;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 01:38:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FGP2S7V05eAwwnHzdlYQJC9ZW-5xLD8Aqi7XBCcJtaqbVoNCocGFhw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 01:50:42 GMT
age: 51605
etag: "98fb13feecfada3cc8b467aa48d7cdf1ed8ab001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7117 bytes)
Hash
61b1b9ece5581fe0b212144f45243f1a
d161c613f1491ae6ab63b536c50c6630e80d6382
f5a2b23b66a05734b86755986573c07c5f75bc6cbe67d2b769aee9ef402b2c14

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7117
x-amzn-requestid: 470b959f-7f5f-4a64-8d8d-bfc91856fad2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dUnBBFhZIAMFhiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e8539-3916bad034c86d5503e456f2;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 03:12:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UIB-d7y4AawAml6oXhsAeoIud_U-fhQzha7VwRqY9AgNaYtJ49nlzg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 05:06:41 GMT
age: 39846
etag: "d161c613f1491ae6ab63b536c50c6630e80d6382"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9580464f-844c-4e13-be46-5c4206500fd1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13126 bytes)
Hash
c2891340facccb86f9ccbfd7f1ebd443
54c9bc71fcef4494c920f5bc34379d8c05b1759d
f84738eb775ae5c671e46bb9950bc17c03fdedfc5a79785a26784623f0f39f4d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9580464f-844c-4e13-be46-5c4206500fd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13126
x-amzn-requestid: ad064485-bb59-45d6-8c64-11bb33ba0c02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUhqHywIAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce0a-73c0a9123d4aab116ba3b0b4;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i2OxHELH9AuabmDUpx3cnUJKuPRcNmSvA7EpZQDdLTnwZQapu4VjEA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:58:38 GMT
age: 65529
etag: "54c9bc71fcef4494c920f5bc34379d8c05b1759d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

crezu.vn/

35.229.199.189

200 OK

9.4 kB

URL HTTP/1.1
crezu.vn/
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2768), with CRLF, LF line terminators
Size
9.4 kB (9381 bytes)
Hash
ab1d4429250eeb01bec1ee69d3f01439
7a39f0b42ac3537840d660905439775d0f9c4d09
5f4f6092eb1db690dc30121dd9c48837eb24872373d245b9ad93bb30baaef8cf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://crezu.vn/>; rel=shortlink
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
13a926753424f47b8aaf8f2975487a17
a8b43c323aa83e7c209a3c40650fda82bda41c0e
d74c7ccb5093bfdebc48a5ffa25e025c3e9bc27c7d01f617127534ebaa8ced28

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 15:40:22 GMT
Expires: Wed, 28 Dec 2022 15:40:21 GMT
Etag: "a8b43c323aa83e7c209a3c40650fda82bda41c0e"
Cache-Control: max-age=429572,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25e8d4f55b509-OSL

www.googletagmanager.com/gtm.js?id=GTM-MB47FWT

142.250.74.168

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MB47FWT
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (13165)
Size
48 kB (47701 bytes)
Hash
838be4950038281747c04ae888edaa5b
e99fdc63d29ac71a1837853d2173d7a58d96164a
f5085809c14cc11a0e92bf29d4b1d404bcd628c10d1c1c38db992a789ad8c7a1

HTTP Headers

GET /gtm.js?id=GTM-MB47FWT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Dec 2022 16:10:48 GMT
expires: Fri, 23 Dec 2022 16:10:48 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47701
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js

35.229.199.189

200 OK

4.2 kB

URL HTTP/1.1
crezu.vn/wp-includes/js/jquery/jquery-migrate.min.js
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:48 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Dec 2021 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61c931da-2bd8"
Expires: Sat, 23 Dec 2023 16:10:48 GMT
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

crezu.vn/wp-includes/js/jquery/jquery.min.js

35.229.199.189

200 OK

31 kB

URL HTTP/1.1
crezu.vn/wp-includes/js/jquery/jquery.min.js
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (65447)
Size
31 kB (30953 bytes)
Hash
7a6e4a1e4a67fac0cd39ca1dd1982f47
a8bf880e5db17a703293d5a3c92623a97d5a1df1
daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:48 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Dec 2021 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61c931da-15db1"
Expires: Sat, 23 Dec 2023 16:10:48 GMT
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

crezu.vn/wp-content/uploads/2020/06/i-features_5.svg

35.229.199.189

200 OK

2.1 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_5.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.1 kB (2091 bytes)
Hash
bb87b33ca35f41c025af5c28568b5293
91271fd2f7cf39772013a62ff57294ae50c3498b
556d27c8ea76b142dbd2881871326a1d2504b370354d736d28e3e901ec660e32

