{"report_id":"08fc87b1-5e7e-4113-bfb2-09247460f293","version":6,"status":"done","tags":[],"date":"2025-12-26T03:42:22Z","url":{"schema":"http","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.139.152.202","port":0,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"title":"404","dom":{"size":25036,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (24995), with no line terminators","md5":"c3004860ff4539b77010b0197d44ad87","sha1":"682384ba5da3ab748ad61b159819adcc1230a2fc","sha256":"1df376583d87cbad449415b50425ab898dbca72d4a624ade497e53309b307d16","sha512":"d1627e374f717deb97b178b03c818089972f51ec136328afd11d7554329112738c24fd2725a2fdd37b78a08bf33c7ea393b2167d9dd1f185ee4493196653d5eb","ssdeep":"768:2ytnyRd1jFH+dmF+dIF+vF+DFFbxMF5FaVYqEER1FrFJ:Jod1jF1FcIFWFyFFyDFaR1FrFJ","tlshash":"26b2953a35452978a577c33ee1f86b6c51a9e112ca530ffdf1aab9224285ce530e3784","dom_hash":"domhash9da9de2338eb24dce0a37d84505d523f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.139.152.202","port":0,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-30T03:42:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-26","alert":"Sinkholed","trigger":"www.shopbinhminh.click","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-21T22:14:03.270461Z","alert_count":0,"request_count":6,"received_data":204952,"sent_data":3386,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.shopbinhminh.click","ip":{"addr":"18.136.245.79","port":443,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"domain_registered":"2025-10-27","domain_rank":0,"first_seen":"2025-12-26T03:42:22.161565Z","last_seen":"2025-12-26T03:42:22.161565Z","alert_count":2,"request_count":2,"received_data":53836,"sent_data":1026,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-21T22:17:07.06462Z","alert_count":0,"request_count":1,"received_data":12714,"sent_data":478,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.136.245.79","port":443,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"3bde1e7f49e26bcb6d1faa61ff3a090e","sha1":"2200c4ec5fe757a475aa2e28407cc5e4e73d8641","sha256":"3b5d0fa74cd7283abfd57cce00f6bd53cf110ae3abebfaa2cb26d665acabdcf9","sha512":"84d4fdc68db37fcfa560da1fa07a941f3829b6c153031584c716cef3facb44a221e2bd79586358b95e3c9b165eb61aaed2a78129c2398aa1e7b6606d9c7bac30","ssdeep":"","tlshash":"9ff050bc0010263707755163ba2bf30a7ae166379b935502449dca182cdcd43d4f17ee","size":537,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-04-05T22:04:38.603187Z","times_seen":958,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.136.245.79","port":443,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"introduction_type":"eventHandler","is_inline":false,"md5":"b4b9699a67f5d80f915920c1fb2d368b","sha1":"025f5fc396ed7e891549a1230dde04934fbadeca","sha256":"7e38e9425555cb1b5ff6dd2c3c5f99b19c1c007274d7754f5edb0b4fa2c66af4","sha512":"755942f3ef6e3493fef9cb2d97f85af361ae19bb6a5c88d9955e9c7e8299a42731a4305a867af96e98d4a62dd560a2a6cb1df0e711af5433baf91f6d7fe2ef9b","ssdeep":"","tlshash":"d990040c0734c0403f117d00c50143405041443f0350515df0177cf1407444c004fd51","size":43,"data":"","first_seen":"2023-04-11T09:13:01Z","last_seen":"2026-04-05T22:04:38.602624Z","times_seen":1020,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.136.245.79","port":443,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"dc2d14a7effc5e78cc43ca031383cc82","sha1":"cd5fae6cd545723cd787093b1e7a296d9f842195","sha256":"6b455588b9e5179bfdb7424ef105907fb5c7112987f89b6347828c1530141b05","sha512":"92fb8998cd5f6073274d5ff536e056c268ede51d16073a98efb596d261542dacaf0219fd1590a73aa825b733b1727fab2c9a20c2816376e51e51aee972da956e","ssdeep":"","tlshash":"c521b1b43a80a137c8fe526bd43e9358b520f0635e467654f82c4d794830eab72e3ac5","size":1363,"data":"","first_seen":"2023-03-07T01:02:59Z","last_seen":"2026-04-05T22:04:38.604009Z","times_seen":959,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.shopbinhminh.