{"report_id":"20a1da49-14a6-4db1-92e8-fb338d5e5a0c","version":6,"status":"done","tags":[],"date":"2026-03-24T01:51:26Z","url":{"schema":"http","addr":"fbshop691.com","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":0,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"fbshop691.com/#/pages/tabBar/home","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"title":"หน้าหลัก","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"fbshop691.com","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":0,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-28T01:51:26Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":6,"urlquery":0,"analyzer":4}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-24T01:51:12Z","timestamp":1774317072,"ip_dst":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":47332,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-24T01:51:12.952266+0000\",\"flow_id\":1141297063715874,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":47332,\"dest_ip\":\"49.51.129.251\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050737,\"rev\":1,\"signature\":\"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_02_06\"]}},\"tls\":{\"sni\":\"tiktok-1325855236.cos.accelerate.myqcloud.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"699a80bdb17efe157c861f92c5bf5d1d\",\"string\":\"771,49199,0-65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":911,\"bytes_toclient\":7550,\"start\":\"2026-03-24T01:51:12.910370+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-24T01:51:12Z","timestamp":1774317072,"ip_dst":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":47338,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-24T01:51:12.954870+0000\",\"flow_id\":34836178855154,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":47338,\"dest_ip\":\"49.51.129.251\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050737,\"rev\":1,\"signature\":\"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_02_06\"]}},\"tls\":{\"sni\":\"tiktok-1325855236.cos.accelerate.myqcloud.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"699a80bdb17efe157c861f92c5bf5d1d\",\"string\":\"771,49199,0-65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":7550,\"start\":\"2026-03-24T01:51:12.910578+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-24T01:51:12Z","timestamp":1774317072,"ip_dst":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":47374,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-24T01:51:12.956989+0000\",\"flow_id\":1888380855051992,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":47374,\"dest_ip\":\"49.51.129.251\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050737,\"rev\":1,\"signature\":\"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_02_06\"]}},\"tls\":{\"sni\":\"tiktok-1325855236.cos.accelerate.myqcloud.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"699a80bdb17efe157c861f92c5bf5d1d\",\"string\":\"771,49199,0-65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":753,\"bytes_toclient\":7550,\"start\":\"2026-03-24T01:51:12.911064+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-24T01:51:12Z","timestamp":1774317072,"ip_dst":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":47358,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-24T01:51:12.959350+0000\",\"flow_id\":1404303681054235,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":47358,\"dest_ip\":\"49.51.129.251\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050737,\"rev\":1,\"signature\":\"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_02_06\"]}},\"tls\":{\"sni\":\"tiktok-1325855236.cos.accelerate.myqcloud.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"699a80bdb17efe157c861f92c5bf5d1d\",\"string\":\"771,49199,0-65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":947,\"bytes_toclient\":7570,\"start\":\"2026-03-24T01:51:12.910875+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-24T01:51:12Z","timestamp":1774317072,"ip_dst":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":47354,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-24T01:51:12.961171+0000\",\"flow_id\":1742248887772607,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":47354,\"dest_ip\":\"49.51.129.251\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050737,\"rev\":1,\"signature\":\"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_02_06\"]}},\"tls\":{\"sni\":\"tiktok-1325855236.cos.accelerate.myqcloud.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"699a80bdb17efe157c861f92c5bf5d1d\",\"string\":\"771,49199,0-65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":789,\"bytes_toclient\":6500,\"start\":\"2026-03-24T01:51:12.910783+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-24T01:51:12Z","timestamp":1774317072,"ip_dst":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":47344,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-24T01:51:12.963732+0000\",\"flow_id\":381762162189658,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":47344,\"dest_ip\":\"49.51.129.251\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050737,\"rev\":1,\"signature\":\"ET INFO Observed Tencent Cloud Storage Domain (myqcloud .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_02_06\"]}},\"tls\":{\"sni\":\"tiktok-1325855236.cos.accelerate.myqcloud.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"699a80bdb17efe157c861f92c5bf5d1d\",\"string\":\"771,49199,0-65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":789,\"bytes_toclient\":7570,\"start\":\"2026-03-24T01:51:12.910682+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fbshop691.com","ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"domain_registered":"2026-02-24","domain_rank":0,"first_seen":"2026-03-24T00:34:04.99941Z","last_seen":"2026-03-24T00:34:04.99941Z","alert_count":76,"request_count":19,"received_data":3121486,"sent_data":8851,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.tk6567shop.shop","ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-01-17T14:09:58.146869Z","last_seen":"2026-03-20T00:57:18.516314Z","alert_count":0,"request_count":36,"received_data":1006373,"sent_data":19597,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"domain_registered":"2013-04-24","domain_rank":0,"first_seen":"2025-01-04T08:15:43.675531Z","last_seen":"2026-03-20T00:57:16.644128Z","alert_count":0,"request_count":18,"received_data":692658,"sent_data":9395,"comment":"","tags":null,"fingerprints":null},{"fqdn":"sc04.alicdn.com","ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-06-25","domain_rank":130872,"first_seen":"2016-08-16T14:01:27Z","last_seen":"2026-03-20T00:57:16.477915Z","alert_count":0,"request_count":7,"received_data":434684,"sent_data":3248,"comment":"","tags":null,"fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-03-18T19:09:37.145299Z","alert_count":0,"request_count":1,"received_data":579,"sent_data":444,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ae01.alicdn.com","ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-06-25","domain_rank":31289,"first_seen":"2015-11-26T10:30:36Z","last_seen":"2026-03-19T09:31:08.26682Z","alert_count":0,"request_count":8,"received_data":373105,"sent_data":4438,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"cf.shopee.sg","ip":{"addr":"23.36.77.43","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2014-11-28","domain_rank":475097,"first_seen":"2016-08-29T05:00:08Z","last_seen":"2026-03-24T00:34:05.572789Z","alert_count":0,"request_count":2,"received_data":246975,"sent_data":914,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping-appShopping~pagesC-goods-categoryGoods~~e48515fa.df83b29f.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"e7117d0ac7282237feb974e03df8b067","sha1":"b61f949fc94980695b43027bacd779f519c250e5","sha256":"88908fe751a24155c3b8c1c8762e5a67fa302c3094c04abc5363a992b0412d54","sha512":"501aa555e1f877179125890d39804ef9bb0cce61b402b5fc7fa01f3af75fddfc8b9eef832cb8b40f2e6073615e9be0d0838488c4ae9f17ad7772db517704f267","ssdeep":"192:lmRs6VamRs6vXhGq49UTKxIDR7+3Q3JXau3jgf7MLK79:AjTxXhvTK47y7KKh","tlshash":"d052d824b08bb5664d93882624bb2705a1367d0cec26b4c0d7f295f89dfad4f132af5c","size":14269,"data":"","first_seen":"2025-11-26T01:01:47.792251Z","last_seen":"2026-06-01T04:40:07.654169Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-category~pages-tabBar-find~pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping~72a8b358.f4e6b9a6.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"2062e2adb1b95f8251c11a97df9f4b1c","sha1":"165882d531654382a81421ff46a3c58152468eb4","sha256":"24a29833bbe46f58a9792013151c5328df6f886c561f6762f0b49a066392e46b","sha512":"f7c62da23dbdeb5ad026d306bb96366657873da711db86b134b0ecfa4de702dee4bea3b1dfa4e49371c0707bc05b0bf7c4d011462972d9d4999f0da2f49b3c32","ssdeep":"192:a6hANQtGtCQyMbQueaRs6UoA3F3xuHXZ7YE27jFRk0D+ZTRs6zVO:aqAGQZyMbQtaW3KYaBE","tlshash":"6842f90a718bb90a48a74856505f5205a6b73c6ce41af44bf7b0c9ed5cfa88f1332f6d","size":12563,"data":"","first_seen":"2025-11-26T01:01:47.77986Z","last_seen":"2026-06-01T04:40:07.639372Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/chunk-vendors.253e04fa.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"4396fcf3c4904404478edae1c5d3a03a","sha1":"abc6bf3989b4c2ab05a939e4b40adbbdaffdeac9","sha256":"4efd70e9fbcf5e2d660943b0233921b90ac94a106e8599bf844238af73de313f","sha512":"159071be96118eae4353f0a6f87b62b21d74de37127a7f02583ef308dfdd62dd36a55e3de7dbba96e19d7162111f207930c4010fdb12bd5421dd17c117e3b159","ssdeep":"6144:n4+eEbCHAmSzzhlGl9KhhsIvzcyHptEHGSi9PWmUCzQ3sqaCrjJJGDMP:He6LzzaycyVSiW2IJGDA","tlshash":"4cf4089cb285b0aa07e760f5003f220ba13b6968b40ad4d5f275e4d46e79d8e6137f7c","size":788732,"data":"","first_seen":"2026-03-20T00:57:21.744255Z","last_seen":"2026-06-01T04:40:07.660344Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-homeLoad.fa9f2c38.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"5166b72ca25d933d20ccb337e24895ce","sha1":"9bf017a903b6af32114dc0c286aaeb9df3bf6ef0","sha256":"8334f3c31429143295b64c12d91e4c5bbc387574834634c0e059aa000adfc9eb","sha512":"689228c526134959b1756cfa0a8998a52917d219241b3e706abb44306ee13432f2623f06ace95b5930f090ccd04b6ab1fc96374ac55e83f75cc30179bdb102d7","ssdeep":"192:trTRs6I1Tsb3RsU3sxBsijs/ZsYVE8HdxyeWTR4TB:trTUob3yUcxCiY/6YDHdRWI","tlshash":"5822a46171c7e0494513cc25809e592a96f87eab9c6190ebf370d4ddcae2ade1333e1e","size":10648,"data":"","first_seen":"2025-11-26T01:01:47.864541Z","last_seen":"2026-06-01T04:40:07.681585Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-home.6097ee49.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"e08252e6613576a8490725e7bd8671af","sha1":"d648978004ee21b94e07555392b7557d8267bf4f","sha256":"f4ae6530523e213003cbf692de332c74f10069ced07add95f1e8163d74502a0a","sha512":"82e5c7ebdd9a03a8257eeba452317294f10d206c2df9794a0729980fda5f75faf03ba7537d9c0ffd924bafad3858ee1f39350cc387ab34504f8e02af303b8349","ssdeep":"6144:ZXx1WCIC+PyyOK2aOymie2aoefhN15ptFxxSgy:b1WCQyyOK2aOymiCfhN15ptFxxW","tlshash":"cb9445c2b9cea008897bca45d146377cbbbf7bd7935299c2ae033b344e625c7261158d","size":439301,"data":"","first_seen":"2025-11-26T01:01:47.873648Z","last_seen":"2026-06-01T04:40:07.682434Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"93368157fb131b56a45d6f60f8b40342","sha1":"ea2a25edb7b00c3e0a06650f02fded5bd87dfa20","sha256":"c48d4859bc082aa591168f7d7230bef438ecc2b3074e707c83864e11ec1a891f","sha512":"366c90d022f7fd6718d76460de51a154cf6cf8bf8e3aefa2e0e736cbba24ec53506485331abd3c3c2a7e6ae00c9a3b957a9aa675ecdd389afca7863ad8365908","ssdeep":"","tlshash":"c8e068c260a6294c02208016304ac1031bb608729ec149613c4c67a58fb9f4bc46e859","size":352,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-13T08:30:18.835869Z","times_seen":4050,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/index.df413b82.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"31c362156d3e9a921b17a22a83cdbc29","sha1":"32aba3e17df13994b6123cd93d73c06ce36a42df","sha256":"f52c8ad475ce26c6f4d61f59674fac5c77f0d987bd88fbb6c186b29ef97d0a8b","sha512":"2f25c28cc31ca340e9212aa295953bf87cd18d836b3e4445322a2246fc1fddcd8791e2e4611cef4d625f15ded6afa2f96e45b99189f3ec8aae92fbcfb0b4e892","ssdeep":"24576:1h5azUn49ZI4zGFEcFmmbuoX3rp1P1UmGcJKEyGxpdg8rCwUe4ExQIOwQym:1h7XsGF+GZJKEyGxpdg82wUe4ExQIn1m","tlshash":"a575ae1a62cd73fc1a4a2246a04f3d3820712f7af396b5d594f6f5580adcb8a8122f75","size":1685985,"data":"","first_seen":"2026-03-20T00:57:21.777232Z","last_seen":"2026-04-30T14:22:42.722677Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping-appShopping~pagesB-comment-addGoodsComm~4b84ecd9.220c4886.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"2aa9722673635f2e3d2abc5e14ef4957","sha1":"f0a878f9f7bca348aeeeb0878d517515070076f5","sha256":"dfbf1cf7f109a41f82fbd25cd45edfd543102da15f5041eecd3bcb0417840eba","sha512":"1b54aa16dc16b88501f7e517eb4af9e821d73d9f2ec4cff4cfe180470cf76a0cb4fe2f09311907d4633ab77e4c801ebc24a0f36b6c0a74599a76b97616be2db7","ssdeep":"192:VXEy1lUnUv6qkFqA8TkJcYyqn5SxK5TgeaaBVZzmiQgxLRs3cnkUa5ECdSzwcTZd:VXsBqQcY15T5PVZK+vnxa5E5zwgJ","tlshash":"a4d2de8ac64c19d83fbbd10f658c7a6f11493b92c44d2cf8aca6d34d5ddee622a4036d","size":30911,"data":"","first_seen":"2025-11-26T01:01:47.844435Z","last_seen":"2026-06-01T04:40:07.646566Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-category~pages-tabBar-find~pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-my~pages~56b8733c.6deecd54.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"a9dfd933559d7ae69ff5fcf0389f24d0","sha1":"1c8883301ca3effbc760d514fcb84ba0b28e9f47","sha256":"4b784f3be8598d1048b7cc8b301bd8abe3b93abe195d82aede5aabd4d07f9d24","sha512":"d97678c5aa136294b3993e2cf5829ff3888833de4cf795606d122f69cee46a12d058f28b6690266cf9d158a9dece76abee81ca110df0c2c0a87cded7829a8f7d","ssdeep":"384:acwOiOxOyd9Nvb2hEOcPcGOOEwynTYyRHTOTGfkad7bE+89xvT:7XZQyd9NvCSOwcGOOBynTHRHyqfkad7O","tlshash":"0592f719f0cb78162e93841c647b9709a23a786da827a584e7f0e1fc9cf65cf1527f24","size":20582,"data":"","first_seen":"2025-11-26T01:01:47.807776Z","last_seen":"2026-06-01T04:40:07.648281Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-07T08:18:02.151537Z","times_seen":15899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"fbshop691.com/static/js/index.df413b82.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:03.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/index.df413b82.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-19b9e1\"\r\nexpires: Tue, 24 Mar 2026 13:51:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1685985,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (57698), with no line terminators","md5":"f80155a83dc32bf5908db45797ffdaa9","sha1":"8e4b58f3f20cec501fde7cc7356713daf32b3492","sha256":"68b7866f9be97735150e92d984f2548320f84ffd2d7d7b2a2a687201d0acff2d","sha512":"ad8f532171edbc8a3732a206f6dd368a385e88e0510a65a16c2055f7c26c8ed3a22783738363eb7aefb8cb18d0078d2c6ba8ff6065f0584a59868cc18fb22862","ssdeep":"24576:1h5aHgUn4ACZI4zGFEcFmmbuoX3rp1P1UmGcJKEyGxpdg8rCwUe4ExQIO3:1hSHsGF+GZJKEyGxpdg82wUe4ExQIe","tlshash":"e2659e3a62cda7fd16c13286505b3b3420712faaf799f5df01b6f45829cdb898122b74","first_seen":"2026-03-20T00:57:21.682812Z","last_seen":"2026-04-30T14:22:42.674089Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1036,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1036,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/tabbar/personal.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/tabbar/personal.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 506\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-1fa\"\r\nexpires: Thu, 23 Apr 2026 01:51:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":506,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 57, 8-bit colormap, non-interlaced","md5":"386a5d243f418474f427b038ff30eac2","sha1":"a94030f8b5a8674c91c475f5e321743144a999f0","sha256":"d4cb6272a5596262868c3f36184fd24e4a352e6bd661d3d1370062c9eb0a5c35","sha512":"ae71d0295a9b32973ac2914433378ddb9a37f0d6a8a1b3774380464642b4a52e834a54068338e2d98bd62d5d4efaf63dbf76b0812eec449c2a85c224f605df9d","ssdeep":"","tlshash":"67f0c0e713c31e20abd10a52db4546a084620846e214ccb954490ff64447971b581d5b","first_seen":"2024-09-30T14:31:30Z","last_seen":"2026-06-01T04:40:07.651559Z","times_seen":52,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/home/home-sousuo.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/home/home-sousuo.