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_5.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 2091
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-82b"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_6.svg

35.229.199.189

200 OK

1.6 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_6.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.6 kB (1576 bytes)
Hash
02a5d0561bace2cb9fbe159805d962a1
cfa04978dfa4330e436bc77aa441df0ecba0d355
df24b2830508fce89942dab30f69a5ca4db4bbf58adc7cfd96988cb0170c2ee2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_6.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1576
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-628"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-how_1.svg

35.229.199.189

200 OK

2.1 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-how_1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (500)
Size
2.1 kB (2104 bytes)
Hash
f75c29b79b644fe2af9e6c6f4277ea52
698c6f94140c75019494054efeecaafa4ac52e25
448c14ae3ea6ee580cfe55b026763ceae02797026af57430210ea1899a2c161d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-how_1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 2104
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-838"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-steps_2.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1400 bytes)
Hash
1f436a8745e8fcd33484b6e755ea5b85
6181a1d4a415ec46e7de9c8250ce3b7eea060eec
09ec800b43246672c5acc434ef5791f67a6ed9d8a4f8fee4536648da58adda73

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-steps_2.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1400
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-578"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg

35.229.199.189

200 OK

1.7 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-steps_3.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.7 kB (1692 bytes)
Hash
e042f65fd5447503e8da0e4970b0c199
65bdcc0350f574fd5024f92b1ed424ffb56747cb
3297c5d4095385ee70fc545a8c779af6c24ca408234277aa48f1f72f04cb00bb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-steps_3.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1692
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-69c"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg

35.229.199.189

200 OK

1.3 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_1_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1314), with no line terminators
Size
1.3 kB (1314 bytes)
Hash
2ceedc8d9a446e412dd95f395afcbf92
4eae61fae712c00dd9478ce2f695040048951b09
7252d50c41d5ac8cc02cb403d92af957aa866379b4868253fc5e18d95ec0ac3f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_1_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1314
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-522"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq

95.101.10.203

200 OK

1.3 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq
IP
95.101.10.203:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (3012)
Size
1.3 kB (1349 bytes)
Hash
9f5b4d8672e908def2d9ec8cd4efb075
abd34984dfab7247fa07c05df9f0c6f11b5d7ea6
0159e9811dabad85b9d8e51b847991d73e550e53a570287b99850a10e879d27f

HTTP Headers

GET /i18n/pixel/events.js?sdkid=CDPQ5KBC77U4N56LACFG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202212231610499C1C6EAAE9E80C096B3B
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb68e42f4f400627b987f8072cc1e36db275d24ead2be8327fd13ae89477a41924a7299e10d6cacadb9add057b86fc151758cc14fd109258a1e16c24ebf2c03aca693779e3af11197ac8302403eebcc4096e99498351a571f5307b897be1a80f14f
content-encoding: gzip
content-length: 1349
x-origin-response-time: 6,23.220.106.90
x-akamai-request-id: a6451040.66a60eb
expires: Fri, 23 Dec 2022 16:10:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Dec 2022 16:10:49 GMT
x-cache: TCP_MISS from a95-101-10-199.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2JK1EbaBCbhbzQ65OojSU2AWrBq; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-106-90.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=93, origin; dur=5, inner; dur=2
x-parent-response-time: 98,95.101.10.199
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/static/main.MWI1MTgwZGZmMA.js

95.101.10.203

200 OK

68 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/main.MWI1MTgwZGZmMA.js
IP
95.101.10.203:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (21716)
Size
68 kB (67875 bytes)
Hash
75ee2fd291156e2832622fded1792855
369d84faf87723b6ac465d97f7366e31aebd6aee
d2fc1eac0d1d0775fc5f8c4133de3cdc29b23bfbc90a73bf4ed884cbfe529d89

HTTP Headers

GET /i18n/pixel/static/main.MWI1MTgwZGZmMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2JK1EbaBCbhbzQ65OojSU2AWrBq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202212201657267608A5E9F4861511C102
x-tt-trace-host: 0174209eab6deed09fed7ba820602a8f9dd4ca3726d5bfc9d82fd15f04e810a3c95b268479802a0cb91b232a29acb572422da2c28a019f05c7837b0e8da627a582ae16726813a4baecb224f17356e1ff1319ff3d0d55eef644d8e3291100ab1b9c
content-encoding: gzip
content-length: 67875
date: Fri, 23 Dec 2022 16:10:49 GMT
x-cache: TCP_HIT from a95-101-10-199.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=1, inner; dur=11
x-akamai-request-id: 66a610a
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/static/identify_13839.js