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 16496\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 24 Dec 2025 17:27:20 GMT\r\nexpires: Thu, 24 Dec 2026 17:27:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 123279\r\nlast-modified: Mon, 15 Sep 2025 16:31:04 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16496,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16496, version 1.0","md5":"4ab0f5401f95f9e34ac2593cea155576","sha1":"77acfcc3ace52126998b65ac874a53c3e01e5a7c","sha256":"cc762462ea67b7815649ea3cc005699e3b95b3244b59eb2ce2d22e3ad33497c2","sha512":"ed4221f42cb1cf287c26d85d033d5e13d0892c316b17cfc856a7d386a43b57304a30913efb80dc1dfa1ac1bfc9c09133c209836e0c3f6cbc87550d3cae780fa1","ssdeep":"384:q5tJolRYH2VQ6RF2bXsZG9C8I+IyOFfCA:ctJobK6RF2oG9QbyOFff","tlshash":"0772c0842e830904dbb272358e945cddc5f120b5d783b6a5a363b71545a85ee831ac7f","first_seen":"2025-05-29T19:30:52.511801Z","last_seen":"2026-04-06T06:36:06.096873Z","times_seen":2546,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":48,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.shopbinhminh.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35156\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 24 Dec 2025 20:59:15 GMT\r\nexpires: Thu, 24 Dec 2026 20:59:15 GMT\r\ncache-control: public, max-age=31536000\r\nage: 110564\r\nlast-modified: Mon, 15 Sep 2025 16:30:01 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35156,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35156, version 1.0","md5":"062c1f2aaf2d4de07ad2a2f21c17ffc0","sha1":"3fd1f07343bd33a53cd374f7f107dbdf9effae03","sha256":"d5bab8e28732fe3d10dcef4f77b9c248605bbb2a87d289a2539251ceafab536a","sha512":"7ab522d8bc41128be5a15f2cb91f851f6dc5e437afbb90e6191bbe63d9b94a35911f04701fb2b291362b2ae0f0cc639dec2d15e53928afc5769590a2937e81cf","ssdeep":"768:is48okTArkNSgZJAf5jkRcaUNt8wrNPCbJktQV+n+NUB/wo8IEH:5hNTtNSgZJMjkRBUMwrNPC9NV+n+o81H","tlshash":"22f2e172c3787192ae0985760d60cec8986bb2098f7658b0143fdd38ee45345a3f6e6c","first_seen":"2025-05-29T19:30:52.507782Z","last_seen":"2026-04-06T08:30:31.763633Z","times_seen":14844,"resource_available":false,"data":null}},"time_used":127,"timings":{"blocked":56,"dns":1,"connect":20,"send":0,"wait":8,"receive":2,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.shopbinhminh.click/favicon.ico","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.136.245.79","port":443,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:42:00.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.shopbinhminh.click","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Sun, 25 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:A9:46:D1:47:47:2B:4D:F1:2E:A8:A8:73:FB:29:51:71:A1:3E:53","sha256":"60:46:B2:D0:A6:26:8A:17:1D:47:D9:42:6F:1E:21:3D:2C:68:A0:A4:27:53:69:B5:C0:41:9D:B9:43:2F:A2:D9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.shopbinhminh.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.shopbinhminh.click/\r\nCookie: LADI_DNS_CHECK=\"2025-12-26 03:41:59.292906793 +0000 UTC m=+5774.635982974\"\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: openresty\r\ndate: Fri, 26 Dec 2025 03:42:00 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: LADI_DNS_CHECK=\"2025-12-26 03:42:00.226994469 +0000 UTC m=+5775.570070649\"; Expires=Mon, 24 Dec 2035 03:42:00 GMT\nLADI_CLIENT_ID=f5e7911d-0035-4fa4-65a3-d241d64197fc; Expires=Mon, 24 Dec 2035 03:42:00 