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 1257\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-4e9\"\r\nexpires: Thu, 23 Apr 2026 01:51:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1257,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 53 x 54, 8-bit/color RGBA, non-interlaced","md5":"a70c55876803f3620f0815938ad4b70e","sha1":"b46faa1a1988fe1f6eb4eedc973480fe93bf57b6","sha256":"519355c6d4610737fc078ad7e2c3f2a221c863fc1ecae458d1b635e61e0a207b","sha512":"0162d71a28019438fd022dcdf95b207e17e4c6b0b8854a69cfb83c2e49abdd09506a531d336c2c0ee5090734ef917f8178e7449f4f15b5cc635d66ede15b3f26","ssdeep":"","tlshash":"9221b783abd639bc6d4e4af1ff669042945433a1448f7f098df270ad416c74040b4a37","first_seen":"2024-08-29T10:55:55Z","last_seen":"2026-06-01T04:40:07.671335Z","times_seen":54,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/getGoodsList?lang=th\u0026currency=\u0026?t=1774317071605","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Index/getGoodsList?lang=th\u0026currency=\u0026?t=1774317071605 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"588f362f532081fd1430597942474d99","sha1":"d6f58b4daf534310ae52f85f3039c41d82c49fdb","sha256":"9d839d88761786200ed3c22a886eaf83257c684a9f5ee6bf5bf9eecbd1967ac8","sha512":"3d0fcc25ccf1de6a70bac85c134e0dd33636f7fd39cd72ea412ab2e6197e8ce55afe8a888593161b81f42983d027a7c31a48e53de949029135fd8382cfd022be","ssdeep":"","tlshash":"65b0126d0204a02518f655445818103c97d63910400a44b400ec813419240bdd106c8d","first_seen":"2024-01-15T04:52:00Z","last_seen":"2026-06-11T11:57:07.736535Z","times_seen":79,"resource_available":false,"data":null}},"time_used":478,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":478,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/13d080c25d20c1ee79340140ccb4f952.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/13d080c25d20c1ee79340140ccb4f952.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 6916\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"56df34fc6ea6dfd0350a54fc3705ea46\"\r\nLast-Modified: Fri, 26 Apr 2024 13:38:24 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 15163752606309725378\r\nx-cos-request-id: NjljMWVlMTNfZWEwODdkMWRfMWQ2MzRfODRjNzEwOQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6916,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 281x179, components 3","md5":"56df34fc6ea6dfd0350a54fc3705ea46","sha1":"4f27163ff0f07d4df4ff2392e81f0b81e180ff98","sha256":"ee3d5fe39bd446ebb7508bb3661586770853db3d06ef5d9937062d79645bc71a","sha512":"0e375d715efb64dc33de467c39c537b1213723d976bff612a72c01bb5afd109d3f7775309f7d531fd0145c6b9410b5b85e61cb9afe06b8dd9720620cdd09d2ff","ssdeep":"192:BqnnMD20mD2ZwTyvBRTmy9ZuiLFalvsomMtfc8gqtu/1U+Siex:QiLMGwEBZmy9ZuiBMUsfJgqtu/1Ux","tlshash":"d6e19e02bded42b9c153ec3122b4e2ece75ac72f93880208b075b803c7d3555c48ed59","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.641288Z","times_seen":49,"resource_available":false,"data":null}},"time_used":3224,"timings":{"blocked":2865,"dns":0,"connect":0,"send":0,"wait":359,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/logos.png","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /logos.png HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 280351\r\nlast-modified: Wed, 08 Oct 2025 08:22:12 GMT\r\netag: \"68e61f34-4471f\"\r\nexpires: Thu, 23 Apr 2026 01:51:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":280351,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1081 x 1081, 8-bit/color RGBA, non-interlaced","md5":"b0f6b8af17963a49960dba51250bd110","sha1":"a1548ea2e976a9b0c7d40f0b3fb81746603c1793","sha256":"4cbfd4627aa763a801b1070d9f4888d657e3f6ba6234ef9ee76aad61e66a6eac","sha512":"fa3a19a2df7087b8a5b36ba2588e615eb2cb6463b0fd317f050873b3bdfe1c50a0282fc5bc706b0ff1e9a8a1cf849e6696a6f6f784da574b513e34776eac9080","ssdeep":"6144:Toor57vp8izmSlrFa8QgNd0R69FcXUDLJk:xxvp8ImSlIIj0R69FQUDNk","tlshash":"84541225bf76ac85cc0f22b982d40fce6cd688136c9163bc58d4f166d456d298bfb728","first_seen":"2025-11-26T01:01:47.789183Z","last_seen":"2026-06-01T04:40:07.637446Z","times_seen":34,"resource_available":false,"data":null}},"time_used":1277,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":510,"receive":767,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240428/6d064f1c7f127ce21d5d67b3b7578ce1.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.560Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240428/6d064f1c7f127ce21d5d67b3b7578ce1.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 333495\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:14 GMT\r\nETag: \"05d76583830e166ff337121504b53d38\"\r\nLast-Modified: Sun, 28 Apr 2024 06:11:30 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 5670926391981868225\r\nx-cos-request-id: NjljMWVlMTFfMWM3NDljMWVfMTdhY2ZfMjVlZTg3NA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":333495,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x800, components 3","md5":"05d76583830e166ff337121504b53d38","sha1":"31150677c45690c39d997800ac1c111dd154c9b9","sha256":"bc23f2645e6f148783d620edadcddc43b393952717d32d2ae963c25dd8f73b64","sha512":"a91ea03f49a2b14c051ff228be95de7a0526f11b9a041b0dd04c88cffc09ed3fac82db9c8281e8b4cbde2de87d47dca55b5674fcf22b4297003f69d15c5a2e68","ssdeep":"6144:ELn3laM/gIeByzONrQcALGjGb0AhyDJiFnjgkamwJdfwoi:ED4pNde8HAcDJE5amw4","tlshash":"2a642317b1d6e102a58752b38e2c4878912cf2e58ca7ee6737d62d30578e74753ab0c3","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.651028Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2273,"timings":{"blocked":-1,"dns":356,"connect":19,"send":0,"wait":1447,"receive":341,"ssl":107},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/H0474efaa7ff54dd39490001eb60d3f7b1.jpg","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:18.125Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/H0474efaa7ff54dd39490001eb60d3f7b1.jpg HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 96936\r\nx-amz-cf-pop: OSL50-P3\r\nserver: Tengine\r\ndate: Mon, 23 Mar 2026 16:19:36 GMT\r\ntraceid: 9b66334617742827762573482e\r\nlast-modified: Mon, 13 Jun 2022 08:10:02 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: 9b66334617742827762573482e\r\nstrict-transport-security: max-age=0\r\ns-brt: 29\r\ns-rt: 31\r\ntiming-allow-origin: *\r\neagleid: 9b66334617742827762573482e, 9b66334b17743124338356507e\r\nvia: ens-cache23.l2de4[221,221,200-0,M], ens-cache1.l2de4[223,0], ens-cache15.de7[0,0,200-0,H], ens-cache20.de7[2,0], 1.1 42f63300fbd68ad2da1e182d0d6d6948.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774282776\r\nx-swift-savetime: Mon, 23 Mar 2026 16:19:36 GMT\r\nx-swift-cachetime: 86400000\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 34302\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-id: bEV4JBG3o-r--g8z-PtaJfx3EvffmxHMOVyCaNyAvKY3dxScv-DKqA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96936,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"9a648568e283243e86873855599bd8e4","sha1":"b488ff78a881a590105bd6603508fdd626764d4f","sha256":"b7f80497916e2ca0a6b3fd30ffc99a861e552c50cd4afbcd9f4b0fa5a8723baf","sha512":"b0ce549613e554ce9121596b4fcca12348f005f4dd284694ce7e0d14dd8c0d931001705a41f3a53146147b881710ec7f77982d46bb70281eba0bb8be5054e7bd","ssdeep":"1536:VKgyoccW/9nW/atTMM1xS/cmuCH4rJ+F0GQMSUjiEUa5e/2JjHjMGse/toLeCGz5:UmccOnW/atvyc7+s+qPEU8bw+IeZvsoN","tlshash":"bb93126e9af6593346be3f7813ab6bb053c1fd245163b4631c02e1213e92a51f358a15","first_seen":"2026-03-24T00:34:14.968951Z","last_seen":"2026-03-24T01:51:41.404718Z","times_seen":7,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:07.319Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:08 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Tue, 24 Mar 2026 15:51:08 GMT\r\ncache-control: max-age=50400\r\nset-cookie: __uni__uid=rBEQiWnB7gxC9/1IA9UbAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-06-13T15:20:27.124062Z","times_seen":16330,"resource_available":false,"data":null}},"time_used":1419,"timings":{"blocked":586,"dns":57,"connect":245,"send":0,"wait":245,"receive":0,"ssl":283},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/icon/lingo/dyy15.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.233Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/icon/lingo/dyy15.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 953\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-3b9\"\r\nexpires: Thu, 23 Apr 2026 01:51:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":953,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced","md5":"64409d025268e2322a3363736b2a08d0","sha1":"02c9f3e91a54336000ddbdbacf508594ed8e9e22","sha256":"e692416629e8f393040fae5a031503070796dcd4ac4c505864b72cb9a5ecc958","sha512":"9c47a7525b590e8d1fab1e60137909e21c0a0812c292b70faf919e6dbbbed633d40c0a4ea83b0c2d09cf5f898fd9fe2d4f4b91808b572409db36fd482e88ac65","ssdeep":"","tlshash":"e211c8c62bae01bacf7680fd7297b535c42a049b75d20144a422d92ad020caa0339fcb","first_seen":"2025-03-07T17:58:59.797458Z","last_seen":"2026-06-01T04:40:07.660844Z","times_seen":47,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Config/getConfig?lang=th\u0026currency=\u0026?t=1774317071601","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.654Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Config/getConfig?lang=th\u0026currency=\u0026?t=1774317071601 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"1fbb952908f0822020aa78087f3e0714","sha1":"94ffd5fb29c97f185b72ca3e261b1111d0ccec14","sha256":"c98be7863deb9ffe6eccff1d914d40fe667724dd12180b49198380090305ef25","sha512":"f12534e4240cec8602ff37d71746a744e84ddc2cc36f7703076cba3e3f44d8211d029bc9c1a3e32cd23b6ea81e5dd7b02ee504ea1ea7d6af11ad4841a537be81","ssdeep":"","tlshash":"5ba0247c0304743514f51144dc1c107c41c534100005407000fcc134171007dd103ccd","first_seen":"2024-08-19T13:17:27.865692Z","last_seen":"2026-06-11T11:57:07.731181Z","times_seen":95,"resource_available":false,"data":null}},"time_used":361,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":361,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/8e5c23c3a1c0ed2a3fcaf279fa8cdecd.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/8e5c23c3a1c0ed2a3fcaf279fa8cdecd.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 5568\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"ec62a8978d5cd592bb8237fd86b27df1\"\r\nLast-Modified: Fri, 26 Apr 2024 13:08:00 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 1838928292913314408\r\nx-cos-request-id: NjljMWVlMTFfMzQ3NDljMWVfMTcxYmVfM2FlZGNlMQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5568,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x168, components 3","md5":"ec62a8978d5cd592bb8237fd86b27df1","sha1":"2d655515af06c78afca1ba4eaad432db4ca5277e","sha256":"b73767d0228282e4c6f3cebcd21cf3f6c4a4f4e2896a8883b021a27655ea9c48","sha512":"2add16f95f4c496d303c1db648c6487db8d1303c467f69368fa88e5d8b2cc069f9c9952a32ac97bbda6654b8a773d9d721ea431125001ff9ef39d53ab0246f5b","ssdeep":"96:XbbbbbbbbbblbNxMMTh5oCEvRb5d97ZCdSYibbcghu5qck5AIUebqTF2K94jF+U9:XbbbbbbbbbblbNxPTHEvD7ASbbcuKkdN","tlshash":"e1b18e7bfd8bf123f46d683d1214764ff9434a995aab0f252998313adf2d04a880cd81","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.663318Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2864,"timings":{"blocked":-1,"dns":337,"connect":21,"send":0,"wait":2398,"receive":0,"ssl":105},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-homeLoad.fa9f2c38.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/pages-tabBar-homeLoad.fa9f2c38.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:05 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-2998\"\r\nexpires: Tue, 24 Mar 2026 13:51:05 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10648,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10363), with no line terminators","md5":"5166b72ca25d933d20ccb337e24895ce","sha1":"9bf017a903b6af32114dc0c286aaeb9df3bf6ef0","sha256":"8334f3c31429143295b64c12d91e4c5bbc387574834634c0e059aa000adfc9eb","sha512":"689228c526134959b1756cfa0a8998a52917d219241b3e706abb44306ee13432f2623f06ace95b5930f090ccd04b6ab1fc96374ac55e83f75cc30179bdb102d7","ssdeep":"192:trTRs6I1Tsb3RsU3sxBsijs/ZsYVE8HdxyeWTR4TB:trTUob3yUcxCiY/6YDHdRWI","tlshash":"5822a46171c7e0494513cc25809e592a96f87eab9c6190ebf370d4ddcae2ade1333e1e","first_seen":"2025-11-26T01:01:47.864541Z","last_seen":"2026-06-01T04:40:07.681585Z","times_seen":31,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/tabbar/home_active.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/tabbar/home_active.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 578\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-242\"\r\nexpires: Thu, 23 Apr 2026 01:51:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":578,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 57, 8-bit colormap, non-interlaced","md5":"270ee5c50bdacc917d05c1572894bad1","sha1":"28aa89262fdef0a58427ea1806cc304317ea4917","sha256":"49685f2f3effe8dfe2df4e4afb8aff3a9b8edcae35d9d455155f83c10f4b3c92","sha512":"20927a2e779fce51a5ec87d0f62ef87c0a763ee2b0936d2dfe066df7f599436a7b2ef55b17d19df201c7a0c06b21933c5a4b51b8e2d20661fe0a0c4e73ce71e8","ssdeep":"","tlshash":"a0f04141d1c50fb5be0bc3ba08bc738a4e43a4ece018986214c30c221b4023926b2cf9","first_seen":"2024-09-30T14:31:29Z","last_seen":"2026-06-01T04:40:07.650294Z","times_seen":46,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Diylayout/getPluginDiylayout?lang=th\u0026currency=\u0026?t=1774317070182","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Diylayout/getPluginDiylayout?lang=th\u0026currency=\u0026?t=1774317070182 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":104,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"c86c59f4f2c5d1ba24b2123e90a90b05","sha1":"312eba783e9a68af7da4d5a551646ef76ce92a64","sha256":"b528347954a954c2a436c0b9c6655175d7f2f6149d00b218c90124bb875b0ea0","sha512":"28a9f08d0d1bcb8d3dbcd769fe9fd8b6dee18303329243bfc34d54fbbba8d79fb096f727c196e78cc0b9000a7d894136fe5707ba3375ddf8087b05abab49c6c1","ssdeep":"","tlshash":"4ab012d82fd450031844f3f0c13f381861c2bf5440b190a007fe106f86014a74644915","first_seen":"2025-11-26T01:01:47.731387Z","last_seen":"2026-06-01T04:40:07.683384Z","times_seen":32,"resource_available":false,"data":null}},"time_used":973,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":973,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/Sf573b26d1e8b47c1b0f8e93eed55f12cT/New-Fashion-Women-s-Sandals-Bowknot-Chunky-High-Heel-Zipper-Woman-Shoe-Summer-Sexy-Mesh-Hollow.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/Sf573b26d1e8b47c1b0f8e93eed55f12cT/New-Fashion-Women-s-Sandals-Bowknot-Chunky-High-Heel-Zipper-Woman-Shoe-Summer-Sexy-Mesh-Hollow.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 13764\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Sat, 21 Mar 2026 15:29:49 GMT\r\ntraceid: 9b66334717741069888347689e\r\nlast-modified: Sat, 12 Mar 2022 02:27:34 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 9b66334717741069888347689e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache5.l2de3[239,239,206-0,M], ens-cache19.l2de3[241,0], ens-cache16.de7[243,243,200-0,M], ens-cache16.de7[246,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774106989\r\neagleid: 9b66334717741069888347689e\r\nx-swift-savetime: Sat, 21 Mar 2026 15:29:49 GMT\r\nx-swift-cachetime: 31104000\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: vZueIql4iuNrFh_0Qcpr0gPExWnb0lil4SGvkUd4rqKAJqDGJjDyZg==\r\nage: 210084\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13764,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"c295683789f70715d2a72e63d28cd93b","sha1":"60fb42ed0cdbce5bfbf07e1f1e6568df27cfe35a","sha256":"232787486e1608a62314593b45aa7dadeb977f14a00d95f4dff367a798ec7698","sha512":"b9d1a7fffd8af0c111e893ecd747d36bee569ac31f60dd0c6cb0821671b9857c51c242900cca6c1e3c45c10197217957883d6a9ce7816f56a781cbcbead89bae","ssdeep":"384:a0YTfGidxesHkbuVTBtQ/eGY/jRdCCKAwe4a6U:aff6bUBtQWPCCK4r","tlshash":"6752cf56be7eed60c65f4c326248d3b60b6199aa3ff34910fc74831a327afd00488170","first_seen":"2026-03-24T00:34:14.993189Z","last_seen":"2026-03-24T01:51:41.458404Z","times_seen":7,"resource_available":false,"data":null}},"time_used":691,"timings":{"blocked":626,"dns":0,"connect":1,"send":0,"wait":3,"receive":0,"ssl":51},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/H141a2d9d341242e390f16e0dbf13047ak/Real-Fur-Coat-Natural-Fox-Fur-Vest-Winter-Fashion-Surprising-Original-Design-beautiful-Brightly-Women-s.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/H141a2d9d341242e390f16e0dbf13047ak/Real-Fur-Coat-Natural-Fox-Fur-Vest-Winter-Fashion-Surprising-Original-Design-beautiful-Brightly-Women-s.