95.101.10.203

200 OK

31 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/identify_13839.js
IP
95.101.10.203:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30900 bytes)
Hash
bdbe45678ce11238207e20b501d7b7c4
2a061a285a8a0c205f334329b2e56ebac6cf8895
49f5403b6ec67d55d6825fe3b68bb6800d626624874bd6adb7559c7062687258

HTTP Headers

GET /i18n/pixel/static/identify_13839.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2JK1EbaBCbhbzQ65OojSU2AWrBq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202212201657267608A5E9F4861511C10A
x-tt-trace-host: 0174209eab6deed09fed7ba820602a8f9dd4ca3726d5bfc9d82fd15f04e810a3c95b268479802a0cb91b232a29acb572422da2c28a019f05c7837b0e8da627a5828908ac44ad85c1662c88a539afbc6cc508efccb60b9ffdce113a9e9e4acf0ab9
content-encoding: gzip
content-length: 30900
date: Fri, 23 Dec 2022 16:10:49 GMT
x-cache: TCP_MEM_HIT from a95-101-10-199.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 66a611b
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg

35.229.199.189

200 OK

767 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_2_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (767), with no line terminators
Size
767 B (767 bytes)
Hash
e84efaf1719ad77956be01b392c948e3
fc12e82a6069109935195405bf14ca2647b24ea4
f8855091b86157e3031ff7bd83de79774c39b544a03621a3f0d6c5089e853265

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_2_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 767
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-2ff"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/reasons-bg-1.jpg

35.229.199.189

200 OK

26 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/reasons-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1059, components 3\012- data
Size
26 kB (25669 bytes)
Hash
02e092c5f202def3e9eac031f95eb48c
3b4237e861aa593c0ee3aa82fbf8e4288cdf5d20
f09ef1cc5d6a8adf77b56ca0eaecabf79f203c54adc4b819dfcb80da9b3f66c1

HTTP Headers

GET /wp-content/uploads/2020/06/reasons-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/jpeg
Content-Length: 25669
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-6445"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg

35.229.199.189

200 OK

995 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_3_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (995), with no line terminators
Size
995 B (995 bytes)
Hash
ab691b37694e88569c740e756f749d72
ce7eef7b93d2bd1459f110d1f92ac002c725f5d6
1815baca451359a96a497960c7b683c884a2d98c489a859987c4d2ddc31bb34c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_3_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 995
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3e3"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg

35.229.199.189

200 OK

994 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_4_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (994), with no line terminators
Size
994 B (994 bytes)
Hash
3bccec9e980fc058bd34ad9d72146f52
fd2c93ec15dcae241151f92b7d8afd9c045850c0
887c1087b8f1844eac159251d9c0e7c54ebafbd9c407d4aa24020984de4f362c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_4_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 994
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3e2"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

analytics.tiktok.com/api/v2/pixel

95.101.10.203

200 OK

0 B

URL HTTP/2
analytics.tiktok.com/api/v2/pixel
IP
95.101.10.203:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 741
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _ttp=2JK1EbaBCbhbzQ65OojSU2AWrBq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022122316104974775B634DBDBE4A60DC
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb68e42f4f400627b987f8072cc1e36db275d24ead2be8327fd13ae89477a41924a1d0dd301d40e7c100a8266ed32571dae8f6310e83f04015f2a740a1bb0044cf12dc061b813f41db426214b844f3ef27b0c1cbbfbf463db8fd8845d97034a5776
x-origin-response-time: 23,23.220.106.90
x-akamai-request-id: a6451153.66a611d
expires: Fri, 23 Dec 2022 16:10:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Dec 2022 16:10:49 GMT
x-cache: TCP_MISS from a95-101-10-199.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-220-106-90.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=95, origin; dur=23, inner; dur=15
x-parent-response-time: 114,95.101.10.199
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg

35.229.199.189

200 OK

975 B

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-reasons_5_green-1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (975), with no line terminators
Size
975 B (975 bytes)
Hash
bb83a1cd720bdb334469307133a7c6bf
27cd0a030624bd9790a934fd98380765a81bef27
2f4f475af323531d07b7958d4a950b6ba3e0d9170e0a393fee5d015ff994ddde