GMT\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25319,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (25278), with no line terminators","md5":"2f977d5872cb7eb7a560eb0b0a540baf","sha1":"c8e2d0134632884763d3922bdae5d1245207259c","sha256":"3b8a21beff2c38dad1d682f7876cf1233fd7a8325b99292400828b6d9c4b3c38","sha512":"15f89220c95de08df80eeabf3acbfed6490e43df568d3869bf39677819ff017f68a64c986c2bd86aa39b13ad96317f84fcdb6a51e2f1bdb54c3992862b309b69","ssdeep":"768:OytnERd1jFH+dmF+dIF+vF+DFFbxMF5FayKqEER1FrFW:hid1jF1FcIFWFyFFyDFDR1FrFW","tlshash":"45b2a53a35482938a577c33ee1fc6b6c5169e112ca530ffdf1aab9624285ce530e3784","first_seen":"2023-03-07T16:41:18Z","last_seen":"2026-04-05T22:04:38.600567Z","times_seen":564,"resource_available":true,"data":null}},"time_used":359,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":359,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-26","alert":"Sinkholed","trigger":"www.shopbinhminh.click","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.shopbinhminh.click/","fqdn":"www.shopbinhminh.click","domain":"shopbinhminh.click","tld":"click"},"ip":{"addr":"18.136.245.79","port":443,"asn":16509,"as":"AMAZON-02","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-26T03:41:57.558Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.shopbinhminh.click","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Sun, 25 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:A9:46:D1:47:47:2B:4D:F1:2E:A8:A8:73:FB:29:51:71:A1:3E:53","sha256":"60:46:B2:D0:A6:26:8A:17:1D:47:D9:42:6F:1E:21:3D:2C:68:A0:A4:27:53:69:B5:C0:41:9D:B9:43:2F:A2:D9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.shopbinhminh.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: openresty\r\ndate: Fri, 26 Dec 2025 03:41:59 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0\r\ncontent-security-policy: upgrade-insecure-requests; default-src data: 'unsafe-inline' 'unsafe-eval' https:; script-src data: 'unsafe-inline' 'unsafe-eval' https: blob: https://www.googleanalytics.com https://www.google-analytics.com https://www.googleoptimize.com https://optimize.google.com https://td.doubleclick.net https://fburl.com https://www.facebook.com https://connect.facebook.net; style-src data: 'unsafe-inline' https: https://optimize.google.com https://fonts.googleapis.com https://w.ladicdn.com https://s.ladicdn.com; img-src data: https: blob: android-webview-video-poster: https://www.google-analytics.com https://www.googletagmanager.com https://optimize.google.com https://w.ladicdn.com https://s.ladicdn.com; font-src data: https: https://fonts.gstatic.com https://w.ladicdn.com https://s.ladicdn.com; connect-src https: wss: blob:; media-src data: https: blob:; object-src https:; child-src https: data: blob:; form-action https:; frame-ancestors https://popupx.ladi.me https://*.ladi.me https://s.ladicdn.com https://g.ladicdn.com https://w.ladicdn.com https://*.ladicdn.com https://www.facebook.com https://*.facebook.com\r\nset-cookie: LADI_DNS_CHECK=\"2025-12-26 03:41:59.292906793 +0000 UTC m=+5774.635982974\"; Expires=Mon, 24 Dec 2035 03:41:59 GMT\nLADI_CLIENT_ID=0c157658-a27f-4b69-68f4-07d50b81346f; Expires=Mon, 24 Dec 2035 03:41:59 GMT\nLADI_PAGE_VIEW=0; Expires=Mon, 24 Dec 2035 03:41:59 GMT\nLADI_FORM_SUBMIT=0; Expires=Mon, 24 Dec 2035 03:41:59 GMT\nLADI_PAGE_VIEW=1; Expires=Mon, 24 Dec 2035 03:41:59 