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 28342\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Sun, 28 Sep 2025 15:42:15 GMT\r\ntraceid: 4f85b09717590741349523588e\r\nlast-modified: Tue, 31 Dec 2024 09:08:10 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 4f85b09717590741349523588e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache17.l2de4[0,15,206-0,H], ens-cache27.l2de4[17,0], ens-cache16.de7[17,17,200-0,M], ens-cache24.de7[20,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1759074135\r\neagleid: 9b66334f17742837861905228e\r\nx-swift-savetime: Mon, 23 Mar 2026 16:36:26 GMT\r\nx-swift-cachetime: 15894349\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: VLLwhcsqLbMeFsdMnaRluOz2dYLj-ESeCNI6FWcBlFop2l0KRkNuRg==\r\nage: 15242938\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":28342,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"526694d57e8cc4d03ce6b738ef8807af","sha1":"0ef95367939fa86e81691654750157cee00a3cd8","sha256":"eac851ea7c27b71f72e1bead78f243ba726147376e0f78331071f574e6960621","sha512":"09cd8b9ce60e5cc164110c1f5a286786524166915d4e88e652c0ce431d0a35517ec0555ad70751c91d17c1cfac8c048cd58896d8e251315590c69eea8f531efb","ssdeep":"768:z7DMAJEtIzzo3lhrCMLMGpsQ1tu6ThOl3FYTFe:z7pEtLHLMy1tuZl3FYRe","tlshash":"a1d2e0b496b9b90cf787d67a0eba718312a148e573ed800392ea066012bb2877535d71","first_seen":"2026-03-24T00:34:14.936504Z","last_seen":"2026-03-24T01:51:41.427855Z","times_seen":7,"resource_available":false,"data":null}},"time_used":635,"timings":{"blocked":-1,"dns":556,"connect":13,"send":0,"wait":3,"receive":1,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/home/xiaoxi.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/home/xiaoxi.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 458\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-1ca\"\r\nexpires: Thu, 23 Apr 2026 01:51:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":458,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 36, 8-bit/color RGBA, non-interlaced","md5":"98e44e4111ed1255b59f6f8a4a5bdfa7","sha1":"8fa0be259d8ce3bf5b445094107a8b9bc97f0e13","sha256":"1b847dde474ab479dc2ddccbcdddf9cf6f5849db1571296320991953fa647813","sha512":"09e83c9145031269528965e41ae59f4d0acb9d75fbe6a6191ff4f0e687f8d334acee7e3aeb33dd9ab9bf42102bcf70bb0521347f9e26a05485226ad2f2698516","ssdeep":"","tlshash":"7af0dcd42b500dc8fb1e07bc32ff7256aebf001c67906814eda265670186744edd864e","first_seen":"2024-08-29T10:55:55Z","last_seen":"2026-06-01T04:40:07.687233Z","times_seen":52,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/getIndexShowcase?lang=th\u0026currency=\u0026?t=1774317071604","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Index/getIndexShowcase?lang=th\u0026currency=\u0026?t=1774317071604 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"588f362f532081fd1430597942474d99","sha1":"d6f58b4daf534310ae52f85f3039c41d82c49fdb","sha256":"9d839d88761786200ed3c22a886eaf83257c684a9f5ee6bf5bf9eecbd1967ac8","sha512":"3d0fcc25ccf1de6a70bac85c134e0dd33636f7fd39cd72ea412ab2e6197e8ce55afe8a888593161b81f42983d027a7c31a48e53de949029135fd8382cfd022be","ssdeep":"","tlshash":"65b0126d0204a02518f655445818103c97d63910400a44b400ec813419240bdd106c8d","first_seen":"2024-01-15T04:52:00Z","last_seen":"2026-06-11T11:57:07.736535Z","times_seen":79,"resource_available":false,"data":null}},"time_used":388,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/ad/20240428/b829aa1729d8214ce8c79132e977de37.png?imageMogr2/thumbnail/700x280","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/ad/20240428/b829aa1729d8214ce8c79132e977de37.png?imageMogr2/thumbnail/700x280 HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/png\r\nContent-Length: 201815\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: max-age=2592000\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"c31d06becede966447d889004a7fc989\"\r\nLast-Modified: Fri, 06 Mar 2026 12:41:53 GMT\r\nServer: tencent-ci\r\nTiming-Allow-Origin: *\r\nX-Delay: 63982 us\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 9146826369803366234\r\nx-cos-process-src: 1\r\nx-cos-request-id: NjljMWVlMTFfZWEwODdkMWRfMWQ1YTdfN2Q5Y2ZkYQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":201815,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 700 x 271, 8-bit/color RGB, non-interlaced","md5":"c31d06becede966447d889004a7fc989","sha1":"204a36a6a3ca9cb3a2135e254f517ac7d8ba8d1c","sha256":"864c0e1ff46b3b9717060bbb6b3dabcc4e169f5fa1ffb6790843103eceb1b8d3","sha512":"61a45605308b308256ae2ba51664224747da575fcaa1a227526062783650f92d9e153debf0cb70f010df7ffc8c582496976be57c7f786aaba364445d012463f7","ssdeep":"3072:iDwii0ubfkw6orZH5OwYOsAyH/0tlE8RvO1+beTPpkz57beMs1WcEqiEDW8Yv5u:IwyuoQj67t8tlHOxPobenPiMW8Yv5u","tlshash":"4414230f1d184a7485dfd896627cb24abc30ba37be3f57b408adf0a3a53453991e2c19","first_seen":"2026-02-05T03:03:35.417222Z","last_seen":"2026-06-01T04:40:07.632217Z","times_seen":20,"resource_available":false,"data":null}},"time_used":3223,"timings":{"blocked":692,"dns":0,"connect":0,"send":0,"wait":2384,"receive":46,"ssl":101},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/H3e58ff11d8944e9f9b390a56514785fbD/High-fashion-Women-cloak-style-natural-Poncho-Coats-Female-Real-Natural-Fox-Fur-Cape-Winter-Warm.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/H3e58ff11d8944e9f9b390a56514785fbD/High-fashion-Women-cloak-style-natural-Poncho-Coats-Female-Real-Natural-Fox-Fur-Cape-Winter-Warm.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 47548\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Fri, 13 Mar 2026 16:20:21 GMT\r\ntraceid: 9b66334817734188211238226e\r\nlast-modified: Sun, 29 Dec 2024 14:49:39 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 9b66334817734188211238226e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache12.l2de4[168,167,206-0,M], ens-cache36.l2de4[168,0], ens-cache5.de7[170,169,200-0,M], ens-cache17.de7[173,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1773418821\r\neagleid: 9b66334817734188211238226e\r\nx-swift-savetime: Fri, 13 Mar 2026 16:20:21 GMT\r\nx-swift-cachetime: 31104000\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: zf2oJ1ke5r5aykaBCBPzVfK-bYvdosFdO4sOGkm30VJ9TFoH20aTTA==\r\nage: 898252\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":47548,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"6a5a3fa4f199214a09a2bb1467ce8ed5","sha1":"f95aa62bcc3f749d44c0f4f82f83ef63f4fae888","sha256":"7ae81c7604f1cae3e766ac80c1ebbd4277b60a696872668d49e27f0d05927edf","sha512":"256812f2bbae26dfa3d91f9dbda99af8638570be09937c6b4a98dd76b937ceb75abe98fa5ba01600d17ea2d81fdf1464ce12e76e54370477f26c8dfe54a7b420","ssdeep":"768:9jfSVouE71Q/yhoBgY0mYyaIFrI1pXQebgXu0RLKxaTxFPFtLyoV:9jfSSuQQ/YfRJyaIFWADN0xeXOoV","tlshash":"f123f2342b8cf309e44baa39d05b939aebcd85c35398b60c11521f8a581de2d8c5f5d5","first_seen":"2026-03-24T00:34:14.970488Z","last_seen":"2026-03-24T01:51:41.419083Z","times_seen":7,"resource_available":false,"data":null}},"time_used":627,"timings":{"blocked":-1,"dns":558,"connect":8,"send":0,"wait":4,"receive":1,"ssl":47},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/Hd28bb06c04f84914bc97e9b46e54b87cu/2022-Winter-Jacket-Ladies-HIGH-QUALITY-Fashion-Natural-Fox-Fur-Coat-High-Atreet-Style-Round-Neck.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/Hd28bb06c04f84914bc97e9b46e54b87cu/2022-Winter-Jacket-Ladies-HIGH-QUALITY-Fashion-Natural-Fox-Fur-Coat-High-Atreet-Style-Round-Neck.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 49174\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Mon, 23 Mar 2026 16:36:26 GMT\r\ntraceid: 9b66334617742837862912075e\r\nlast-modified: Fri, 27 Dec 2024 12:37:36 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 9b66334617742837862912075e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache6.l2de4[179,179,206-0,M], ens-cache36.l2de4[180,0], ens-cache21.de7[182,181,200-0,M], ens-cache15.de7[184,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774283786\r\neagleid: 9b66334617742837862912075e\r\nx-swift-savetime: Mon, 23 Mar 2026 16:36:26 GMT\r\nx-swift-cachetime: 31104000\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: ONUfW1Jemf61OC1rXiDZbHf3PvbAlVidu70lg_u5zW_LebsfJkr7Qw==\r\nage: 33287\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":49174,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"208fecb165559008a6c45efd8bdc9e9d","sha1":"3b5638cb28354724ffaadc92a51263c1ea3245df","sha256":"595016b90c4659940011e1ad0996b92fe23dbb7a6179a7660b81484a48446046","sha512":"1e619656b42251fdf697d1433dabc8c8f614794aeaeb0fa0404052add96b821522bf194fb1f84e98c9570a117fe8ff98ea83a2cfecb89ae150541ea67f9dc9f7","ssdeep":"768:HlTcLK8wzwUFP04KltvmDcTXyyFuSpBlWPvj+O3KOoMHDsjDhAakTU:HlIswC1MQcuH4Q3jVaOoMHDQVeY","tlshash":"63230242b23957438aa368041e78d3d72fc7bf1911b7a96748f5f187a5ce19a0d1c4f8","first_seen":"2026-03-24T00:34:14.97839Z","last_seen":"2026-03-24T01:51:41.44928Z","times_seen":7,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":596,"dns":0,"connect":0,"send":0,"wait":7,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/413f7e48d7f4d3898356b781bd19628f.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.583Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/413f7e48d7f4d3898356b781bd19628f.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 11621\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"83aa86cc99e540fac49ebcc627aeb945\"\r\nLast-Modified: Fri, 26 Apr 2024 13:02:42 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 1981593934666416666\r\nx-cos-request-id: NjljMWVlMTFfNTA4ODUxMWRfNWQwOF84OTI0Y2E5\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11621,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 273x184, components 3","md5":"83aa86cc99e540fac49ebcc627aeb945","sha1":"c91064f4a41b0613b5bd8ec16706e03d82a75cff","sha256":"4ec893d206148219abe2c0afdba9a0dce0ee37cbe05067cff0cb432110f2af47","sha512":"8f8fa1858a973b1d5ea7d8265701f2000f984eddc6b5f23a2383c74c99f3fbfe082a2b2327519ab48dd535fbd5abec6f2e06206b61299b3c941d6f81f022ac82","ssdeep":"192:ca4pGVT2qcYkHiVcIbdq5qakg1/LsjgeCiYIsUFy53uVz7TwtEF6s6TUTFtJmd0:cfpGVhCiVcIbY5Lj/Ls3rsUEwnwCFQTy","tlshash":"c332d081fc45b104f0d1ee7dc0b1a2e8d6550bb752324ee74d0a90d35ad46d7adad328","first_seen":"2024-08-29T10:55:52Z","last_seen":"2026-06-01T04:40:07.677287Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2525,"timings":{"blocked":-1,"dns":345,"connect":22,"send":0,"wait":2049,"receive":1,"ssl":101},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/fa3e66ae32462e30e05f52f9ad14b65b.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/fa3e66ae32462e30e05f52f9ad14b65b.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 4685\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"6a94f845d6d7832a1d27408d912d7d46\"\r\nLast-Modified: Fri, 26 Apr 2024 13:36:14 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 12906331116851199807\r\nx-cos-request-id: NjljMWVlMTNfMWM3NDljMWVfMTdhYjNfMjQxZDA2Nw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4685,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 284x177, components 3","md5":"6a94f845d6d7832a1d27408d912d7d46","sha1":"d0fe73fdee4f4b8389cfa0cf84ce529488f50f5a","sha256":"6875a0b9c57f22703e19cb60d02c853fb3e4b5836188531c3eb4d6528d98be34","sha512":"9a0182cd3a954bed6175698d647be33e6038936f5c6593c52d18da8798ce8e47cb5d1d01294fc002cd3e5e3e108283c70772c2b66bf369a7fbb4a418b16d4aae","ssdeep":"96:RoVznkcon1QnaTlksQmSrDLXyb7R48AhKWWlNowNvk8Afmtca8G:Czq5Tlkjm8vXU7YhKHBca8G","tlshash":"0aa16c198ecb5621fa0bf0b908adf37de2529e0d3659bb1987c221929cc21d5bb0c1d4","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.671939Z","times_seen":48,"resource_available":false,"data":null}},"time_used":3299,"timings":{"blocked":2951,"dns":0,"connect":0,"send":0,"wait":348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/getGoodsList?lang=th\u0026currency=\u0026?t=1774317071605","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Index/getGoodsList?lang=th\u0026currency=\u0026?t=1774317071605 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 100\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":100,"data":"{\"page\":1,\"api_token\":\"6d5e7f2475c781c00bb84002847f0449\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3770,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"13ad11cf7270ead4c841175a983e5c29","sha1":"7faa7721eee29a3e2523ba3e5980a1d50ec2e2e1","sha256":"9068b474da9510c173ea4520502ce578110ef9681b7fcc3b9f6b7fce26f86252","sha512":"e4c5ee7b8a9cd15a857eadddf9a71cfe695d8b84e04e57ee25b49c875f241cb45557f607e000999eb446c1f9e407250486466e84d2bf34f3b375765751188c14","ssdeep":"","tlshash":"ee7152f4327606f68b7a89e9c46b3525649929425be0ef1283fc5d0903a91ef43187b7","first_seen":"2026-03-24T01:37:22.661918Z","last_seen":"2026-03-24T01:51:41.44362Z","times_seen":5,"resource_available":false,"data":null}},"time_used":5279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/usernfo/20260106/fa44ef4b874fca0708d3f3ec276baab4.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:16.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/usernfo/20260106/fa44ef4b874fca0708d3f3ec276baab4.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 36398\r\nlast-modified: Tue, 06 Jan 2026 06:14:51 GMT\r\netag: \"695ca85b-8e2e\"\r\nexpires: Thu, 23 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":36398,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 690x690, components 3","md5":"2fd2e65fffb0456647b7db498dd08281","sha1":"4f956cee40fce084b05457e9658faff241559df7","sha256":"2f092936c28523868d5003b2f6260c0f4ef0dce1c36ca1dd33105b63c75100f6","sha512":"400db3399f1286ad3d8a74f1cf52a2e43caf3808d32a6ae738576ab67debe5b62a88ea60c18e3c581e6e25f3ecb6611fec2b05417ba8a660d475a25c6ab97dea","ssdeep":"768:1qucd/dvzwHI5VKywEVRe1lBPPO7LDsMF7oBgt/Z:1qucj7wo5yEbe1r3Ov42/xZ","tlshash":"97f2e198c5534a8af6397ab3ca63223ea6b5c059cd457fc4db4f0266e561072a4a0bf0","first_seen":"2026-03-02T12:02:14.15129Z","last_seen":"2026-06-01T04:40:07.667912Z","times_seen":18,"resource_available":false,"data":null}},"time_used":512,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":511,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-home.6097ee49.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:09.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/pages-tabBar-home.6097ee49.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-6b51f\"\r\nexpires: Tue, 24 Mar 2026 13:51:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":439583,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (63986), with no line terminators","md5":"e08252e6613576a8490725e7bd8671af","sha1":"d648978004ee21b94e07555392b7557d8267bf4f","sha256":"f4ae6530523e213003cbf692de332c74f10069ced07add95f1e8163d74502a0a","sha512":"82e5c7ebdd9a03a8257eeba452317294f10d206c2df9794a0729980fda5f75faf03ba7537d9c0ffd924bafad3858ee1f39350cc387ab34504f8e02af303b8349","ssdeep":"6144:ZXx1WCIC+PyyOK2aOymie2aoefhN15ptFxxSgy:b1WCQyyOK2aOymiCfhN15ptFxxW","tlshash":"cb9445c2b9cea008897bca45d146377cbbbf7bd7935299c2ae033b344e625c7261158d","first_seen":"2025-11-26T01:01:47.873648Z","last_seen":"2026-06-01T04:40:07.682434Z","times_seen":31,"resource_available":true,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/3e346c0607bd44436b84800d1ae50793.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/3e346c0607bd44436b84800d1ae50793.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 6838\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"d7797bbc68d93e04972f083656107c16\"\r\nLast-Modified: Fri, 26 Apr 2024 13:32:37 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 10809892681812366513\r\nx-cos-request-id: NjljMWVlMTNfNTA4ODUxMWRfNWQ0N184NmJhN2Qw\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6838,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 275x183, components 3","md5":"d7797bbc68d93e04972f083656107c16","sha1":"f85c0c2a6fc01a2076395c1670feb4894c7d5d64","sha256":"7c2a5f5f33a3dd45b7f7c95550437f015faec1ff09e4474bc9e0e285eb18f12b","sha512":"161e747195193684bf09bf5bf1e9cde129498c5c7107ea73d3ddefa2bd609f883b4ce736319310ba47124ae8b9768d6c61b1f4fcdc0f163655f20be3a3ed841d","ssdeep":"192:ILnAHEw24iGMv6mKjssLQxbPW7cxB6aApvrhnDgL9:KnsJmKIsLaWhZvrhDu","tlshash":"e5e19e5fabd72035eba5efb4cbc8c188f1305f184fa1a77a20412069bbbac58d46d545","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.649577Z","times_seen":49,"resource_available":false,"data":null}},"time_used":3187,"timings":{"blocked":2839,"dns":0,"connect":0,"send":0,"wait":348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/PcIndex/pcWebConfig?lang=th\u0026currency=\u0026?t=1774317065720","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:06.