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-reasons_5_green-1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 975
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-3cf"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_1.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_1.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (367)
Size
1.4 kB (1424 bytes)
Hash
5f0bf761d06057761739358144a3c0d9
01f9f1e78b84343006bef643c7a4a96d9f5fa963
683aceecf2c98c3ddf5df73629c3b27699acfefd45f52a1a58875fae80814706

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_1.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1424
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-590"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_2.svg

35.229.199.189

200 OK

1.4 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_2.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1410 bytes)
Hash
53e16b555f8b956692b40d76c66e179c
cea0cab68c42103c3b04b697f70bc14fbce3976f
3e322656801f28d9037a8f4613f3e2bfe86186abaa310143da7c8c670e113d9a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_2.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1410
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-582"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_3.svg

35.229.199.189

200 OK

2.0 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_3.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.0 kB (1976 bytes)
Hash
9a9742f9fd057c843613de86028e512a
81af2a20b90ee584caff1c35e88c93f4f7376f49
129e11347ab8ac7dc247b07c215697493cfa5d4c12330f27a45dd647d5197f2c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_3.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1976
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-7b8"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/main-bg-1.jpg

35.229.199.189

200 OK

78 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/main-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1059, components 3\012- data
Size
78 kB (78316 bytes)
Hash
63e47dec6ec30bbb7b60fdd2f7a4a072
a5a83dbf7cd9ff7702b6a917857df5c34357dabd
efedacc636328d2abf34a81397bd7479678c36c4fd81d561b7bd1874d4d2a394

HTTP Headers

GET /wp-content/uploads/2020/06/main-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/jpeg
Content-Length: 78316
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-131ec"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/p-testimonials-1.png

35.229.199.189

200 OK

44 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/p-testimonials-1.png
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 515 x 515, 4-bit colormap, non-interlaced\012- data
Size
44 kB (44384 bytes)
Hash
5129082012a1cdc5ece89f3e6188f836
20d34ebc2acd372d68666fa593734f6ddaaa0dc7
787a65143a1dce74ed95f22008c82c03c5a85ad6f70ab2383b1911adacbb4f58

HTTP Headers

GET /wp-content/uploads/2020/06/p-testimonials-1.png HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/png
Content-Length: 44384
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-ad60"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/i-features_4.svg

35.229.199.189

200 OK

1.6 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/i-features_4.svg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.6 kB (1573 bytes)
Hash
0b753860c91d42902a7e79d0eb2c8feb
e692cbd0e87881e84bd8e1bed79ab864ccb1f566
178e8780c9215813a39e7d44c53391fe05afbe4662cc05cd1b963c7a502f2fce

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/06/i-features_4.svg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; _opt_expid=pRsDog9KSXayRXpsZoa02g%240%24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/svg+xml
Content-Length: 1573
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-625"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

crezu.vn/wp-content/uploads/2020/06/cta-bg-1.jpg

35.229.199.189

200 OK

46 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/cta-bg-1.jpg
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x769, components 3\012- data
Size
46 kB (46358 bytes)
Hash
2aecb34c19abfc82857e24a295304c34
be5c553d479b94d326d289586a059d2c44cd2927
172e470842d47668241da11a8e495b5fa3e5a3cb4c62b8cc9b794b3f52d3828b

HTTP Headers

GET /wp-content/uploads/2020/06/cta-bg-1.jpg HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:49 GMT
Content-Type: image/jpeg
Content-Length: 46358
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-b516"
Expires: Sat, 23 Dec 2023 16:10:49 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c5d392f16d6f3348bd707afe72f37382
f61824a383d18b9d9da451f63ce9a4068f2d1030
bde34b0a32333f86fa6e508a7177a2d231afedbca18febbfd5a0d56dab618d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5287
Cache-Control: max-age=98278
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Etag: "63a49b49-1d7"
Expires: Sat, 24 Dec 2022 19:28:48 GMT
Last-Modified: Thu, 22 Dec 2022 18:00:41 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a06281b6bb06069d21666372c708f6c0
c7622a20b3fb40dcb00f393382601e95ff59a8c2
8b7f74ecc617d58979a40b30abe40faca246e302528c3fe3d086f339574a7809