GMT\nLADI_CAMP_ID=; Max-Age=0\nLADI_CAMP_NAME=; Max-Age=0\nLADI_CAMP_TYPE=; Max-Age=0\nLADI_CAMP_ORIGIN_URL=; Max-Age=0\nLADI_CAMP_TARGET_URL=; Max-Age=0\nLADI_CAMP_PAGE_VIEW=; Max-Age=0\nLADI_CAMP_FORM_SUBMIT=; Max-Age=0\nLADI_CAMP_BEHAVIOR_PAGE_VIEW=; Max-Age=0\nLADI_CAMP_BEHAVIOR_FORMSUBMIT=; Max-Age=0\nLADI_CAMP_CONFIG=; Max-Age=0\nLADI_CAMP_END_DATE=; Max-Age=0\nLADI_FUNNEL_NEXT_URL=; Max-Age=0\nLADI_FUNNEL_PREV_URL=; Max-Age=0\nLADI_CLIENT_ID=; Max-Age=0\nLADI_PAGE_VIEW=; Max-Age=0\nLADI_FORM_SUBMIT=; Max-Age=0\nLADI_CAMP_ID=; Max-Age=0\nLADI_CAMP_NAME=; Max-Age=0\nLADI_CAMP_TYPE=; Max-Age=0\nLADI_CAMP_ORIGIN_URL=; Max-Age=0\nLADI_CAMP_TARGET_URL=; Max-Age=0\nLADI_CAMP_PAGE_VIEW=; Max-Age=0\nLADI_CAMP_FORM_SUBMIT=; Max-Age=0\nLADI_CAMP_BEHAVIOR_PAGE_VIEW=; Max-Age=0\nLADI_CAMP_BEHAVIOR_FORMSUBMIT=; Max-Age=0\nLADI_CAMP_CONFIG=; Max-Age=0\nLADI_CAMP_END_DATE=; Max-Age=0\r\nstatuscode: 502\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25319,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (25278), with no line terminators","md5":"2f977d5872cb7eb7a560eb0b0a540baf","sha1":"c8e2d0134632884763d3922bdae5d1245207259c","sha256":"3b8a21beff2c38dad1d682f7876cf1233fd7a8325b99292400828b6d9c4b3c38","sha512":"15f89220c95de08df80eeabf3acbfed6490e43df568d3869bf39677819ff017f68a64c986c2bd86aa39b13ad96317f84fcdb6a51e2f1bdb54c3992862b309b69","ssdeep":"768:OytnERd1jFH+dmF+dIF+vF+DFFbxMF5FayKqEER1FrFW:hid1jF1FcIFWFyFFyDFDR1FrFW","tlshash":"45b2a53a35482938a577c33ee1fc6b6c5169e112ca530ffdf1aab9624285ce530e3784","first_seen":"2023-03-07T16:41:18Z","last_seen":"2026-04-05T22:04:38.600567Z","times_seen":564,"resource_available":true,"data":null}},"time_used":3488,"timings":{"blocked":1555,"dns":363,"connect":352,"send":0,"wait":377,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-26","alert":"Sinkholed","trigger":"www.shopbinhminh.click","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open%20Sans:bold,regular\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css?family=Open%20Sans:bold,regular\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.shopbinhminh.click/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 26 Dec 2025 03:41:59 GMT\r\ndate: Fri, 26 Dec 2025 03:41:59 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12028,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"1a6cf03df5b75707bf4fb4b05f5649fe","sha1":"2d84b1d43ccb523e77016ad7e4a90ff37e43c933","sha256":"6efd2bfffc28cc8d42fa421939d82038e80f45167dad34788c85e0096401aabe","sha512":"14f155f4d33fb15f182913f2e11acab05a352ef943fcc84e413db24d74035b2b4f3f1373cf46160268ad285138858d7d93c32068cca26dd7d161cc4140566333","ssdeep":"192:aCKKf2XdrqJnbqGIwV4jozYSC77u2mIrqUnbqGIwV4y9ztY:Jt5qY47uOqY4P","tlshash":"29422b9000171850aa435de633ce7e34ee0f92667044d07a6bfd8b9bdedad6963b431d","first_seen":"2025-09-17T00:23:11.60933Z","last_seen":"2026-04-06T06:10:34.929279Z","times_seen":3445,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":83,"dns":1,"connect":20,"send":0,"wait":32,"receive":0,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.847Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.shopbinhminh.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Dec 2025 09:55:49 GMT\r\nexpires: Fri, 25 Dec 2026 09:55:49 GMT\r\ncache-control: public, max-age=31536000\r\nage: 63970\r\nlast-modified: Mon, 15 Sep 2025 16:30:41 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48320, version 1.0","md5":"dcf31ebe107435bd68e0164d59e19b87","sha1":"b68160c9333af833fe483928b3ef7128c07a56a0","sha256":"d8e4fe0452aa2076429a9bb5d8757d00a994dd95986cf950e9a1a371b9a072a0","sha512":"130cd52c3cccc36a7029bf92b2ddb363b8b36d206454aacc246739919552fccec5cacbad615ba4ac3817da3e83239371fe51324bdadd08357e3495087f62cb08","ssdeep":"768:Jzqdwl5YV7FVmpudK5a8dF8D8Z7J78VGnNFZEKh02dmSTPe9UiallHcOEi2c0NC1:9q+SYuMaVwZ7oGRNh02dd6UialBcOEpE","tlshash":"1623f218f29471f7edecd4d500a18c72baa528d442f116ed07b8d53ca36ca817a729fb","first_seen":"2025-09-17T00:07:53.723302Z","last_seen":"2026-04-06T08:13:05.861707Z","times_seen":200753,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":56,"dns":1,"connect":7,"send":0,"wait":9,"receive":10,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.shopbinhminh.