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/PcIndex/pcWebConfig?lang=th\u0026currency=\u0026?t=1774317065720 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"0ff0f06da4a6439b8a3b9ce1f3b0988e\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:07 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":4536,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"3152dfd4d8a3947feaa1b5d2a9da57c7","sha1":"4f369ec7de58ec58d7b1decd3f9785ac7a09bf45","sha256":"a66780eea468476e30e3fbd5d6dd963ad93f962f0f57f55e50cdafadce9735b3","sha512":"ffd2427459dad0110b3f399557d3e1262506fbce4e238a29c3ac4ae3d37a49954f2ba7e36f2e106645a55d63643f956a9036553e14a6af77388a59b7b9c909ec","ssdeep":"96:IXzSl5OMmyQzXubQYWSTk2o7yrtIlCfmM:IjSlIywXc+STA74uot","tlshash":"7791a62db345c4b686b3a3c6bd8e6811eee93242c759e45de9ad2e6c03d5a309306057","first_seen":"2026-03-05T07:40:02.78832Z","last_seen":"2026-04-06T10:02:44.590914Z","times_seen":13,"resource_available":false,"data":null}},"time_used":297,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Article/getArticleByTag?lang=th\u0026currency=\u0026?t=1774317070185","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Article/getArticleByTag?lang=th\u0026currency=\u0026?t=1774317070185 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"588f362f532081fd1430597942474d99","sha1":"d6f58b4daf534310ae52f85f3039c41d82c49fdb","sha256":"9d839d88761786200ed3c22a886eaf83257c684a9f5ee6bf5bf9eecbd1967ac8","sha512":"3d0fcc25ccf1de6a70bac85c134e0dd33636f7fd39cd72ea412ab2e6197e8ce55afe8a888593161b81f42983d027a7c31a48e53de949029135fd8382cfd022be","ssdeep":"","tlshash":"65b0126d0204a02518f655445818103c97d63910400a44b400ec813419240bdd106c8d","first_seen":"2024-01-15T04:52:00Z","last_seen":"2026-06-11T11:57:07.736535Z","times_seen":79,"resource_available":false,"data":null}},"time_used":969,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":969,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/contactUs?lang=th\u0026currency=\u0026?t=1774317070209","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Index/contactUs?lang=th\u0026currency=\u0026?t=1774317070209 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"7211608a8924f60d3259945190197f35\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":202,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"0c013ec9b510ee36df2a500745011114","sha1":"5ce1c4198fa25b9dbb3d07cf7a79a27e198fde4d","sha256":"ac23a4ed9938c2b6f956e1041c50bc9cc31ec06f25bea479907855611683d488","sha512":"3d221aa8786deefc5cf41d817d3a71748f2e26475151b6cccd651cb84c7cbbc5c11690773662b7e9358607c69e77c9cbd4123ba5edff52c959e3839358c61d6c","ssdeep":"","tlshash":"6cd002ff6b36091d1844f66cc9bbb45c7692dfc04025e2ad4ffd481fd64509751d4506","first_seen":"2025-11-26T01:01:47.775185Z","last_seen":"2026-06-01T04:40:07.673775Z","times_seen":32,"resource_available":false,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cf.shopee.sg/file/04ebc2d8adfb162e2a95d883fbb2f2ab","fqdn":"cf.shopee.sg","domain":"shopee.sg","tld":"sg"},"ip":{"addr":"23.36.77.43","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deo.shopeemobile.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 19 Mar 2026 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A5:91:F0:E4:C0:44:FD:B1:09:38:16:E2:FE:1C:64:F8:D5:5E:41:CD","sha256":"6B:1D:9A:1C:D4:F6:48:52:E5:B5:B9:CA:05:76:14:D1:96:48:E3:4D:4C:BF:B9:A4:42:4B:17:C5:B0:75:E2:82"}}},"request":{"raw":"GET /file/04ebc2d8adfb162e2a95d883fbb2f2ab HTTP/1.1\r\nHost: cf.shopee.sg\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: SGW\r\ncontent-type: image/jpeg\r\ncontent-length: 127744\r\ncontent-security-policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\netag: \"04ebc2d8adfb162e2a95d883fbb2f2ab\"\r\nx-mms-request-id: ae0b4dd539724f19a7caa1f4c07c09ed-69c0dbb3\r\ncache-control: max-age=36000000\r\nexpires: Fri, 14 May 2027 17:51:12 GMT\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nx-cdn: akamai\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":127744,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 769x769, components 3","md5":"04ebc2d8adfb162e2a95d883fbb2f2ab","sha1":"975fd4c579ae4de2a1c632ac6659876a940e92d7","sha256":"48bf1ba88069ce93118f599d07619dda121d929ac2cf6d446ccb84c4852cc630","sha512":"2076a0b29a8593ab886b0134fc914723fb03f114d1993703565addcf887f40b049ac55c6bbb2dd05f94e2e1997acf6168e7b00c8f27a9933c73e0400fa465f87","ssdeep":"3072:gaarEwL7nhEOGkPx0OBPTya2k5mBXKgQQzxTLHG7jxryHsoKOb4:BaYK7FGjKPTKk50WQzxTLm7jhyHqOb4","tlshash":"14c3129ac0035e7186a1cb7e8bd18e4c5d85700e9f2ead6335e94e87f81d5507e34fa2","first_seen":"2023-12-02T06:40:37Z","last_seen":"2026-03-24T01:51:41.446563Z","times_seen":8,"resource_available":false,"data":null}},"time_used":225,"timings":{"blocked":-1,"dns":114,"connect":0,"send":0,"wait":43,"receive":27,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/fb68af907714247d415d1c6906aff3b5.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/fb68af907714247d415d1c6906aff3b5.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 8786\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:16 GMT\r\nETag: \"bad452afec92cef5bd6d50d92a4a244b\"\r\nLast-Modified: Fri, 26 Apr 2024 13:37:18 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 17022143299453842787\r\nx-cos-request-id: NjljMWVlMTNfNTA4ODUxMWRfNWRiNV83ZGNjZjNk\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8786,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 275x183, components 3","md5":"bad452afec92cef5bd6d50d92a4a244b","sha1":"59834a318829d1bc7264b65b3180a7a89566dd6d","sha256":"a3d2a63f1b4f3869c24e5a57c980d0e5c0fb221f7c43ce3f91ff58c7b8a3cc0c","sha512":"93cf867e62523641f48d7a26d225dec54ded22d9d00494d8f4d3a52d889fea2c15ac2c9035c3b2df90e319f1799a5cc0b1b242ad2a765360aeeb5d5f1a49d996","ssdeep":"96:ZHxj+jsJQlRfVH87SlZ3ZLpNit8tEtW+4MTE4Hbi81zrs8j8nrih0C8v6HnfWxQ2:t56V8el1+rTEs9rFBnuE4PlbZybEi9g","tlshash":"a202bf0e5da59dc3c871c3f447da4dc4c09159ec11cced3a4a8bca0b5ea8c64b7af609","first_seen":"2024-08-29T10:55:52Z","last_seen":"2026-06-01T04:40:07.665334Z","times_seen":48,"resource_available":false,"data":null}},"time_used":3557,"timings":{"blocked":3179,"dns":0,"connect":0,"send":0,"wait":377,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/usernfo/20251223/0e9a6aa1d38dba4d726d09d1c35da616.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:16.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/usernfo/20251223/0e9a6aa1d38dba4d726d09d1c35da616.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 72872\r\nlast-modified: Tue, 23 Dec 2025 11:42:29 GMT\r\netag: \"694a8025-11ca8\"\r\nexpires: Thu, 23 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72872,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 634x637, components 3","md5":"4e7f3686b476d80e069151c67691e290","sha1":"ec8d46a146689870f2d3e32b1801d3d2ed1a2f8f","sha256":"82cee8f23a75b6e00e1efba7c3116dd542febad768032797b7f0c787dc676070","sha512":"da494fa2dadd05d20bea18e58efc43e393b336b178edffae7e1af30fe69dcc56aa3b481c4cc96d332757e3e6219c52377c191771ff6bc592cf685e758e5e16c1","ssdeep":"1536:UzJe41K16JXWSTPOwLmEreUpxDQpw8AqPGgSNN1KQAALIp:U1bTJmSGULb8chO","tlshash":"7f630152dc8e38fad82c94b1d5bed8271b53689bd89ca4f221a10d76a5eccb930f4057","first_seen":"2026-03-02T12:02:14.111611Z","last_seen":"2026-04-06T10:02:44.537135Z","times_seen":14,"resource_available":false,"data":null}},"time_used":1275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1273,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/ad/20260130/43407f9defcac12b64342a6c9feb6093.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.348Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/ad/20260130/43407f9defcac12b64342a6c9feb6093.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 111810\r\nlast-modified: Fri, 30 Jan 2026 12:30:24 GMT\r\netag: \"697ca460-1b4c2\"\r\nexpires: Thu, 23 Apr 2026 01:51:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":111810,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 800x533, components 3","md5":"cf99e707ac33c6d6be54152321cd9f21","sha1":"e1967f150925f9cff1534893f395400ad7274b78","sha256":"c276face3b0a2c2b1a029ba43d70d4853c45560c8027451b0335c8628ed46806","sha512":"2d0462213bc3fa64706860253c46fd6da344d43dd1920d3ab0c0d39a603b2e0813983a5f27e9b026c67d4b61eb8c2ed4bd59245769d28d86a64b822674018151","ssdeep":"3072:LNEog+EW6oYrVfhtoKSKXaAvXZgCT/m5MDJBrAt7Sgv:LlgKKyKXXFu5IBJgv","tlshash":"deb3127ae0979fa8cd3b58713e502e83f46075e40a61413e1e26f765cfb96c70c4932a","first_seen":"2026-02-05T03:03:35.425197Z","last_seen":"2026-06-01T04:40:07.66916Z","times_seen":20,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/PcIndex/pcWebConfig?lang=th\u0026currency=\u0026?t=1774317065720","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/PcIndex/pcWebConfig?lang=th\u0026currency=\u0026?t=1774317065720 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:06 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4536,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"3152dfd4d8a3947feaa1b5d2a9da57c7","sha1":"4f369ec7de58ec58d7b1decd3f9785ac7a09bf45","sha256":"a66780eea468476e30e3fbd5d6dd963ad93f962f0f57f55e50cdafadce9735b3","sha512":"ffd2427459dad0110b3f399557d3e1262506fbce4e238a29c3ac4ae3d37a49954f2ba7e36f2e106645a55d63643f956a9036553e14a6af77388a59b7b9c909ec","ssdeep":"96:IXzSl5OMmyQzXubQYWSTk2o7yrtIlCfmM:IjSlIywXc+STA74uot","tlshash":"7791a62db345c4b686b3a3c6bd8e6811eee93242c759e45de9ad2e6c03d5a309306057","first_seen":"2026-03-05T07:40:02.78832Z","last_seen":"2026-04-06T10:02:44.590914Z","times_seen":13,"resource_available":false,"data":null}},"time_used":1967,"timings":{"blocked":827,"dns":61,"connect":253,"send":0,"wait":310,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Config/getShowConfig?lang=th\u0026currency=\u0026?t=1774317065723","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:06.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Config/getShowConfig?lang=th\u0026currency=\u0026?t=1774317065723 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"e4edb4425dd5c3c01036abc753ce91d9\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:07 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":864,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"e4888de409bd2f54e1f05a91cddbc3d9","sha1":"4fe142044c40faf0016ac06fcea1725e30fe95e2","sha256":"34d6362fb67959049767065192469884b7ea726f7fd15a22fd8236b9732d35f9","sha512":"65589a85f47b95c2230c0e3f6dd2a786b38d26e1ab564e9611034f4e86217457535bdb4d484f9856d615ab64debf7aea820567d19c5612e3d0b13d95b1c5ae34","ssdeep":"","tlshash":"d71142ad79092d3d146e76945d2f053e358a284412d78da600a5cdc83f84850f329cba","first_seen":"2025-08-15T15:25:55.291763Z","last_seen":"2026-06-01T04:40:07.686596Z","times_seen":39,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":301,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Ad/getAdByTag?lang=th\u0026currency=\u0026?t=1774317071602","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Ad/getAdByTag?lang=th\u0026currency=\u0026?t=1774317071602 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":184,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"8b1ac916f2faa1291c5e8b3980d1ba2d","sha1":"c742efa16d3a0ffaf25358a9bb05f444049ee3bd","sha256":"452ae9b2cffae813a964b1db51c4241ed84cb74a5e66bbfd43b6ba682e4d22d2","sha512":"3e885fd01d53a8a67016bfeb88d0f8489e9566bc89f474320f25365e8a596abefd4d2cf6c93bdb9e07b6bf8caf0ec49f5e25f551b471f5c2ea79f2fae8f26d56","ssdeep":"","tlshash":"a5c001eba23218090808b27cc67bf89c28c1efd04024e1ea0ff8801fcb021a65894215","first_seen":"2025-11-26T01:01:47.710233Z","last_seen":"2026-06-01T04:40:07.648806Z","times_seen":32,"resource_available":false,"data":null}},"time_used":340,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":340,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Config/getConfig?lang=th\u0026currency=\u0026?t=1774317071601","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.015Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Config/getConfig?lang=th\u0026currency=\u0026?t=1774317071601 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"3048dbb796dfa67724fad70aefcba1a9\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":224,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"1048f57b3eea13157406e9038492be5e","sha1":"c85e08319a5a6e8dca672658a06a938d33a5e56e","sha256":"053530606ef2f3baa4a90c0332b74b665cab02b4873148715af240d3e5820eb8","sha512":"f89bc62cc6e2bbb04f4c7a09c73ecaa08342fdeddd0ecd100a6f1a2f5d106f3696939b575b8685211fc357dfa634ff7f6c3ff2af83198628eee399d5ecab07e8","ssdeep":"","tlshash":"71d0a7dd1e9580323ca4e660c27b340c54e59f009178e5a0cbbe996644c60d34606607","first_seen":"2026-03-05T07:40:02.778981Z","last_seen":"2026-04-06T10:02:44.564854Z","times_seen":13,"resource_available":false,"data":null}},"time_used":315,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":315,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/tabbar/category.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/tabbar/category.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 499\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-1f3\"\r\nexpires: Thu, 23 Apr 2026 01:51:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":499,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 57, 8-bit colormap, non-interlaced","md5":"397b4bb57e8f2f444fad361e646a2c27","sha1":"61489643a803ad0a04ec6048f57e0b113290dd2a","sha256":"89d4f39901501efd7a0e4aab70f3354e9bc69a17c315a7757d0a481fc58d7ecb","sha512":"7ef2ed9b277ddc6ba70857ae1e27c2ec37e1dd10b79fdf4833d41086c858ba19a519feacda21d02e8bea8444f8873f2a9a824523bf91b5ac70901744be06145f","ssdeep":"","tlshash":"a1f005a6537e9df88ec340528f95251d78e2b42501394ce146d45de47d01af369804c0","first_seen":"2024-09-30T14:31:30Z","last_seen":"2026-06-01T04:40:07.645245Z","times_seen":50,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/usernfo/20260116/78a344d7f65a0ea47f1d0f44cc4a821c.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:16.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/usernfo/20260116/78a344d7f65a0ea47f1d0f44cc4a821c.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 183761\r\nlast-modified: Fri, 16 Jan 2026 03:21:10 GMT\r\netag: \"6969aea6-2cdd1\"\r\nexpires: Thu, 23 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":183761,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 1024x1024, components 3","md5":"eb2a24734790343afc06d274f5671a72","sha1":"d15e3ee9d85d510031b29547ce0e595136d821a3","sha256":"5ed8e392caa0d9108e6591dda290a878dc999c83fdfce57821fe37d5c87a1dc4","sha512":"345a2224bd43ee52d6aaca3668681a5537ffd376d20da6df51f82ce7da7124e1169a7b3e2102f9e191cd1d0166da0a87145b39ea657ab987fe7725c21c8f64c9","ssdeep":"3072:dXO2rZ6BoNKqiFNqPIaD/KgAPvXHuMfsiSWDtYEsqq6aQ35TaeILsVdBM3gOt1Ua:dX7rN0PFNYI+CvXHpRSktjjVcY6B1UQ1","tlshash":"e40422b0257029b7ae89d6113fe5db59128c63ad8bddd1200ee1e78b23d92b0e5147ec","first_seen":"2026-03-02T12:02:14.119456Z","last_seen":"2026-06-01T04:40:07.6666Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1276,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":764,"receive":512,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/S872e744ddf064d3aba5dfd85061c1666u/MOTAORA-Large-Capacity-Women-Handbag-Vintage-High-Quality-Female-Luxury-Designer-14-1-Laptop-Briefcase-Bag.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.431Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/S872e744ddf064d3aba5dfd85061c1666u/MOTAORA-Large-Capacity-Women-Handbag-Vintage-High-Quality-Female-Luxury-Designer-14-1-Laptop-Briefcase-Bag.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 121503\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Wed, 18 Mar 2026 19:59:28 GMT\r\ntraceid: 9b66334b17738639686966909e\r\nlast-modified: Wed, 09 Mar 2022 02:13:56 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 9b66334b17738639686966909e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache40.l2de4[0,16,206-0,H], ens-cache32.l2de4[18,0], ens-cache4.de7[19,19,200-0,M], ens-cache19.de7[22,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1773863968\r\neagleid: 9b66334a17743145763344680e\r\nx-swift-savetime: Tue, 24 Mar 2026 01:09:36 GMT\r\nx-swift-cachetime: 30653392\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: I6XVL5iqFHbf6AxzI0fhNTeuob2zaVTXzcUHahNu7dtELMftVZwCVg==\r\nage: 453105\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":121503,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"1a27291f61bc37f106a4eb009266f30e","sha1":"65b2b3ce75666c10a5b5387a69d041e5ddd17fd3","sha256":"fdcd0e470c4ee845c2079527ee5f1cc156e96b50b35472c3d92d101207d68e93","sha512":"9e63d224aea382143be1be8a9cf1c667caf2ebf6f99a86e9c6e938a1a73874f9a722a2f217e96a39137f9436670e437a2744665d7fdf4d006c9711e119ad577e","ssdeep":"3072:V1hc8EtzGqV84I4nPECV6iIxBatjMWeL1101HP:HC1ozzu0iIjWw+1P","tlshash":"ffc312b3ab8905ad58bd78e8d80c47876d3eef459379b35ca4d762e214ccb048739c49","first_seen":"2026-01-17T14:10:08.982505Z","last_seen":"2026-03-24T01:51:41.441296Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1257,"timings":{"blocked":615,"dns":568,"connect":1,"send":0,"wait":26,"receive":4,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/3797137df6982ee7e479c7805c66abd4.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/3797137df6982ee7e479c7805c66abd4.