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 23 Dec 2022 14:41:11 GMT
expires: Fri, 23 Dec 2022 16:41:11 GMT
cache-control: public, max-age=7200
age: 5379
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27298 bytes)
Hash
8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: RsUTY3d3WSdbfxrMvkBJWqzyWNiVka1mPag85QMWF6P7apna9fARGX8RseGp1xBaVS7xd019nTaCzmqc08EyXA==
priority: u=3,i
content-length: 27298
x-fb-trip-id: 1904183273
date: Fri, 23 Dec 2022 16:10:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c5d392f16d6f3348bd707afe72f37382
f61824a383d18b9d9da451f63ce9a4068f2d1030
bde34b0a32333f86fa6e508a7177a2d231afedbca18febbfd5a0d56dab618d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5287
Cache-Control: max-age=98278
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Etag: "63a49b49-1d7"
Expires: Sat, 24 Dec 2022 19:28:48 GMT
Last-Modified: Thu, 22 Dec 2022 18:00:41 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274

142.250.74.98

200 OK

50 kB

URL HTTP/2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4885)
Size
50 kB (49691 bytes)
Hash
dac34db6901aafe07d6da4ab07592249
ca9f707a764898b95f027a5c510c95935fe4abd6
1296cf32423747d539816173c626fa7e364ddc204caac477b9331e551bffd219

HTTP Headers

GET /pagead/js/adsbygoogle.js?client=ca-pub-6373705936907274 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 23 Dec 2022 16:10:50 GMT
expires: Fri, 23 Dec 2022 16:10:50 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6389184639745807533
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49691
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a06281b6bb06069d21666372c708f6c0
c7622a20b3fb40dcb00f393382601e95ff59a8c2
8b7f74ecc617d58979a40b30abe40faca246e302528c3fe3d086f339574a7809

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/html/r20221207/r20190131/zrt_lookup.html

172.217.21.162

200 OK

4.2 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/html/r20221207/r20190131/zrt_lookup.html
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Size
4.2 kB (4242 bytes)
Hash
2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345

HTTP Headers

GET /pagead/html/r20221207/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 22 Dec 2022 16:37:12 GMT
expires: Thu, 05 Jan 2023 16:37:12 GMT
cache-control: public, max-age=1209600
age: 84818
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&gjid=44946267&_gid=1756535636.1671811849&_u=YEBAAEAAAAAAACABI~&z=100010755

64.233.161.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&gjid=44946267&_gid=1756535636.1671811849&_u=YEBAAEAAAAAAACABI~&z=100010755
IP
64.233.161.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&gjid=44946267&_gid=1756535636.1671811849&_u=YEBAAEAAAAAAACABI~&z=100010755 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://crezu.vn
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://crezu.vn
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 23 Dec 2022 16:10:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

crezu.vn/wp-content/uploads/2020/06/favicon.ico

35.229.199.189

200 OK

1.2 kB

URL HTTP/1.1
crezu.vn/wp-content/uploads/2020/06/favicon.ico
IP
35.229.199.189:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
3c8ab0dad807a7a2e7b8222c08070f94
c7123a2cd64c91d5542b920d5abb3ddb0aa12402
7ab970a4b7b0d077f91ec990046d5610af466b333c6a8ee5a72018b2f79011c0

HTTP Headers

GET /wp-content/uploads/2020/06/favicon.ico HTTP/1.1
Host: crezu.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Cookie: _gaexp=GAX1.2.pRsDog9KSXayRXpsZoa02g.19400.0; _gaexp_rc=1; sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2022-12-23%2016%3A10%3A47%7C%7C%7Cep%3Dhttps%3A%2F%2Fcrezu.vn%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fcrezu.vn%2F; rsns_cnt_1=811661; rsns_cnt_2=1629; _tt_enable_cookie=1; _ttp=zMJJvdRIr0ZwN4dUAXwknopjpN3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Dec 2022 16:10:50 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 19 Jun 2020 12:40:17 GMT
Connection: keep-alive
ETag: "5eecb231-47e"
Expires: Sat, 23 Dec 2023 16:10:50 GMT
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

www.facebook.com/tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1671811849007&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671811849006.773708438&it=1671811848820&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1671811849007&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671811849006.773708438&it=1671811848820&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=181455369817902&ev=PageView&dl=https%3A%2F%2Fcrezu.vn%2F&rl=&if=false&ts=1671811849007&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671811849006.773708438&it=1671811848820&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 23 Dec 2022 16:10:50 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f37c9faffd8b6d93a4994c02ff1d3d21
b41b823e9b33d7fff8c1670cf510edda28f7082b
7494a95cab50f2a0409796d95e999fc5add96030fba70be912c1c80124169bc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.com/adsid/integrator.js?domain=crezu.vn