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 16496\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 24 Dec 2025 17:27:20 GMT\r\nexpires: Thu, 24 Dec 2026 17:27:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 123279\r\nlast-modified: Mon, 15 Sep 2025 16:31:04 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16496,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16496, version 1.0","md5":"4ab0f5401f95f9e34ac2593cea155576","sha1":"77acfcc3ace52126998b65ac874a53c3e01e5a7c","sha256":"cc762462ea67b7815649ea3cc005699e3b95b3244b59eb2ce2d22e3ad33497c2","sha512":"ed4221f42cb1cf287c26d85d033d5e13d0892c316b17cfc856a7d386a43b57304a30913efb80dc1dfa1ac1bfc9c09133c209836e0c3f6cbc87550d3cae780fa1","ssdeep":"384:q5tJolRYH2VQ6RF2bXsZG9C8I+IyOFfCA:ctJobK6RF2oG9QbyOFff","tlshash":"0772c0842e830904dbb272358e945cddc5f120b5d783b6a5a363b71545a85ee831ac7f","first_seen":"2025-05-29T19:30:52.511801Z","last_seen":"2026-04-06T06:36:06.096873Z","times_seen":2546,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":55,"dns":0,"connect":20,"send":0,"wait":17,"receive":1,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.shopbinhminh.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 25 Dec 2025 09:55:49 GMT\r\nexpires: Fri, 25 Dec 2026 09:55:49 GMT\r\ncache-control: public, max-age=31536000\r\nage: 63970\r\nlast-modified: Mon, 15 Sep 2025 16:30:41 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48320, version 1.0","md5":"dcf31ebe107435bd68e0164d59e19b87","sha1":"b68160c9333af833fe483928b3ef7128c07a56a0","sha256":"d8e4fe0452aa2076429a9bb5d8757d00a994dd95986cf950e9a1a371b9a072a0","sha512":"130cd52c3cccc36a7029bf92b2ddb363b8b36d206454aacc246739919552fccec5cacbad615ba4ac3817da3e83239371fe51324bdadd08357e3495087f62cb08","ssdeep":"768:Jzqdwl5YV7FVmpudK5a8dF8D8Z7J78VGnNFZEKh02dmSTPe9UiallHcOEi2c0NC1:9q+SYuMaVwZ7oGRNh02dd6UialBcOEpE","tlshash":"1623f218f29471f7edecd4d500a18c72baa528d442f116ed07b8d53ca36ca817a729fb","first_seen":"2025-09-17T00:07:53.723302Z","last_seen":"2026-04-06T08:13:05.861707Z","times_seen":200753,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":78,"dns":7,"connect":10,"send":0,"wait":7,"receive":3,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.shopbinhminh.click/","date":"2025-12-26T03:41:59.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://www.shopbinhminh.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35156\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 24 Dec 2025 20:59:15 GMT\r\nexpires: Thu, 24 Dec 2026 20:59:15 GMT\r\ncache-control: public, max-age=31536000\r\nage: 110564\r\nlast-modified: Mon, 15 Sep 2025 16:30:01 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35156,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 35156, version 1.0","md5":"062c1f2aaf2d4de07ad2a2f21c17ffc0","sha1":"3fd1f07343bd33a53cd374f7f107dbdf9effae03","sha256":"d5bab8e28732fe3d10dcef4f77b9c248605bbb2a87d289a2539251ceafab536a","sha512":"7ab522d8bc41128be5a15f2cb91f851f6dc5e437afbb90e6191bbe63d9b94a35911f04701fb2b291362b2ae0f0cc639dec2d15e53928afc5769590a2937e81cf","ssdeep":"768:is48okTArkNSgZJAf5jkRcaUNt8wrNPCbJktQV+n+NUB/wo8IEH:5hNTtNSgZJMjkRBUMwrNPC9NV+n+o81H","tlshash":"22f2e172c3787192ae0985760d60cec8986bb2098f7658b0143fdd38ee45345a3f6e6c","first_seen":"2025-05-29T19:30:52.507782Z","last_seen":"2026-04-06T08:30:31.763633Z","times_seen":14844,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":78,"dns":6,"connect":7,"send":0,"wait":7,"receive":2,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}