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 10590\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"cf601e5b716090abd1a08159ecddfccb\"\r\nLast-Modified: Fri, 26 Apr 2024 13:17:53 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 13578473977129128193\r\nx-cos-request-id: NjljMWVlMTJfMWM3NDljMWVfMTdhYWVfMmEyYjExNQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10590,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x168, components 3","md5":"cf601e5b716090abd1a08159ecddfccb","sha1":"a74608423d144f80b8ecffefefa0850875746a06","sha256":"088ae11b0ec643448dcdb5d26e6aa9e90a92138c2dfc771a3a7b1ebb3cc24df8","sha512":"97cff716a90dd7803811254e017c854297c072a6d0fb991443ea31778278cb4a011ff68d0fe542f94c1e9abcd0df24f81c5d200c9333d894729ff497fc8608bc","ssdeep":"192:AhP3EmUzw0CwpCaZPqeRV+tYxKslur+3F2VxDp52ERAt/un3V+DS4afqdya+ETqH:Ah480vpbfqJrEF4RS/u3UBafJZEBwtr","tlshash":"6422bfe38c7750672004fb3379aab695f88eb872932c316176e31646ed1f47be86d205","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.656201Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2593,"timings":{"blocked":2235,"dns":0,"connect":0,"send":0,"wait":357,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/chunk-vendors.253e04fa.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:03.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/chunk-vendors.253e04fa.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:03 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-c08fc\"\r\nexpires: Tue, 24 Mar 2026 13:51:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":788732,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65527), with no line terminators","md5":"4396fcf3c4904404478edae1c5d3a03a","sha1":"abc6bf3989b4c2ab05a939e4b40adbbdaffdeac9","sha256":"4efd70e9fbcf5e2d660943b0233921b90ac94a106e8599bf844238af73de313f","sha512":"159071be96118eae4353f0a6f87b62b21d74de37127a7f02583ef308dfdd62dd36a55e3de7dbba96e19d7162111f207930c4010fdb12bd5421dd17c117e3b159","ssdeep":"6144:n4+eEbCHAmSzzhlGl9KhhsIvzcyHptEHGSi9PWmUCzQ3sqaCrjJJGDMP:He6LzzaycyVSiW2IJGDA","tlshash":"4cf4089cb285b0aa07e760f5003f220ba13b6968b40ad4d5f275e4d46e79d8e6137f7c","first_seen":"2026-03-20T00:57:21.744255Z","last_seen":"2026-06-01T04:40:07.660344Z","times_seen":14,"resource_available":true,"data":null}},"time_used":776,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":776,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/He3ba030ac2634cf9b522b46594d4afcav.png","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:18.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/He3ba030ac2634cf9b522b46594d4afcav.png HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 130740\r\nx-amz-cf-pop: OSL50-P3\r\nserver: Tengine\r\ndate: Mon, 23 Mar 2026 19:05:50 GMT\r\ntraceid: a3b5f39f17742927498271731e\r\nlast-modified: Thu, 26 Dec 2024 01:10:57 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: a3b5f39f17742927498271731e\r\nstrict-transport-security: max-age=0\r\ns-brt: 123\r\ns-rt: 125\r\ntiming-allow-origin: *\r\neagleid: a3b5f39f17742927498271731e, a3b5839b17743124341374590e\r\nvia: ens-cache34.l2de4[0,21,200-0,H], ens-cache37.l2de4[22,0], ens-cache11.de7[23,23,200-0,M], ens-cache7.de7[25,0], 1.1 42f63300fbd68ad2da1e182d0d6d6948.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774292750\r\nx-swift-savetime: Tue, 24 Mar 2026 00:33:54 GMT\r\nx-swift-cachetime: 86380316\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 24328\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-id: FLCXb64o3wkGloCby1ohVLbCYsm-ZRsx6kvEjG_h3dMhXunj2F3NnA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":130740,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"a68f3d1db03d5af30403eda271bf9216","sha1":"769b2c1710796cbc6fdc0b6fb11dc83f3d1b50ed","sha256":"2f41ab3d350b20e9438061c6e21b37582bdca531a0fe8d3e6a3fea974ccd5caf","sha512":"9b5b225fb05e199ecf229f302209707580a805218544014320e34df08dc0c7e446bfcbfa27b6ca3357d08bccc91cafe6e29aabe53ec76470ee575d74a4906cf8","ssdeep":"3072:bptRX1BIJvik2kItn/zHWnM6blTQUYAhRBp+dD2GzmthEU+M:bptRTYvHytKnXZjRv+dD2JjEU+M","tlshash":"2dd31273355acf8d814a9d39cef3229fd46196c032ad00eb17778a75f04446d06962fe","first_seen":"2026-03-24T00:34:14.97363Z","last_seen":"2026-03-24T01:51:41.453865Z","times_seen":7,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T01:51:02.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:03 GMT\r\ncontent-type: text/html\r\ncontent-length: 787\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-313\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":787,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (500)","md5":"a9fa04df9fa80408683fff8e095c456e","sha1":"9dfb0294fadf1a15d2a54c8a0807c80bb9d5182f","sha256":"cfca32a1ed3a2c858a474da2200185391a69d255cc151a81be3698a28cf98407","sha512":"37ba5e7797732f77966bd972f67a406e04290baff7fab7ac57a42ae1b53a3cb6eb593eb83c5e96de63c8a903f19095d9f5ad8d4602fe7500badae569d9b0770c","ssdeep":"","tlshash":"0001b1c21c61f45d0720865164b6e61e8ad64ab5ad91d9603cdc2afc4be078edf7f811","first_seen":"2026-03-20T00:57:21.727328Z","last_seen":"2026-06-01T04:40:07.644567Z","times_seen":14,"resource_available":true,"data":null}},"time_used":2097,"timings":{"blocked":919,"dns":131,"connect":258,"send":0,"wait":259,"receive":0,"ssl":525},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-category~pages-tabBar-find~pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping~72a8b358.f4e6b9a6.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:09.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/pages-tabBar-category~pages-tabBar-find~pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping~72a8b358.f4e6b9a6.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-3113\"\r\nexpires: Tue, 24 Mar 2026 13:51:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12563,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11963), with no line terminators","md5":"2062e2adb1b95f8251c11a97df9f4b1c","sha1":"165882d531654382a81421ff46a3c58152468eb4","sha256":"24a29833bbe46f58a9792013151c5328df6f886c561f6762f0b49a066392e46b","sha512":"f7c62da23dbdeb5ad026d306bb96366657873da711db86b134b0ecfa4de702dee4bea3b1dfa4e49371c0707bc05b0bf7c4d011462972d9d4999f0da2f49b3c32","ssdeep":"192:a6hANQtGtCQyMbQueaRs6UoA3F3xuHXZ7YE27jFRk0D+ZTRs6zVO:aqAGQZyMbQtaW3KYaBE","tlshash":"6842f90a718bb90a48a74856505f5205a6b73c6ce41af44bf7b0c9ed5cfa88f1332f6d","first_seen":"2025-11-26T01:01:47.77986Z","last_seen":"2026-06-01T04:40:07.639372Z","times_seen":31,"resource_available":true,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/9b519c577610f2f46bdd8fc174fe215c.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/9b519c577610f2f46bdd8fc174fe215c.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 8029\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"f4f594affe1a9c61687ad8356da76e66\"\r\nLast-Modified: Fri, 26 Apr 2024 13:01:35 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 13371331158030510325\r\nx-cos-request-id: NjljMWVlMTFfMTY3NDljMWVfMTg0MmVfMjg4MGQ2Ng==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8029,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 201x251, components 3","md5":"f4f594affe1a9c61687ad8356da76e66","sha1":"9913cad24c384afe1d1fe86fc8a85235dccaeb71","sha256":"9f69ccf0cb897c2ef2c5e6910bf8cca7b381cdf3bdc89cf6d9906a18f44f66bc","sha512":"12fd11e2107a0c6f82655d860ca94e5b6ef426ace012ceb93aa6f8440c98346c78daf44d4c149253ecfae7c12a249ec829981f0e884549b3b65c89a64f8d1021","ssdeep":"192:yjBvlDnnXm0nWdTfidFpOPN/WDaZSDwmjCydUxJ:IxlDnnXWhfYwZW+Iwm/yxJ","tlshash":"b7f19df2af6ddb51e0a9e6f4916254d8e45d5506ac80b632bae5432058d4ef23c3ca07","first_seen":"2024-08-29T10:55:56Z","last_seen":"2026-06-01T04:40:07.662734Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2509,"timings":{"blocked":-1,"dns":348,"connect":22,"send":0,"wait":1962,"receive":1,"ssl":176},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/02c7268759f127009658d8f3f69351f0.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/02c7268759f127009658d8f3f69351f0.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 7059\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"fd5104c1df85469451338a16c78f64a0\"\r\nLast-Modified: Fri, 26 Apr 2024 13:34:11 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 17372464011230840457\r\nx-cos-request-id: NjljMWVlMTNfMTY3NDljMWVfMTg0ZDNfMmE1YzNhOA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7059,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3","md5":"fd5104c1df85469451338a16c78f64a0","sha1":"e70f367214d0e5b906eeb68b2f1562ad7033a760","sha256":"b4464ceed95d549ff1c1e58a00d9f28b53b8f32848d53c4e318686bbd9425828","sha512":"6285063d04f8c799ee5e3c8678625db8449c1ab7bb59726e8706e46558c36ca8d38179484de884ffad2f71ec7683f8ea2d7abade73b43bfde6982efbfd4b4d28","ssdeep":"192:D7obI15+1e4dM4R++MdRC+L14w0e659L6ju:ZJsVMX/lF65Wu","tlshash":"86e19e665f188736dfaec6f86f34814cd908a2f14042673829ac237fd78e2d49c8cc28","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.668538Z","times_seen":49,"resource_available":false,"data":null}},"time_used":3194,"timings":{"blocked":2840,"dns":0,"connect":0,"send":0,"wait":354,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/H1a31dc81c5d64c359c7603c886e6cdb2h.jpg","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:18.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/H1a31dc81c5d64c359c7603c886e6cdb2h.jpg HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 33862\r\nx-amz-cf-pop: OSL50-P3\r\nserver: Tengine\r\ndate: Mon, 23 Mar 2026 16:19:37 GMT\r\ntraceid: 9b66334717742827769677331e\r\nlast-modified: Tue, 10 Sep 2024 09:09:07 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: 9b66334717742827769677331e\r\nstrict-transport-security: max-age=0\r\ns-brt: 82\r\ns-rt: 84\r\ntiming-allow-origin: *\r\neagleid: 9b66334717742827769677331e, 9b66334417743124345155817e\r\nvia: ens-cache10.l2de4[261,261,200-0,M], ens-cache10.l2de4[263,0], ens-cache17.de7[0,0,200-0,H], ens-cache13.de7[2,0], 1.1 42f63300fbd68ad2da1e182d0d6d6948.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774282777\r\nx-swift-savetime: Mon, 23 Mar 2026 16:19:37 GMT\r\nx-swift-cachetime: 86400000\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 34301\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-id: ymPGOzNFzHphTeOETnM-CYueo2TQFMS2Oy7TjJFwkdtyhhrlLLCuMg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":33862,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"052ef724bfc6f8dc1aec3c4086d15191","sha1":"90cf6c6db4d9b7422d683e3575fb2e30b1911d33","sha256":"8431097059b114f5c96ca8d724aeed78d4c1815b1c1bd880cd9b5c5a4e46fb41","sha512":"848698c66277dc634a547522a3af9f7142665f562a884ec56fe63499452a6d1a8059721aa2f453d9f2f2fcb349a79ae715d63e56fd7a848f7f2ebad2720d659b","ssdeep":"768:/gV8NJOWfxE/ZSjEMrv9OPqSILc3TqFkJ2VjIUHbzLz432WfZ1y:m8NcGDYM79OCvgj2qyjx7zLU3F1y","tlshash":"ede2f1993487d973e435be3e801e21230a3a7c621a11eebb9d01a254d147ced9ffec40","first_seen":"2026-03-24T00:34:14.935419Z","last_seen":"2026-03-24T01:51:41.460979Z","times_seen":7,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Config/getShowConfig?lang=th\u0026currency=\u0026?t=1774317065723","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Config/getShowConfig?lang=th\u0026currency=\u0026?t=1774317065723 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:06 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":76,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"1fbb952908f0822020aa78087f3e0714","sha1":"94ffd5fb29c97f185b72ca3e261b1111d0ccec14","sha256":"c98be7863deb9ffe6eccff1d914d40fe667724dd12180b49198380090305ef25","sha512":"f12534e4240cec8602ff37d71746a744e84ddc2cc36f7703076cba3e3f44d8211d029bc9c1a3e32cd23b6ea81e5dd7b02ee504ea1ea7d6af11ad4841a537be81","ssdeep":"","tlshash":"5ba0247c0304743514f51144dc1c107c41c534100005407000fcc134171007dd103ccd","first_seen":"2024-08-19T13:17:27.865692Z","last_seen":"2026-06-11T11:57:07.731181Z","times_seen":95,"resource_available":false,"data":null}},"time_used":1974,"timings":{"blocked":832,"dns":56,"connect":256,"send":0,"wait":310,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping-appShopping~pagesB-comment-addGoodsComm~4b84ecd9.220c4886.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:09.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping-appShopping~pagesB-comment-addGoodsComm~4b84ecd9.220c4886.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-78c5\"\r\nexpires: Tue, 24 Mar 2026 13:51:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30917,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30623), with no line terminators","md5":"2aa9722673635f2e3d2abc5e14ef4957","sha1":"f0a878f9f7bca348aeeeb0878d517515070076f5","sha256":"dfbf1cf7f109a41f82fbd25cd45edfd543102da15f5041eecd3bcb0417840eba","sha512":"1b54aa16dc16b88501f7e517eb4af9e821d73d9f2ec4cff4cfe180470cf76a0cb4fe2f09311907d4633ab77e4c801ebc24a0f36b6c0a74599a76b97616be2db7","ssdeep":"192:VXEy1lUnUv6qkFqA8TkJcYyqn5SxK5TgeaaBVZzmiQgxLRs3cnkUa5ECdSzwcTZd:VXsBqQcY15T5PVZK+vnxa5E5zwgJ","tlshash":"a4d2de8ac64c19d83fbbd10f658c7a6f11493b92c44d2cf8aca6d34d5ddee622a4036d","first_seen":"2025-11-26T01:01:47.844435Z","last_seen":"2026-06-01T04:40:07.646566Z","times_seen":31,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/jtTop.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/jtTop.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: image/png\r\ncontent-length: 4826\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-12da\"\r\nexpires: Thu, 23 Apr 2026 01:51:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4826,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"43834ca7e7a8e2558f1c97c25223f997","sha1":"3ed572716c20afc1abd37c01b474d807a7e1fbd8","sha256":"f3040ec3aaeeb85d410083ac8608ceb56fa40631b3ad2178a6f6ff5355948598","sha512":"f365e4b4796e4028f5908f52c178e16332570e50eeba47a4ebd1ce088ffd4fc35429bc307a7fae53d8fa93471cf256eff73fb5c8b021cb9e24e6e83329b63ba8","ssdeep":"96:8F6u1wIjU5dfpfnX/5dyY3ClyhuNaoI44C2b13SCXifg+wg+wg9:8T1w3p//yZAhuxITPSJoo8","tlshash":"5ba16cc3b24b1c57577bc99f80a6e0b19538003f2248eb0e5860875f076d96f992db42","first_seen":"2024-08-29T10:55:55Z","last_seen":"2026-06-01T04:40:07.669791Z","times_seen":49,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/shop_logo/20260225/846ba4ac68ff6ffa9599e17e722e470b.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:16.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/shop_logo/20260225/846ba4ac68ff6ffa9599e17e722e470b.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13509\r\nlast-modified: Wed, 25 Feb 2026 07:08:46 GMT\r\netag: \"699e9ffe-34c5\"\r\nexpires: Thu, 23 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13509,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 480x480, components 3","md5":"f01e20ff4fa77994b5e7ee8899b87cc0","sha1":"474d43cf64418fb19a656ae3dd6bd53ecc8b4a00","sha256":"e48c03ec5fc1c9b91d873495031bd92a3abcce81bf406b09831fe123396407c1","sha512":"0febb87632f419fe823809b18d95217d78f9d21b7133b117644901d56e2af2fb055e6a56b2b39027ee80c96a12790dee15f6edce5544cbc5e012cf240198c786","ssdeep":"384:IjFNrULiwT87KNhR6oktJD0LhtTXP8LCUiSf:EiNT87awok3D0twiSf","tlshash":"d552d09ab720e52df118063af5f35b8af355343e49c3ea5649d1c091db031e41cee888","first_seen":"2026-03-02T12:02:14.1613Z","last_seen":"2026-06-01T04:40:07.642572Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/indexInfo?lang=th\u0026currency=\u0026?t=1774317071605","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Index/indexInfo?lang=th\u0026currency=\u0026?t=1774317071605 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"e5b6dc49edce8a7b32ebfd5a7c900c08\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":239,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"0672726a546f77ee5c38a93384243839","sha1":"ad0e3f86cc1425b05ec3b102866dbf902e19ca96","sha256":"060ad7293b9aeaced306920fc73a51cd6c3003bfdf339680842568e7a1eef13e","sha512":"dc2e46150fee56dee3e4af80a3feb8121d53b496743cc1ffc1f0aed6b42c578a332490fd231dec1c4c52602d84014807d9a5197fd7b9c353cee11477957c0b16","ssdeep":"","tlshash":"97d0a9db2b48000d5828f0acc17bfd8c6380afc40082dae80bf8985ec3131224085200","first_seen":"2026-03-24T01:51:34.792775Z","last_seen":"2026-03-24T01:51:34.792775Z","times_seen":1,"resource_available":false,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/1588b824085b8d5b9dddf13aed65ec7f.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/1588b824085b8d5b9dddf13aed65ec7f.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 18286\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"398d1ef42cef2b95d40eb5856fea494a\"\r\nLast-Modified: Fri, 26 Apr 2024 13:24:49 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 3045946869870635540\r\nx-cos-request-id: NjljMWVlMTNfNmMwODdkMWRfMjZiNzhfOGZkOTE4Mw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18286,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x224, components 3","md5":"398d1ef42cef2b95d40eb5856fea494a","sha1":"f1dc94560553637e5a136f9a3fa95333b27103ea","sha256":"2441bec190f9bdbdff25c252570a05646b21f515afa18bc15579cea8ca1f15a2","sha512":"24eb1d64a72eb052c95588f4aed2f3434dec5d7cfc9e66c32c92b419218704febc91df9ebc681408e4ba1b16d3baf68930572597331f1adf5e25a8806f9c6811","ssdeep":"384:hPpXnZxCWjia7zIS9pw/MGb7ZLaXthPlMyZ6AII4HVWD7ekmtDtCW9kn:ppnZxCWjHBX279a9h2FpcD6Jan","tlshash":"2a82d00cedc17f1a9faddd696ec79007f1567282bd895b6dc02246cc667b83624ce6c0","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.683998Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2940,"timings":{"blocked":2582,"dns":0,"connect":0,"send":0,"wait":357,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/contactUs?lang=th\u0026currency=\u0026?t=1774317070209","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:10.