216.58.207.194

200 OK

100 B

URL HTTP/2
adservice.google.com/adsid/integrator.js?domain=crezu.vn
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=crezu.vn HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 23 Dec 2022 16:10:50 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
512a3073e0c9af16e4582aa8af548d72
0ee9ed603c8d1ec40836c3ae4ec06240f7e43d7e
f58c74695548bbd70570429c8a6d5b1edd6fe72924bf214fb163715ae4e31484

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1

216.58.207.194

200 OK

249 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (383), with no line terminators
Size
249 B (249 bytes)
Hash
8c491aef44c873eaf3f00a038891b0a4
fffc4103f1daf96ee16328a8154a72276dacee8a
b64e3653a89291884cd788d72cc95559f511e1dd8c6fa94380a5a072c8a6f681

HTTP Headers

GET /gampad/cookie.js?domain=crezu.vn&callback=_gfp_s_&client=ca-pub-6373705936907274&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 23 Dec 2022 16:10:50 GMT
server: cafe
cache-control: private
content-length: 249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
118e9e463e1e5174953658f35fb83427
8c2ba52661133dc0d78d0a756996ddb690112e35
8d56cd051472c79b399e7fe5165f4bf46761fb30b519177a8ff76da17214dd36

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ecc130cabc8432a4c29a8ee3c411345f
ec68a99dcefeae0499da898b048d5a1a850d6256
71a24b7303015b50931d655a2761bd377379b2d8a1fba34d90311bdc1462e5d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.no/adsid/integrator.js?domain=crezu.vn

216.58.211.2

200 OK

100 B

URL HTTP/2
adservice.google.no/adsid/integrator.js?domain=crezu.vn
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=crezu.vn HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 23 Dec 2022 16:10:50 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
512a3073e0c9af16e4582aa8af548d72
0ee9ed603c8d1ec40836c3ae4ec06240f7e43d7e
f58c74695548bbd70570429c8a6d5b1edd6fe72924bf214fb163715ae4e31484

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9e17fae8e9b08b0f8b1424a9a62a36f
4c8cbf014cf2c86b62782d7722339e0a56fa64ba
974089d8226c3e6858a54fa7b4dae361662c86462864e8500250bd8660ac6bba

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29d3696d17220dcd271363e420d6d592
16fb6e6352605346ddca3f28e69ed5e3b3980057
3a5946f894fc0ec400905c1a88a943fb60b5170dc0fc6946c13f800964af79d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&_u=YEBAAEAAAAAAACABI~&z=1750567673

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&_u=YEBAAEAAAAAAACABI~&z=1750567673
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&_u=YEBAAEAAAAAAACABI~&z=1750567673 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Dec 2022 16:10:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&_u=YEBAAEAAAAAAACABI~&z=1750567673

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&_u=YEBAAEAAAAAAACABI~&z=1750567673
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-163510211-1&cid=1763168227.1671811849&jid=1937318962&_u=YEBAAEAAAAAAACABI~&z=1750567673 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Dec 2022 16:10:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0efe6c6adeed3fcee312af52fd09aa65
4e6bcd2a7af8e40806bb432987e92e195396cf71
580daa8185c8d6d478f6ca1a0d0a993bb3ac0c4b6b7d79ca6873436fc6a003e5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0efe6c6adeed3fcee312af52fd09aa65
4e6bcd2a7af8e40806bb432987e92e195396cf71
580daa8185c8d6d478f6ca1a0d0a993bb3ac0c4b6b7d79ca6873436fc6a003e5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tpc.googlesyndication.com/pagead/js/r20221207/r20110914/abg_lite_fy2021.js

172.217.21.161

200 OK

9.4 kB

URL HTTP/2
tpc.googlesyndication.com/pagead/js/r20221207/r20110914/abg_lite_fy2021.js
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1592)
Size
9.4 kB (9443 bytes)
Hash
5a5aa8d035ffaad9c0b8653b0a412d2f
f09fe4da7a3d328089a611e314d326aa5cb598f5
de6d29b666b737e039c2de5bedaf81dda437c47a79e17d0d10f188358916187a

HTTP Headers

GET /pagead/js/r20221207/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9443
x-xss-protection: 0
date: Thu, 22 Dec 2022 22:04:59 GMT
expires: Thu, 05 Jan 2023 22:04:59 GMT
cache-control: public, max-age=1209600
age: 65152
etag: 9828741834572772835
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/qs_click_protection_fy2021.js

172.217.21.161

200 OK

7.5 kB

URL HTTP/2
tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/qs_click_protection_fy2021.js
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1542)
Size
7.5 kB (7480 bytes)
Hash
6f59900fa87e133bae329372aebefe36
260937d2934233c07b112f3564ec9eca7b529fd7
156c12ec7d6973b5742504716567b70740dd66bee9cc0e1a1608df56e77011fd

HTTP Headers

GET /pagead/js/r20221207/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7480
x-xss-protection: 0
date: Thu, 22 Dec 2022 17:34:14 GMT
expires: Thu, 05 Jan 2023 17:34:14 GMT
cache-control: public, max-age=1209600
age: 81397
etag: 15631949847000551034
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914

142.250.74.162

200 OK

48 kB

URL HTTP/2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3501)
Size
48 kB (47725 bytes)
Hash
0aea457deb170b60b680d7d723b4a6e2
3acbe700c709c2c5c07d6fb145ea7b448cc07a90
86c662679bc2508be7e8064c91055a3c5be7db2c24d58e5f27676f35702ba339

HTTP Headers

GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47725
date: Fri, 23 Dec 2022 16:10:51 GMT
expires: Fri, 23 Dec 2022 16:10:51 GMT
cache-control: private, max-age=3000
etag: "1670417373259609"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html

142.250.74.99

200 OK

204 B

URL HTTP/2
p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
204 B (204 bytes)
Hash
a6062a783c1c053a1fc27c86f644617b
9d123948853a65e1fa36f429d45e071c894bf293
c0d96f4048366294d7b210421fc9080cb2c0d3e229f3ab62930221179a65bd75

HTTP Headers

GET /v6exp3/redir.html HTTP/1.1
Host: p4-hzzcklhwawevw-tb4ekbpatcombgcm-if-v6exp3-v4.metric.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy-report-only: script-src 'nonce-JE2aIsErHE17kUSueXh2nw' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/static-on-bigtable; base-uri 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 204
date: Fri, 23 Dec 2022 16:10:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Mon, 02 Dec 2019 20:15:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 16:10:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62bfbed48418ed34580033ff410f3a40
c5671fece924eb7390135b186d2fbf845382d76a
f86419b90c7c83e8a0d8085bf1aefa6123d6e355147aad05805188bb44095262

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F86419B90C7C83E8A0D8085BF1AEFA6123D6E355147AAD05805188BB44095262"
Last-Modified: Thu, 22 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10765
Expires: Fri, 23 Dec 2022 19:10:17 GMT
Date: Fri, 23 Dec 2022 16:10:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62bfbed48418ed34580033ff410f3a40
c5671fece924eb7390135b186d2fbf845382d76a
f86419b90c7c83e8a0d8085bf1aefa6123d6e355147aad05805188bb44095262

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F86419B90C7C83E8A0D8085BF1AEFA6123D6E355147AAD05805188BB44095262"
Last-Modified: Thu, 22 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10745
Expires: Fri, 23 Dec 2022 19:09:57 GMT
Date: Fri, 23 Dec 2022 16:10:52 GMT
Connection: keep-alive

events.crezu.net/api/event

35.240.92.105

204 No Content

0 B

URL HTTP/1.1
events.crezu.net/api/event
IP
35.240.92.105:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/event HTTP/1.1
Host: events.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://crezu.vn/
Origin: https://crezu.vn
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 23 Dec 2022 16:10:52 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,X-API-KEY,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0

events.crezu.net/api/event

35.240.92.105

201 Created

0 B

URL HTTP/1.1
events.crezu.net/api/event
IP
35.240.92.105:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/event HTTP/1.1
Host: events.crezu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://crezu.vn/
Content-Type: application/json
Origin: https://crezu.vn
Content-Length: 229
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 201 Created
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 23 Dec 2022 16:10:52 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-API-KEY,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
4cf1cfa074fa25c03ee13fef30e5a874
12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7
5b27dc096ddf6160e83bac4491669db86cd9f1714987b7ffcfb07bcfa11fcd59

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:33:16 GMT
Expires: Tue, 27 Dec 2022 10:33:15 GMT
Etag: "12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7"
Cache-Control: max-age=324741,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25eb30ae8b4f9-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
4cf1cfa074fa25c03ee13fef30e5a874
12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7
5b27dc096ddf6160e83bac4491669db86cd9f1714987b7ffcfb07bcfa11fcd59

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:33:16 GMT
Expires: Tue, 27 Dec 2022 10:33:15 GMT
Etag: "12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7"
Cache-Control: max-age=324741,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25eb30cab0b02-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
4cf1cfa074fa25c03ee13fef30e5a874
12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7
5b27dc096ddf6160e83bac4491669db86cd9f1714987b7ffcfb07bcfa11fcd59