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Index/contactUs?lang=th\u0026currency=\u0026?t=1774317070209 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:10 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":202,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"0c013ec9b510ee36df2a500745011114","sha1":"5ce1c4198fa25b9dbb3d07cf7a79a27e198fde4d","sha256":"ac23a4ed9938c2b6f956e1041c50bc9cc31ec06f25bea479907855611683d488","sha512":"3d221aa8786deefc5cf41d817d3a71748f2e26475151b6cccd651cb84c7cbbc5c11690773662b7e9358607c69e77c9cbd4123ba5edff52c959e3839358c61d6c","ssdeep":"","tlshash":"6cd002ff6b36091d1844f66cc9bbb45c7692dfc04025e2ad4ffd481fd64509751d4506","first_seen":"2025-11-26T01:01:47.775185Z","last_seen":"2026-06-01T04:40:07.673775Z","times_seen":32,"resource_available":false,"data":null}},"time_used":969,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":969,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Ad/getAdByTag?lang=th\u0026currency=\u0026?t=1774317071602","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Ad/getAdByTag?lang=th\u0026currency=\u0026?t=1774317071602 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 119\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":119,"data":"{\"tag\":\"mobile_index_banner\",\"api_token\":\"4091898421453677a7ffc108570a71a0\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1108,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"aec40f048269020daef80bab1446d5f9","sha1":"3ecee0416c3972fe5de167a092b593e172cdd37e","sha256":"f9396314f440d8cf6b005af8b7b3782e57f51f44c61bfa4f083121ddbfd6cb4d","sha512":"e2c30fd3e4d4c5c0c0c3c48b92d811fd3057e8febb5368fa28c79aff8ff206690ac27f9fecc739ddbca903254ea7dbcbe7e7ccb8cddae12ff6087e0111da03fc","ssdeep":"","tlshash":"0e11adefaad08cad4af175e040b16868409556868ab0fbcc9bf4999e46483e1128f763","first_seen":"2026-02-05T03:03:35.482475Z","last_seen":"2026-04-30T14:22:42.66098Z","times_seen":18,"resource_available":false,"data":null}},"time_used":307,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":307,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/NavMenu/getMenuList?lang=th\u0026currency=\u0026?t=1774317071606","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/NavMenu/getMenuList?lang=th\u0026currency=\u0026?t=1774317071606 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"affc055d48fd6303e3e6c89585b09b8a\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1876,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"8f86559a3a954155a0e95cd45122f489","sha1":"bc6087f1e30d3773b28e95913940d19bbcda6d5e","sha256":"cf2015ec2d88aaaa77e31f40968cd7aecde60beb65fb78f17a5d37a04129f10d","sha512":"a42cfde4ed03b1bd0174005985d9f9b8255496448c77da73035bd0280aef72804b6b12011be621a9341be37bfe8a36de0182d387c8b4a22a7bab5e68eaddbbd9","ssdeep":"","tlshash":"0431b0dc5375dabfdeacf161dcfa6e7584d18f81c190d9c81bf9600e821424426ef252","first_seen":"2025-11-26T01:01:47.824935Z","last_seen":"2026-06-01T04:40:07.65216Z","times_seen":32,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":383,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/Heb49f468a60b4b9083078a76bdb19c22x/Women-Jacket-Natural-Fox-Fur-Real-Wool-Coats-Loose-Autumn-Winter-Double-breasted-Fur-Overcoat-abrigo.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/Heb49f468a60b4b9083078a76bdb19c22x/Women-Jacket-Natural-Fox-Fur-Real-Wool-Coats-Loose-Autumn-Winter-Double-breasted-Fur-Overcoat-abrigo.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 34901\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Sun, 28 Sep 2025 15:42:15 GMT\r\ntraceid: 4f85b09617590741349351744e\r\nlast-modified: Tue, 05 Apr 2022 18:46:23 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 4f85b09617590741349351744e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache23.l2de4[0,15,206-0,H], ens-cache9.l2de4[17,0], ens-cache3.de7[17,17,200-0,M], ens-cache8.de7[33,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1759074135\r\neagleid: a3b5839c17734188211606075e\r\nx-swift-savetime: Fri, 13 Mar 2026 16:20:21 GMT\r\nx-swift-cachetime: 16759314\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: SGn7A1eHYK-h1ZyKlFDiFHiaCQb0Q5xJu4fJqSgC_xLlRJLO3ec6eQ==\r\nage: 15242938\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":34901,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"82287a88192e62f5665beec4bfa374a6","sha1":"df6ea92b671bbd761de9e2a474e0781f009f3a6b","sha256":"c0281b047912025f96a711865fec0064aa7d1739d732239722afa7d909c4d8af","sha512":"6db8401665d5078a3046ddbba4c8486a56469c33280c12b6d968867e0004ceb5bec8a23a273732f187da9703f9b7e41c90086e5b93d53f804846a1429d447361","ssdeep":"768:QQ8CfZJhkxkbhJ5dihosKS7EkRsWGgODyqvsXWJND5al:R/f9kxkx4o8sWGRmXOD5I","tlshash":"61f2f1a15edc177ec58c673a86df3e66162d23c703714c709198395f2acd8b9cb50b2a","first_seen":"2025-11-28T02:50:35.155176Z","last_seen":"2026-03-24T01:51:41.464097Z","times_seen":9,"resource_available":false,"data":null}},"time_used":601,"timings":{"blocked":596,"dns":0,"connect":0,"send":0,"wait":4,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/NavMenu/getMenuList?lang=th\u0026currency=\u0026?t=1774317071606","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/NavMenu/getMenuList?lang=th\u0026currency=\u0026?t=1774317071606 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":67,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c4020558c51858b42e42f3daf78d5e25","sha1":"144f956c6b59f829b7538bc52d3825b3e411314b","sha256":"64732a1430acc4e88a809be688b01214f3b76fe49d7f582b81718bd7f1872e30","sha512":"b948c728af07352b483ccc59daf9d862e6b793aaf26ca3c5230723e567361be206c39a700217a9982a60e8f7ae08f7b4905c07117b7a45471c9b8a072cdb4021","ssdeep":"","tlshash":"8da002092900f5136d91dc58126d41766ff3bb85852f0de8048e96754e2d8eca24971e","first_seen":"2024-04-19T18:06:58Z","last_seen":"2026-06-11T11:57:07.757432Z","times_seen":110,"resource_available":false,"data":null}},"time_used":475,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":475,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/S6d5686a370814333be16fbd143d420134/Custom-Moissanite-Diamond-Tennis-Bracelet-Chains-Iced-Out-925-Silver.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.436Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/S6d5686a370814333be16fbd143d420134/Custom-Moissanite-Diamond-Tennis-Bracelet-Chains-Iced-Out-925-Silver.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 44324\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Fri, 20 Mar 2026 15:22:52 GMT\r\ntraceid: 9b66334e17740201721663292e\r\nlast-modified: Mon, 06 Jun 2022 02:18:12 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 9b66334e17740201721663292e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache16.l2de3[188,187,206-0,M], ens-cache17.l2de3[190,0], ens-cache13.de7[190,190,200-0,M], ens-cache23.de7[194,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774020172\r\neagleid: 9b66334e17740201721663292e\r\nx-swift-savetime: Fri, 20 Mar 2026 15:22:52 GMT\r\nx-swift-cachetime: 31104000\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: wiRgSuGhmV_J4ZAEBuN9VnYPNkBNH10MyeirWsZkmbz2_-4pnEelRw==\r\nage: 296901\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":44324,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"2838e91cbd7f11c5fe080b81c7e86612","sha1":"a598b8497048057412ea427d8331908972453969","sha256":"63f9a1673cca23398f124a2d07e05b3683054ce17b42d0c30c3ee2a6db6244ed","sha512":"290a1d517ba86d8f5881747225a7ad566666abab51c73a461a9da63ae198ecdabc958fd54070ec6ae2fa75db11ed4af0235d9e67eb6325162db8c75d6e0fe7d4","ssdeep":"768:Jr82rIfsUUDRaVPAkWT2arE8gHIJCuYOoY/Nj5CXex7s+RvsNBdqYI2vZoos5EIL:lNER6RQ9WaarESCXlY1NqMs+RvsNBEY6","tlshash":"9313f1916c7c20daf706567fdb630b01d7f0c81e93b9720b3a8958f905a953a5974cca","first_seen":"2026-03-24T00:34:14.931307Z","last_seen":"2026-03-24T01:51:41.411797Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1238,"timings":{"blocked":613,"dns":571,"connect":1,"send":0,"wait":6,"receive":1,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/f5201eda1ef6d19896b2cad2b8c103fa.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/f5201eda1ef6d19896b2cad2b8c103fa.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 10030\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"e9639cb763f046a743221ec006ffa436\"\r\nLast-Modified: Fri, 26 Apr 2024 13:17:01 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 15310719354649246716\r\nx-cos-request-id: NjljMWVlMTNfMTY3NDljMWVfMTg0ODFfMjdjYzg2Yw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10030,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 351x143, components 3","md5":"e9639cb763f046a743221ec006ffa436","sha1":"a7a9b5cf76ae30f5ee7cac385ef93862a08ec86e","sha256":"b9f6dcc63df98f2ca7897e3587362de6ede0bc0d95df446cadfd313b0d8c2e97","sha512":"3a4cad7b8a18c18a29710d24555cb562274d8bfcad2168b852c2dd9617ae27e5ac296e654bb94f4c552cfa2b73afdbb21e30b98bc510d6cc1c69a466ed58e999","ssdeep":"192:KkuK8HmradKgkqvFO38IQfp+1yuOeKVHjHj3c4hU2yII0wYFj4GtKwwTGI8:Kr/aaXDvF0kUw5PVHHUNFYV7wTV8","tlshash":"e522bf27d66f146ffd54c83b63f2c3d1c5b22a6a41718a07432cf5009bc8fa1ad28696","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.636822Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2849,"timings":{"blocked":2472,"dns":0,"connect":0,"send":0,"wait":377,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/usernfo/20260120/86b86e0b82bd815ba9acab2074a5b7f4.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:16.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/usernfo/20260120/86b86e0b82bd815ba9acab2074a5b7f4.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 16759\r\nlast-modified: Tue, 20 Jan 2026 04:58:32 GMT\r\netag: \"696f0b78-4177\"\r\nexpires: Thu, 23 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16759,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 575x564, components 3","md5":"70b6829560bd3aa4c9eb00825d94edc7","sha1":"5169ade8be64e733e50b5654add2e648a4290a37","sha256":"0b6cbff5aa4d6d5db1c54eaf041eda6210bc96ba47ed2106f7b5ee737f93e2a0","sha512":"f847f8738b749e2b56c2bcc2a820124f79ea19072fac5e9f8f0a68d6480b7a486b42b3e5403ec03391e23b42b681e82bef73c69ea5a8e987fe8cf4791600c6ec","ssdeep":"384:AgUT7ZQLT4lse7bZHELH+cAVGLbbSqYhpA+w4NFuj9b:Y7W6a+c/IZvEd","tlshash":"b272e08db39c5bc5ed394bbf42022265b945b9333b32b67945a07337b87aa6e440c0d0","first_seen":"2026-03-02T12:02:14.122347Z","last_seen":"2026-06-01T04:40:07.636171Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1273,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Diylayout/getPluginDiylayout?lang=th\u0026currency=\u0026?t=1774317070182","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Diylayout/getPluginDiylayout?lang=th\u0026currency=\u0026?t=1774317070182 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"f2bb2994fdaa25ffb3f6da9d19ed19ca\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":104,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"c86c59f4f2c5d1ba24b2123e90a90b05","sha1":"312eba783e9a68af7da4d5a551646ef76ce92a64","sha256":"b528347954a954c2a436c0b9c6655175d7f2f6149d00b218c90124bb875b0ea0","sha512":"28a9f08d0d1bcb8d3dbcd769fe9fd8b6dee18303329243bfc34d54fbbba8d79fb096f727c196e78cc0b9000a7d894136fe5707ba3375ddf8087b05abab49c6c1","ssdeep":"","tlshash":"4ab012d82fd450031844f3f0c13f381861c2bf5440b190a007fe106f86014a74644915","first_seen":"2025-11-26T01:01:47.731387Z","last_seen":"2026-06-01T04:40:07.683384Z","times_seen":32,"resource_available":false,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/db6012eb2d6a9e5ab10ace73a757886c.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/db6012eb2d6a9e5ab10ace73a757886c.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 11599\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"f4c19d5c82b8e56a70c2518b0468d5bf\"\r\nLast-Modified: Fri, 26 Apr 2024 13:19:49 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 2077214131777060014\r\nx-cos-request-id: NjljMWVlMTNfMWM3NDljMWVfMTdiMDdfMmZlMWJhNg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11599,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 275x183, components 3","md5":"f4c19d5c82b8e56a70c2518b0468d5bf","sha1":"9342d76a100f056f602a182b0d57f7206fe82ff5","sha256":"3551e25357a8029896336c147de6293d0cfdc702165e4db2bf82cb7f1e41aeb2","sha512":"5b028e2bf0b3de2dabce1ce1162604b4c187fdcc6cb39d66e23d9733bb572f595d9e26bfb13e125c5815c33ca5b187a765ca5514c3ab18d6a2943445ea8b08ab","ssdeep":"192:sBHZHo29uTlALE94YfK8v39iCF7L1xsh+YP5oDZ+KjJvhj1ycoCzgutkRBsL:sjISuZALCC4Rdfq+soDZ+KjFhj4cokgQ","tlshash":"bb32bfcf1d0cd060d838f0682817e993f6a91526a6fbe597cc94a14fd4e99940fdceb1","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.680727Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2962,"timings":{"blocked":2581,"dns":0,"connect":0,"send":0,"wait":380,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/49388a81197a5ee29ee1bd3692b7e9d9.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/49388a81197a5ee29ee1bd3692b7e9d9.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 7159\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"514c6914242c71ff75165a791684577f\"\r\nLast-Modified: Fri, 26 Apr 2024 13:35:00 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 6453288854479306786\r\nx-cos-request-id: NjljMWVlMTNfNmMwODdkMWRfMjZiM2NfOGUzYTBlMQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7159,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 275x183, components 3","md5":"514c6914242c71ff75165a791684577f","sha1":"9fcee429c22be0905ec442bfe14e54049ccf2b97","sha256":"3825dc16ecde0811e1089eaa1a0ba05d5183b33a1f8926575058eb7b825c501f","sha512":"5ddfdcc684d1244ada129dcba3376f3f2db369fc4c954ac211beced766ae9be4da55121ecd30e44464e4bed8df605df5691eaae298e8622886b676b4559e3b4d","ssdeep":"192:3qr5QZVttqT1HDj/3NlvuR6j3g0nDYCCIU//:3CeVb+5vSl0DYCCIUH","tlshash":"bbe1af5b2fe5c72bb216e2b1c06473e1eb412dde85e5210304cb1e4721b308fadad469","first_seen":"2024-08-29T10:55:52Z","last_seen":"2026-06-01T04:40:07.674378Z","times_seen":48,"resource_available":false,"data":null}},"time_used":3290,"timings":{"blocked":2934,"dns":0,"connect":0,"send":0,"wait":356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/He4d4d66966bc4a1995ef300ed0bba67bL.jpg","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:19.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/He4d4d66966bc4a1995ef300ed0bba67bL.jpg HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 28966\r\nx-amz-cf-pop: OSL50-P3\r\nserver: Tengine\r\ndate: Mon, 23 Mar 2026 16:19:37 GMT\r\ntraceid: 9b66334d17742827771817206e\r\nlast-modified: Wed, 24 Apr 2024 06:16:47 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: 9b66334d17742827771817206e\r\nstrict-transport-security: max-age=0\r\ns-brt: 60\r\ns-rt: 61\r\ntiming-allow-origin: *\r\neagleid: 9b66334d17742827771817206e, a3b5839c17743124347292366e\r\nvia: ens-cache5.l2de4[247,247,200-0,M], ens-cache13.l2de4[248,0], ens-cache13.de7[0,0,200-0,H], ens-cache8.de7[2,0], 1.1 42f63300fbd68ad2da1e182d0d6d6948.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774282777\r\nx-swift-savetime: Mon, 23 Mar 2026 16:19:37 GMT\r\nx-swift-cachetime: 86400000\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 34302\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-id: 26gMXtXqXZqZtrQ7ThzSK43IQJoh63FsLNFVceVaRrBFYDf5YksNGQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":28966,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"c1d5fba84b85e876770248557a2d62b2","sha1":"d3dcddd3215c95ce945d6a7d859334df4cfab626","sha256":"3f1752b95016e1382189ca0cf880fe0c1c7a035842606eabb4505a7bc2056d57","sha512":"03dd780a3f939c6088cd67c8493c068c094b509dfe8088c800cd47380ae66b3cb5397bd0c9f8c994b79062cb7a99a81a3a1cdde1cc7bce29c75fe3ab90b9b0ae","ssdeep":"768:JWZ8PnzBioXyssxxYNQQfa2J102dFRwhRX6h6ZOL:wQEoWYNjfa2g2dFO7Al","tlshash":"85d2f1c24e37a012cf7e697c1f02e52753b226354e878d41de582f4ad1970a7b85fa78","first_seen":"2026-03-24T00:34:14.979905Z","last_seen":"2026-03-24T01:51:41.457623Z","times_seen":7,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Shops/getRecommendShops?lang=th\u0026currency=\u0026?t=1774317071604","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Shops/getRecommendShops?lang=th\u0026currency=\u0026?t=1774317071604 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"d30d8edb5d4b6eb236d1ed5bae628f45\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:15 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7178,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"8cb54f53126e2672b95cae1aac48956d","sha1":"c9343c29604b819f3eb5861a94ee81b9602e5f11","sha256":"dfe1a149da7843811c98a1b1e1e6722d20e667c279d19f38fc43fbebc77c1243","sha512":"5d3dc4fc267c42fc8d00485620ae74879d67d79b14a7e2a9cd783cda327721e11555293798e631a002a189023715eb9c2f532902e50406b629309241d344f036","ssdeep":"192:IjSLWb+Pb8oiSMu6SNEDecrMWluIlvmnev58rn6vg29ONL:oSLO+Pb8ojDz6DeYbuyueGOvgr5","tlshash":"dde135d6e61508e94fd0b180cebbbadf6cd08b914f4897059bfc9f0f9285a778706421","first_seen":"2026-03-24T00:34:15.005331Z","last_seen":"2026-03-24T01:51:41.468651Z","times_seen":7,"resource_available":false,"data":null}},"time_used":3959,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3959,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/H7632e9258209406fb837a32e690f2f37m.jpg","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:17.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/H7632e9258209406fb837a32e690f2f37m.jpg HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 38491\r\nserver: Tengine\r\ndate: Sun, 22 Mar 2026 19:01:23 GMT\r\ntraceid: a3b5f39e17742060828298473e\r\nlast-modified: Wed, 06 Sep 2023 19:26:54 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: a3b5f39e17742060828298473e\r\nstrict-transport-security: max-age=0\r\ns-brt: 103\r\ns-rt: 104\r\ntiming-allow-origin: *\r\neagleid: a3b5f39e17742060828298473e, a3b5839917743162246648854e\r\nvia: ens-cache12.l2de4[0,0,200-0,H], ens-cache2.l2de4[1,0], ens-cache5.de7[0,0,200-0,H], ens-cache5.de7[1,0], 1.1 b5699d1b7e44f0e87927693889ab2666.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774206083\r\nx-swift-savetime: Tue, 24 Mar 2026 01:03:46 GMT\r\nx-swift-cachetime: 86291857\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 110994\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: 0loxInF0ZdphD2wy7kxtvU6uaCE_VuaaGzYd_Fk7kvOs-hazC_OPUg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":38491,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"fd846df0d2c2a3c416137bfb40cb3534","sha1":"05c3580b579638191e0f10f669b202d8e85b939e","sha256":"2f5047fc6c5296b358857cd6e9a5f8daa5affc0ac4b21dd6f76b919c7038af1a","sha512":"097e66e36d165966b9b21b2e8652061b1ad186fb7593142b9677d34eb93275e92b627207a8cf228088a298cd7e35126a1546e993c4802e29be2901fca28e815f","ssdeep":"768:0HmQLhe+7K2WqmmS0mYFOh/byhTo4m0feLLrEUnVvg6aBukEbwQ4+c/W6:0GQLb0qmdqFOhbyhTXydVvg3ukEbt4nz","tlshash":"a803f11e7ce4e912d0694972754cd7217454282e92bac72e124bb26c2ec0ebccde9a87","first_seen":"2025-12-14T03:09:46.912192Z","last_seen":"2026-03-24T01:51:41.440052Z","times_seen":6,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":136,"dns":117,"connect":1,"send":0,"wait":4,"receive":1,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/H019f9e3a2e0748d8817e78b40f2a62d4N.jpg","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:17.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/H019f9e3a2e0748d8817e78b40f2a62d4N.jpg HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 33979\r\nserver: Tengine\r\ndate: Tue, 24 Mar 2026 01:37:04 GMT\r\ntraceid: 9b66334617743162245388335e\r\nlast-modified: Sun, 15 May 2022 11:58:45 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: 9b66334617743162245388335e\r\nstrict-transport-security: max-age=0\r\ns-brt: 70\r\ns-rt: 72\r\ntiming-allow-origin: *\r\neagleid: 9b66334617743162245388335e, 9b66334617743162245388335e\r\nvia: ens-cache16.l2de4[261,260,200-0,M], ens-cache24.l2de4[262,0], ens-cache16.de7[263,263,200-0,M], ens-cache15.de7[264,0], 1.1 b5699d1b7e44f0e87927693889ab2666.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774316224\r\nx-swift-savetime: Tue, 24 Mar 2026 01:37:04 GMT\r\nx-swift-cachetime: 86400000\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 853\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: vUj-LltXRqGEdyan_PgZ8lI4MEK7Y3rcL0fKA5-Wnn_MQo7Ex8NZJg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33979,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"e24a6d7349a3d3e84dec814717eda935","sha1":"ebbe6d2be9c1836312cf8d42a7ed6ced2761bc69","sha256":"590b99ca147f1dd64ff39482d1b18094f5b508589e1bc690fbdfb1043a097e35","sha512":"662c528a6e41326357265d89441de06048fe8f30ae26ca4fec8220e1c65914ec22f95908c35206054f47dfd3e56716dabc184f881ab6c45669a3100ad8e6189f","ssdeep":"768:ISLj4HOIwuUR+rLmojvUTvZpSccC3wzn1Sp:ISeDwv4LI7Lc4wo","tlshash":"cae2f1d8baadb38fe1df497a97759f00510a44303d1fcb8d359d8e060f154a829c8937","first_seen":"2026-03-24T01:37:22.672805Z","last_seen":"2026-03-24T01:51:41.417527Z","times_seen":5,"resource_available":false,"data":null}},"time_used":670,"timings":{"blocked":331,"dns":315,"connect":1,"send":0,"wait":4,"receive":2,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/getIndexNavList?lang=th\u0026currency=\u0026?t=1774317071606","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Index/getIndexNavList?lang=th\u0026currency=\u0026?t=1774317071606 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"2c371efab178e47e7d8c956a070af7c7\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nset-cookie: think_var=en-us; path=/\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4624,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"4003c9d5067de747addf93627f5ccc57","sha1":"3541f3717cb2956db9ac0f093381fb366268ef2e","sha256":"b1577f17b9b21c72e412683c010209617452f8d4809503df1751de89134490c9","sha512":"8efd10dbcd443b96425b53b7b37606074c93a845f56e2ac92c7fd8ffc74c5c25de4dbe55cac9c076c9357edabeb3a004ad0bbf02affdcea2eeed108dba5bfb48","ssdeep":"48:YtXJTwp9TT3qpbO3Ex0mQKP9BkJN4B7iE2F9mThxGkTtIT2jZWPsVUQL3xkjPuP9:IXs3MrmNZPqBonmYPOCpkRWDJJS","tlshash":"119127efbbb5ce4dd918bab5c97bb54d1482dbc18051feca0f78868bc35464604d8132","first_seen":"2025-11-26T01:01:47.814306Z","last_seen":"2026-06-01T04:40:07.675008Z","times_seen":32,"resource_available":false,"data":null}},"time_used":360,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":360,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sc04.alicdn.com/kf/Hc48f4e248b794ed8a0bed2cc668923acO.jpg","fqdn":"sc04.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.222.187.17","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:18.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 23 Apr 2025 06:16:10 GMT","end":"Mon, 25 May 2026 06:16:09 GMT"},"fingerprint":{"sha1":"D9:9D:FA:89:32:D5:CE:F6:C6:DD:E7:8C:70:2A:F3:68:8D:FB:D2:1F","sha256":"C4:CE:E1:A7:5D:57:91:AD:F0:B2:3D:8B:19:4E:B2:5B:DF:14:91:28:EA:37:3C:0F:FD:04:AF:B2:7F:32:FF:47"}}},"request":{"raw":"GET /kf/Hc48f4e248b794ed8a0bed2cc668923acO.jpg HTTP/1.1\r\nHost: sc04.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 64589\r\nx-amz-cf-pop: OSL50-P3\r\nserver: Tengine\r\ndate: Tue, 17 Mar 2026 11:43:46 GMT\r\ntraceid: a3b5839617737478264761499e\r\nlast-modified: Sat, 25 Mar 2023 07:08:12 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\nups-target-key: global-filebroker-downstream-s.vipserver\r\nx-protocol: HTTP/1.1\r\neagleeye-traceid: a3b5839617737478264761499e\r\nstrict-transport-security: max-age=0\r\ns-brt: 96\r\ns-rt: 97\r\ntiming-allow-origin: *\r\neagleid: a3b5839617737478264761499e, a3b5839c17743124343402110e\r\nvia: ens-cache4.l2de4[0,12,200-0,H], ens-cache2.l2de4[13,0], ens-cache11.de7[0,0,200-0,H], ens-cache8.de7[2,0], 1.1 42f63300fbd68ad2da1e182d0d6d6948.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1773747826\r\nx-swift-savetime: Mon, 23 Mar 2026 16:20:37 GMT\r\nx-swift-cachetime: 85864989\r\nalt-svc: h3=\":443\"; ma=2592000\r\nage: 569252\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-id: PTP7jaPoDEeR3JHJTQie5yOEHo0iMX0VRomtOh5qfLWpSK9QWpCZJg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":64589,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"5427aab51ad867b153e06d47d5c4f4d1","sha1":"048d0100baccab0b35755a04011880d676339904","sha256":"8d55851cf706b3605e5e798f89910c135a4a15cf68de7fe3c97c116ab23f8b5d","sha512":"24531c6287a234c5ea5c36f2c1c1bf1cded268eec371fa16f5b6c8480e1313416a98c3f9a96fc991eec6f43fdc44424c29d0b78053fdad26c8f0041d7c8b1f62","ssdeep":"1536:Q19I6AzVUKEpipsqCGXJLAznZBQrsS9U+O3EN088+kBbo:yTmUK6iqkhinZh3EN0zB0","tlshash":"b05302ff8c51d388c5d94ba0d1ed0de7fbf48c3245ead89aa1fb1342ea1052b246d895","first_seen":"2026-03-24T00:34:14.945544Z","last_seen":"2026-03-24T01:51:41.470446Z","times_seen":7,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/ad/20260130/1f06db1dc3fc2e5cda7d2454eea7b35e.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.346Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/ad/20260130/1f06db1dc3fc2e5cda7d2454eea7b35e.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 109116\r\nlast-modified: Fri, 30 Jan 2026 12:30:50 GMT\r\netag: \"697ca47a-1aa3c\"\r\nexpires: Thu, 23 Apr 2026 01:51:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":109116,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 800x533, components 3","md5":"2b5627c100a3e993e8519aaa6014d08b","sha1":"af1ccc0f8e1df958f6933b374d5ec20ef3ecd665","sha256":"d7b5efba0b395c2458be2fd95c180455fcd2da6422adee4f1ae670ff2dfa1ed2","sha512":"5eaf6b244be7bd69f8174ca0316f4474d87aea1c054b08795d70e651c81b61aa720b910f824688b112309feb0db549e5d6b3d0c709c0a858a12997bf4eb3bccb","ssdeep":"3072:ToDEVeni3WW7KGNPDCxNadOV2Eaz5SqCAaggf:cRi3vfPDCxNNtA0","tlshash":"0ab3127cc630d684deb8a89e299cc61b9cf5181efd00f394e64d7e11cea2105f2b06e9","first_seen":"2026-02-05T03:03:35.380918Z","last_seen":"2026-06-01T04:40:07.640037Z","times_seen":20,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":257,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/images/tabbar/cart.png","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:05.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/images/tabbar/cart.png HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 515\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\netag: \"69ab9f7c-203\"\r\nexpires: Thu, 23 Apr 2026 01:51:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":515,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 57, 8-bit colormap, non-interlaced","md5":"57e625041ea96481602c48b658be5183","sha1":"689b1dd3625b9f7c4edf118fe5e9eea975b13276","sha256":"d7f8b7a9d937e82b0d9c3ef253112613240aef3b2367c99df72114398fbcb400","sha512":"53165325a48fc2cd112e1727dc0a90a9e39d8f2e14639133582bf1993f8cf67258f413470940988cbc4e2c9a4d89e391bb5783719d1759852adfb3123adae72f","ssdeep":"","tlshash":"50f00efa4bd12d6de2ecc3a5ff29255064630fef70a3cc1051144ceb2920032aaa11cf","first_seen":"2024-09-30T14:31:30Z","last_seen":"2026-06-01T04:40:07.676239Z","times_seen":46,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ae01.alicdn.com/kf/S45c7d1951375419bbc58dde1735bb4170/2022-new-women-s-single-shoes-casual-soft-shallow-mouth.jpg","fqdn":"ae01.alicdn.com","domain":"alicdn.com","tld":"com"},"ip":{"addr":"52.84.50.55","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"alicdn.com","organization":"阿里巴巴（中国）网络技术有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 22 Sep 2025 03:31:02 GMT","end":"Sat, 24 Oct 2026 03:31:01 GMT"},"fingerprint":{"sha1":"10:F8:48:B0:E2:22:BB:D5:3E:6D:A4:E0:FE:8E:43:38:6F:05:C0:E6","sha256":"5F:74:27:A6:D9:96:2C:99:7C:88:41:70:60:50:86:C3:B4:7D:FE:E3:F3:A0:F4:80:CC:C0:30:45:9F:ED:6B:A7"}}},"request":{"raw":"GET /kf/S45c7d1951375419bbc58dde1735bb4170/2022-new-women-s-single-shoes-casual-soft-shallow-mouth.jpg HTTP/1.1\r\nHost: ae01.alicdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 26127\r\nserver: Tengine\r\ncdn-type: cloudfront\r\ndate: Mon, 23 Mar 2026 16:36:26 GMT\r\ntraceid: 9b66334617742837862161962e\r\nlast-modified: Sat, 30 Jul 2022 15:17:56 GMT\r\ncache-control: max-age=86400000\r\naccess-control-allow-origin: *\r\neagleeye-traceid: 9b66334617742837862161962e\r\nstrict-transport-security: max-age=0\r\ntiming-allow-origin: *\r\nvia: ens-cache22.l2de4[171,171,206-0,M], ens-cache23.l2de4[173,0], ens-cache7.de7[174,174,200-0,M], ens-cache15.de7[177,0], 1.1 ed0b1ae4224d4a858ec43080e17ab00c.cloudfront.net (CloudFront)\r\nali-swift-global-savetime: 1774283786\r\neagleid: 9b66334617742837862161962e\r\nx-swift-savetime: Mon, 23 Mar 2026 16:36:26 GMT\r\nx-swift-cachetime: 31104000\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: XDLglzzLxtDlNLfEREdc6O6NH6wwDYHPDJx4lfZeCRTniFtzP9XWzA==\r\nage: 33287\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":26127,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"41bb2128fbd9cbd878e0f2396e0c42a1","sha1":"b6a240492d84c23f599a27da461a836e50a88474","sha256":"ddfe73622db917297ce96415ea0793f876098756d1d4e3713e28e1fccc78589d","sha512":"5b17e843c0a7a85f34b3ff7a008519b0bb4ff6c26d15bb8be204ac514d56d6d1014430db4ccb2401f7da17302000c77c482a5953d7e38d774617e7590a201af0","ssdeep":"768:0UPo2sqBYIWiOBjIDXXOJfhAUSUPMs8og:mqBlwqDXgfTtPjm","tlshash":"1dc2f12053599fc5d2f71b7261ad800d2abe839f4f8be1b4704df5a2184868736daea0","first_seen":"2026-03-24T00:34:14.995126Z","last_seen":"2026-03-24T01:51:41.431071Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1240,"timings":{"blocked":616,"dns":561,"connect":1,"send":0,"wait":4,"receive":1,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/index.ed4a2d2b.css","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:03.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/index.ed4a2d2b.css HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:03 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-1794e\"\r\nexpires: Tue, 24 Mar 2026 13:51:03 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96590,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d2c05a28c7f2113821d909b7b5b918a3","sha1":"ccac94311f6ac6f580b64f47f7705318f1d226a3","sha256":"695bdbeea38a126c139158967cdd4f3a435e9936b9dff5b002e5f20a10fc7907","sha512":"3b96fbd1a89be8ae0b7479705cd4a2958ffe7f2f3f57ec23f407ad51ed8b447b9960728d77502e8fd8b2b19bf0971682030117559df250ea11c9bc1802364c3c","ssdeep":"1536:qlIApuK7hmVmb2RS1Wu3xdynGJ7eh/nrhlvbc:hApuK7hmVrS1Wu3iG41nrPI","tlshash":"4493f73719012e39e52bcd26b6c1ab5a1e61c033e15307adfba47628cbcf9c9167b345","first_seen":"2025-10-16T12:28:28.877032Z","last_seen":"2026-06-13T15:20:27.137387Z","times_seen":1290,"resource_available":false,"data":null}},"time_used":518,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":518,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Shops/getRecommendShops?lang=th\u0026currency=\u0026?t=1774317071604","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Shops/getRecommendShops?lang=th\u0026currency=\u0026?t=1774317071604 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"588f362f532081fd1430597942474d99","sha1":"d6f58b4daf534310ae52f85f3039c41d82c49fdb","sha256":"9d839d88761786200ed3c22a886eaf83257c684a9f5ee6bf5bf9eecbd1967ac8","sha512":"3d0fcc25ccf1de6a70bac85c134e0dd33636f7fd39cd72ea412ab2e6197e8ce55afe8a888593161b81f42983d027a7c31a48e53de949029135fd8382cfd022be","ssdeep":"","tlshash":"65b0126d0204a02518f655445818103c97d63910400a44b400ec813419240bdd106c8d","first_seen":"2024-01-15T04:52:00Z","last_seen":"2026-06-11T11:57:07.736535Z","times_seen":79,"resource_available":false,"data":null}},"time_used":471,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":471,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/indexInfo?lang=th\u0026currency=\u0026?t=1774317071605","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Index/indexInfo?lang=th\u0026currency=\u0026?t=1774317071605 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"588f362f532081fd1430597942474d99","sha1":"d6f58b4daf534310ae52f85f3039c41d82c49fdb","sha256":"9d839d88761786200ed3c22a886eaf83257c684a9f5ee6bf5bf9eecbd1967ac8","sha512":"3d0fcc25ccf1de6a70bac85c134e0dd33636f7fd39cd72ea412ab2e6197e8ce55afe8a888593161b81f42983d027a7c31a48e53de949029135fd8382cfd022be","ssdeep":"","tlshash":"65b0126d0204a02518f655445818103c97d63910400a44b400ec813419240bdd106c8d","first_seen":"2024-01-15T04:52:00Z","last_seen":"2026-06-11T11:57:07.736535Z","times_seen":79,"resource_available":false,"data":null}},"time_used":406,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":406,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/getIndexNavList?lang=th\u0026currency=\u0026?t=1774317071606","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"OPTIONS /api/Index/getIndexNavList?lang=th\u0026currency=\u0026?t=1774317071606 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://fbshop691.com/\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nset-cookie: think_var=en-us; path=/\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"588f362f532081fd1430597942474d99","sha1":"d6f58b4daf534310ae52f85f3039c41d82c49fdb","sha256":"9d839d88761786200ed3c22a886eaf83257c684a9f5ee6bf5bf9eecbd1967ac8","sha512":"3d0fcc25ccf1de6a70bac85c134e0dd33636f7fd39cd72ea412ab2e6197e8ce55afe8a888593161b81f42983d027a7c31a48e53de949029135fd8382cfd022be","ssdeep":"","tlshash":"65b0126d0204a02518f655445818103c97d63910400a44b400ec813419240bdd106c8d","first_seen":"2024-01-15T04:52:00Z","last_seen":"2026-06-11T11:57:07.736535Z","times_seen":79,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-category~pages-tabBar-find~pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-my~pages~56b8733c.6deecd54.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:09.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/pages-tabBar-category~pages-tabBar-find~pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-my~pages~56b8733c.6deecd54.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-5180\"\r\nexpires: Tue, 24 Mar 2026 13:51:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20864,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19404), with no line terminators","md5":"a9dfd933559d7ae69ff5fcf0389f24d0","sha1":"1c8883301ca3effbc760d514fcb84ba0b28e9f47","sha256":"4b784f3be8598d1048b7cc8b301bd8abe3b93abe195d82aede5aabd4d07f9d24","sha512":"d97678c5aa136294b3993e2cf5829ff3888833de4cf795606d122f69cee46a12d058f28b6690266cf9d158a9dece76abee81ca110df0c2c0a87cded7829a8f7d","ssdeep":"384:acwOiOxOyd9Nvb2hEOcPcGOOEwynTYyRHTOTGfkad7bE+89xvT:7XZQyd9NvCSOwcGOOBynTHRHyqfkad7O","tlshash":"0592f719f0cb78162e93841c647b9709a23a786da827a584e7f0e1fc9cf65cf1527f24","first_seen":"2025-11-26T01:01:47.807776Z","last_seen":"2026-06-01T04:40:07.648281Z","times_seen":31,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Index/getIndexShowcase?lang=th\u0026currency=\u0026?t=1774317071604","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Index/getIndexShowcase?lang=th\u0026currency=\u0026?t=1774317071604 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 91\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":91,"data":"{\"api_token\":\"3045cf1646580932e23721ba738f07ed\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5302,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"e24c38ed93e8badc96a15fe22d5dc799","sha1":"9e367ce4799cdfdfe7e1603500e92b06fb3d2cf7","sha256":"d63e5de0a323852072d6b4e16105543f6740802e0862c6bbf7cb28cda9743cd7","sha512":"97904d33c2ae215734801c4b2d073ed801132a1c8033103b3dfebfd2ebfa6bdfda24964664775758661809bbde9a60fd6ee75430f0bf7a66952b5aeeedd253e8","ssdeep":"96:IXzSwXIG4yaX2Raig11Mi8SecL9pp6AwoA2IfztdMr4VbfXXuq16UBxRb:IjS84Z2Eia1Mi8FWUro3IIgyq16q3b","tlshash":"e4b10dd6b37604fac884e5f9c87abe5c0d85df8256a0d9520ffe660f82d52a78214363","first_seen":"2026-03-24T01:37:22.667037Z","last_seen":"2026-03-24T01:51:41.386301Z","times_seen":5,"resource_available":false,"data":null}},"time_used":328,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":328,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/usernfo/20260224/9bca31dfe016fb3276c22090b1888c9c.jpeg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:16.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/usernfo/20260224/9bca31dfe016fb3276c22090b1888c9c.jpeg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:16 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9602\r\nlast-modified: Tue, 24 Feb 2026 13:45:54 GMT\r\netag: \"699dab92-2582\"\r\nexpires: Thu, 23 Apr 2026 01:51:16 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9602,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 191x138, components 3","md5":"1bee78eed42e4a15b70878cc86d83bef","sha1":"8a187675c60a8c68c9776784b14b5b64771eab9b","sha256":"f690a51ad7ba940e2026af1264a5df0338338422e99b8861b873f54080fea970","sha512":"995d711aeb999657babc406ea4e85e744b786fb33cd75ef9f69fab83df586e936201fd1291513583d1a5141310c58a8df8fbf317748273cb11ca7f1d6a620210","ssdeep":"192:OsSZflnDb8azPLRaj8C7c8pFAOMYRVQ6nvvizjeGA60F7tuC:OsqbzLW/oIBMSVvnhjdN3","tlshash":"50129f1e4394b358cc1022f21ccb4ff7ea36b6385d86a74a3a65065e4f621810ddac2c","first_seen":"2026-03-02T12:02:14.134311Z","last_seen":"2026-06-01T04:40:07.663968Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/favicon.ico","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:06.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:06 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4159\r\nlast-modified: Sat, 06 Sep 2025 12:23:45 GMT\r\netag: \"68bc27d1-103f\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4159,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 144 x 144, 8-bit/color RGB, non-interlaced","md5":"2ab8281ce055ce6a35943349bcbc121f","sha1":"5358bbaad973c62dcc59bf3d7c3de3bb85106eac","sha256":"fb8cbcb06b5283afde25cf0f83d59108927cca756cf07953eabd0d882dfd706e","sha512":"517475039afa284876981ab6220aaba046ea3de1d9e7e2a7ef28d9cb67f8b9dd168edb2183a9352008f8b3c98492ba48161a98247e6b68a879784e3f002c3353","ssdeep":"96:s8Wdwcp1+Fprr/suqnxvun04nw0ulnfJ4toF:s8WdGprrEE0Znx5","tlshash":"f6818e49073e4fed85bd56cd61cd250768d9078bea1218e86d06b436063ffbc74ba782","first_seen":"2023-05-06T20:15:15Z","last_seen":"2026-06-01T04:40:07.653595Z","times_seen":81,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/api/Article/getArticleByTag?lang=th\u0026currency=\u0026?t=1774317070185","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:11.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"POST /api/Article/getArticleByTag?lang=th\u0026currency=\u0026?t=1774317070185 HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 104\r\nOrigin: https://fbshop691.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":104,"data":"{\"tag\":\"tcgg\",\"api_token\":\"c013ff3d454d8f1a8ba823dbfe1909e2\",\"client_id\":1,\"token\":\"\",\"device_token\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.3.33\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.3.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":415,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JSON text data","md5":"f8d585bb54f608dc4da209d4ccf093aa","sha1":"da1098a3bb35c770f6d230587212ece41f8010cf","sha256":"e34f59ca9a0e07120c150e805ec89d9eb99c1a59ea695760743b3f4d294f0c24","sha512":"5f70248ebb87b12dd588eb54e2fbe2012b1515494f9b25ba663069f212dbaae0b676f6e20a1a39d09c67ba4fb19be7b315bf6b55d03b3e7ccc34a1f33c9c32d6","ssdeep":"","tlshash":"1fe06ddc2aad190c15b8e6e4c13bb89922c49f9544e9fe8dcffe4c0f83861564bc0751","first_seen":"2025-11-26T01:01:47.860247Z","last_seen":"2026-06-01T04:40:07.647143Z","times_seen":32,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":350,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.tk6567shop.shop/uploads/ad/20260204/f2471647b605f7186cb426ad7aa7a44e.jpg","fqdn":"api.tk6567shop.shop","domain":"tk6567shop.shop","tld":"shop"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"api.tk6567shop.shop","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 15 Jan 2026 06:28:23 GMT","end":"Wed, 15 Apr 2026 06:28:22 GMT"},"fingerprint":{"sha1":"D1:54:60:45:F6:9E:F6:ED:39:C8:F3:A5:EB:3F:AD:21:C5:03:D0:AE","sha256":"E8:64:87:2B:4B:B1:18:02:3D:DB:0F:3E:ED:54:26:49:52:DD:AF:3D:51:74:C5:EA:39:CB:21:EE:54:E3:67:3C"}}},"request":{"raw":"GET /uploads/ad/20260204/f2471647b605f7186cb426ad7aa7a44e.jpg HTTP/1.1\r\nHost: api.tk6567shop.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 123195\r\nlast-modified: Wed, 04 Feb 2026 12:39:54 GMT\r\netag: \"69833e1a-1e13b\"\r\nexpires: Thu, 23 Apr 2026 01:51:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":123195,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x853, components 3","md5":"b8f38ff2c43d5c085504fa19f1859811","sha1":"04af54d67689c67096fb674edd5ae7840e7012a7","sha256":"c4a6b9a8a30d8d52950c6066688d6efe47177ace6d715a09be72766808404a71","sha512":"7e363bd65a3c397cb606c43d40798ee9923881381e1cc9faa25581ac7ef728c225d51507b664a1444e3ed686f4e9388acf310dfc380f630b6ad8c64fa738e5ef","ssdeep":"3072:twNZ1U4XbfShhHq8AS3qM3UnIEDOebE++OxFdcc+pWqC/:tmAobfShhlelIEXE+FxIpLk","tlshash":"8cc3125a34d6eb09d8950cb81f410417bf07a580ff578d6b30e83b8daee20d62951edb","first_seen":"2026-02-05T03:03:35.429868Z","last_seen":"2026-06-01T04:40:07.637955Z","times_seen":20,"resource_available":false,"data":null}},"time_used":507,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":228,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cf.shopee.sg/file/15572449ce682ca393a0e555ab0bf959","fqdn":"cf.shopee.sg","domain":"shopee.sg","tld":"sg"},"ip":{"addr":"23.36.77.43","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deo.shopeemobile.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 19 Mar 2026 00:00:00 GMT","end":"Sat, 03 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A5:91:F0:E4:C0:44:FD:B1:09:38:16:E2:FE:1C:64:F8:D5:5E:41:CD","sha256":"6B:1D:9A:1C:D4:F6:48:52:E5:B5:B9:CA:05:76:14:D1:96:48:E3:4D:4C:BF:B9:A4:42:4B:17:C5:B0:75:E2:82"}}},"request":{"raw":"GET /file/15572449ce682ca393a0e555ab0bf959 HTTP/1.1\r\nHost: cf.shopee.sg\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: SGW\r\ncontent-type: image/jpeg\r\ncontent-length: 118231\r\ncontent-security-policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\netag: \"15572449ce682ca393a0e555ab0bf959\"\r\nx-mms-request-id: 94985d725fbd4dd28d0e2ab66a35101f-69a2ff1d\r\ncache-control: max-age=36000000\r\nexpires: Fri, 14 May 2027 17:51:12 GMT\r\ndate: Tue, 24 Mar 2026 01:51:12 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nx-cdn: akamai\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":118231,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 859x859, components 3","md5":"15572449ce682ca393a0e555ab0bf959","sha1":"a5fcb910e02e553fd97a5de80726354af72b19eb","sha256":"9a9ed7300f21c665d1168a09601fc7dcb6bbf1a9e170ff0b5d1de0194ed7d6d1","sha512":"e5ba084b49d9e7bd3e8ed6bb123767cf9a90ec7241237ff613c441f1dfef07c89feefcfafb656f96af465f72d56b44d050ce45e9736a2c6b2318d49b9fa3b0a0","ssdeep":"3072:kWVRC/oaCWUHorxxvVe3r62s3t407A2o3kQpIl:kWfCAaCWYexxv076To0QpIl","tlshash":"ffc3f103dd598282b45853fabc6b5ca82e9f275dedc23afb01620ecf25551335c9e1ac","first_seen":"2023-12-02T06:40:37Z","last_seen":"2026-04-30T14:22:42.701987Z","times_seen":9,"resource_available":false,"data":null}},"time_used":375,"timings":{"blocked":154,"dns":115,"connect":1,"send":0,"wait":43,"receive":20,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/bc9beb47895d916e79a1ec36a85bac5f.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/bc9beb47895d916e79a1ec36a85bac5f.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 12625\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"357462873a4d20981d0b7ab7d1b74c5b\"\r\nLast-Modified: Fri, 26 Apr 2024 13:11:01 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 3862367062712553402\r\nx-cos-request-id: NjljMWVlMTFfNmMwODdkMWRfMjZiOWRfODNjYzY2NA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12625,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 276x183, components 3","md5":"357462873a4d20981d0b7ab7d1b74c5b","sha1":"f76ed3fa6dad40f58d6284b1e9fc3ef6023fc886","sha256":"e5b339d4fbea44181eeda6663974bd1560b3f13a535a2f3b3cde2690951b51e5","sha512":"eef1d9b2eab1d43107b316bbb1913951879025bd6c32e1ae2c594db105ac27b479f02a5d0e1507aaf8589bd69cba9540f42ff2081d30b2f0c9647f81e4856f4a","ssdeep":"192:KEL18OaFyIDYXfJcW05F6bH/+vSh/30jypPVdUW4GnY5IqeXrFmCDr+LQ/MYd:Ks1MWhbH/kevpPVSIY5IqErFAmvd","tlshash":"a242bfa444504633ef9dc1bbc9cb06f6e33144f2f613a6da118f8242a5670b799f7623","first_seen":"2024-08-29T10:55:55Z","last_seen":"2026-06-01T04:40:07.634841Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2620,"timings":{"blocked":-1,"dns":342,"connect":21,"send":0,"wait":2019,"receive":1,"ssl":231},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/1348a93752947082fc7fb59a3fca6214.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/1348a93752947082fc7fb59a3fca6214.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 13654\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"631c2c5b9e865d09b3e556d75585b00d\"\r\nLast-Modified: Fri, 26 Apr 2024 13:12:12 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 13707942509721509452\r\nx-cos-request-id: NjljMWVlMTNfNTA4ODUxMWRfNWQ2M183OGI3MWRj\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13654,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 231x218, components 3","md5":"631c2c5b9e865d09b3e556d75585b00d","sha1":"03fe20f7b1ad19bdd9f6345b4eb3bc59aff713b1","sha256":"32cd3cd57f5d6e69a72594561305cb2efd978b8c684294f33e135fdd91a13a7b","sha512":"1454f953f0eab30a7498bccfe4e5c44042a1494fb657b9afc30bd3fc0a196695fadb282c6888247a90b0f3d008f37476ce6ca4b6dc1e5d8a1659cc3f796e6b86","ssdeep":"192:ReP3Uk0+OGLgHhIalOeCEnxeOcplcbAKmwalnZGahShDPU5QEndhXvoX1YLmSKNF:U3qGweLeCoxeHqFmKrtPgdh/oFYLTaF","tlshash":"b752bfeaafe6a3dacd86ffe1068435dac01d572087c2d5073779345ba9259a3363c4c2","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.642022Z","times_seen":49,"resource_available":false,"data":null}},"time_used":2846,"timings":{"blocked":2489,"dns":0,"connect":0,"send":0,"wait":356,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiktok-1325855236.cos.accelerate.myqcloud.com/uploads/goods_category/20240426/726dba45ee9d7d26deb44ea0f94e471a.jpg","fqdn":"tiktok-1325855236.cos.accelerate.myqcloud.com","domain":"myqcloud.com","tld":"com"},"ip":{"addr":"49.51.129.251","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:12.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.cos.eu-frankfurt.myqcloud.com","organization":"Shenzhen Tencent Computer Systems Company Limited"},"issuer":{"commonName":"GlobalSign Atlas R3 OV TLS CA 2026 Q1","organization":"GlobalSign nv-sa"},"validity":{"start":"Fri, 27 Feb 2026 04:00:56 GMT","end":"Tue, 30 Mar 2027 04:00:56 GMT"},"fingerprint":{"sha1":"F7:6B:98:1E:C9:D7:47:D9:9D:B3:B6:E6:32:56:DD:50:A4:19:E8:12","sha256":"6D:A6:B8:68:ED:FB:EC:43:E2:EB:B5:82:55:82:19:D6:71:75:33:AF:A3:CC:20:CC:B5:44:E3:8C:BF:47:E5:4D"}}},"request":{"raw":"GET /uploads/goods_category/20240426/726dba45ee9d7d26deb44ea0f94e471a.jpg HTTP/1.1\r\nHost: tiktok-1325855236.cos.accelerate.myqcloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/jpeg\r\nContent-Length: 6086\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nContent-Disposition: attachment\r\nDate: Tue, 24 Mar 2026 01:51:15 GMT\r\nETag: \"daeb9e4956b50bf4bcb6b7c60eb80781\"\r\nLast-Modified: Fri, 26 Apr 2024 13:29:14 GMT\r\nServer: tencent-cos\r\nx-cos-force-download: true\r\nx-cos-hash-crc64ecma: 2976014338478853248\r\nx-cos-request-id: NjljMWVlMTNfMzQ3NDljMWVfMTcxZDlfMzhiZTEyZg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6086,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3","md5":"daeb9e4956b50bf4bcb6b7c60eb80781","sha1":"ba39010f098cb308fe21f3a68324ce964640d144","sha256":"7e1c375d303ab1ea20313d087cc6b89813eab690d43e91978d83da14cdcedd89","sha512":"41c07865e281d8a5a8a869074ac3a4fb2b3d6ea748ed19baa3f5fbf6166f3e05f56e0f4a9f0c4334f491c7738c3bc431655b356c41a6b7cf50376ffde14c3cea","ssdeep":"96:/3KyEDKrveaujoztG7FbvXfkvDAC5le/4ieSJTRmhTEt2L0NSOhGHIq+qT93:6Ka7j97FXcAC5w/4ibl0EhR23","tlshash":"a0c19e502e0dcc7be49ec43220ba2731d99be23be003d601a8832ab5c97d8447d7e25a","first_seen":"2024-08-29T10:55:53Z","last_seen":"2026-06-01T04:40:07.640709Z","times_seen":49,"resource_available":false,"data":null}},"time_used":3209,"timings":{"blocked":2832,"dns":0,"connect":0,"send":0,"wait":377,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fbshop691.com/static/js/pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping-appShopping~pagesC-goods-categoryGoods~~e48515fa.df83b29f.js","fqdn":"fbshop691.com","domain":"fbshop691.com","tld":"com"},"ip":{"addr":"69.5.20.142","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fbshop691.com/","date":"2026-03-24T01:51:09.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fbshop687.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 11:50:55 GMT","end":"Wed, 27 May 2026 11:50:54 GMT"},"fingerprint":{"sha1":"DC:5A:BE:15:A3:73:24:ED:43:83:A9:8D:49:11:C3:77:69:77:47:A4","sha256":"C1:A9:39:FE:17:AE:82:82:EA:63:2A:77:EC:E2:22:2E:B6:77:41:8F:0E:73:E7:AB:DB:DC:A7:44:F6:8C:41:6F"}}},"request":{"raw":"GET /static/js/pages-tabBar-h5Video~pages-tabBar-home~pages-tabBar-shopping-appShopping~pagesC-goods-categoryGoods~~e48515fa.df83b29f.js HTTP/1.1\r\nHost: fbshop691.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fbshop691.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 24 Mar 2026 01:51:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 07 Mar 2026 03:46:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ab9f7c-38d7\"\r\nexpires: Tue, 24 Mar 2026 13:51:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14551,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (13689), with no line terminators","md5":"e7117d0ac7282237feb974e03df8b067","sha1":"b61f949fc94980695b43027bacd779f519c250e5","sha256":"88908fe751a24155c3b8c1c8762e5a67fa302c3094c04abc5363a992b0412d54","sha512":"501aa555e1f877179125890d39804ef9bb0cce61b402b5fc7fa01f3af75fddfc8b9eef832cb8b40f2e6073615e9be0d0838488c4ae9f17ad7772db517704f267","ssdeep":"192:lmRs6VamRs6vXhGq49UTKxIDR7+3Q3JXau3jgf7MLK79:AjTxXhvTK47y7KKh","tlshash":"d052d824b08bb5664d93882624bb2705a1367d0cec26b4c0d7f295f89dfad4f132af5c","first_seen":"2025-11-26T01:01:47.792251Z","last_seen":"2026-06-01T04:40:07.654169Z","times_seen":31,"resource_available":true,"data":null}},"time_used":361,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":361,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"fbshop691.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"fbshop691.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}}]}