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:33:16 GMT
Expires: Tue, 27 Dec 2022 10:33:15 GMT
Etag: "12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7"
Cache-Control: max-age=324741,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25eb30e92b4e8-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
4cf1cfa074fa25c03ee13fef30e5a874
12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7
5b27dc096ddf6160e83bac4491669db86cd9f1714987b7ffcfb07bcfa11fcd59

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:33:16 GMT
Expires: Tue, 27 Dec 2022 10:33:15 GMT
Etag: "12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7"
Cache-Control: max-age=324741,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25eb30e1fb521-OSL

cdn.morecashpls.com/landings/css/push-v3.css

34.107.249.96

200 OK

1.3 kB

URL HTTP/2
cdn.morecashpls.com/landings/css/push-v3.css
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.3 kB (1254 bytes)
Hash
9b3dabbba782acdda13a74404d21cfc1
2cdd6bbe614fde4bca786c3ef2648aaee8db6746
d5bbc7b2b07e2f335cad7ac686480869210523b7d095ef6885f1b5cbc51d9bc5

HTTP Headers

GET /landings/css/push-v3.css HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 1254
date: Wed, 21 Dec 2022 12:21:41 GMT
expires: Wed, 28 Dec 2022 12:21:41 GMT
cache-control: max-age=604800,public
age: 186552
last-modified: Tue, 19 Jul 2022 08:15:29 GMT
etag: W/"62d66821-14e0"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/img-push-arrow.png

34.107.249.96

200 OK

21 kB

URL HTTP/2
cdn.morecashpls.com/landings/img/img-push-arrow.png
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
PNG image data, 680 x 231, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20616 bytes)
Hash
bf9cb4b97700e1d2e3f7e9ce7bd575ff
ce87fbfff8bea8017a94fe748e3fadcd930457e3
194d53b4483d0fc25f7ccf7f5431893376d633324170f6366d4de0eb102fe25e

HTTP Headers

GET /landings/img/img-push-arrow.png HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 20616
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Wed, 21 Dec 2022 17:07:50 GMT
expires: Wed, 28 Dec 2022 17:07:50 GMT
cache-control: max-age=604800,public
age: 169383
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-5088"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/i-push-close.svg

34.107.249.96

200 OK

639 B

URL HTTP/2
cdn.morecashpls.com/landings/img/i-push-close.svg
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
639 B (639 bytes)
Hash
a942d9fd63a2eebe28676f7c9c463596
06cb2b6fbc48a08c06dd5396b647e7d64d2d0c46
5e0440d1f014655b2a7c9a0ce23aa09e79d49d7afce588d3f7d54a89e92ceb6f

HTTP Headers

GET /landings/img/i-push-close.svg HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 639
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Wed, 21 Dec 2022 12:22:02 GMT
expires: Wed, 28 Dec 2022 12:22:02 GMT
cache-control: max-age=604800,public
age: 186531
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-27f"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.morecashpls.com/landings/img/i-push-01.svg

34.107.249.96

200 OK

1.4 kB

URL HTTP/2
cdn.morecashpls.com/landings/img/i-push-01.svg
IP
34.107.249.96:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.4 kB (1391 bytes)
Hash
050c4f432d5c68e5d8efc4afbda71930
635f6e484ce444e6f237899b553596f504722a41
5bacac65cd03f5724f8e242261b6cd170831f4783c2f46c5885a9c32fdf84850

HTTP Headers

GET /landings/img/i-push-01.svg HTTP/1.1
Host: cdn.morecashpls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://crezu.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
content-length: 1391
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
date: Wed, 21 Dec 2022 12:22:02 GMT
expires: Wed, 28 Dec 2022 12:22:02 GMT
cache-control: max-age=604800,public
age: 186531
last-modified: Wed, 19 Feb 2020 16:11:55 GMT
etag: "5e4d5e4b-56f"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
4cf1cfa074fa25c03ee13fef30e5a874
12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7
5b27dc096ddf6160e83bac4491669db86cd9f1714987b7ffcfb07bcfa11fcd59

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 16:10:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 10:33:16 GMT
Expires: Tue, 27 Dec 2022 10:33:15 GMT
Etag: "12ca37ebdaa814faae48f6ac7656c38b7cd0c3f7"
Cache-Control: max-age=324741,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77e25eb48d8db509-OSL

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (156)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations