{"report_id":"3594de38-b0d0-4b2f-a5ce-981332736c34","version":6,"status":"done","tags":[],"date":"2026-03-19T01:53:05Z","url":{"schema":"http","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":0,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"title":"BB BUY TRADING LIMITED PARTNERSHIP | BB BUY TRADING LIMITED PARTNERSHIP","dom":{"size":359888,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (967)","md5":"639872ff51ecd82ddd676a0d3ddf6e5c","sha1":"5f3741777025c12b292bb08293943fac6fad4663","sha256":"a7ba3f31dc50e51947ef27c068133d90c01f3d443e793b635f6ca6df4220a67d","sha512":"a6d59222b7b4d5e49198a0be0872f7ac696b741ed32f85fb748fb77a7e67018f4d04aaff57739c4325c4554d84aff713d0beaab834f78d26d996db6ab3b3d368","ssdeep":"1536:vMQ3cKX33b3VJ9QS6FbkpjbOTs3/yc5MNWsDpTfahrvOtP5UL0bUpjfsTsH3hz5W:UQ3rpdpbvqopZapTU43hcmCTLk","tlshash":"c974527228f011770193d1c65131bf4eb982a617db5368c0b6fc43d6bfe3ea19907a6a","dom_hash":"domhash2a536eb9355df7676db254f1e303c105","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":0,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-23T01:53:05Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"s-cf-tw.shopeesz.com","ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"domain_registered":"2017-11-22","domain_rank":4200184,"first_seen":"2019-02-17T01:08:57Z","last_seen":"2026-03-05T05:01:37.18293Z","alert_count":0,"request_count":13,"received_data":3105258,"sent_data":6019,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-15T22:19:58.945817Z","alert_count":0,"request_count":1,"received_data":60971,"sent_data":497,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-15T22:16:12.279722Z","alert_count":0,"request_count":3,"received_data":147462,"sent_data":1656,"comment":"","tags":null,"fingerprints":null},{"fqdn":"bbyshop.org","ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":43,"request_count":43,"received_data":4348702,"sent_data":24768,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"81499110182683c67ae9f4216af36dfb","sha1":"d5e10e1927ef6b96c1e6a12b5be0c4fb443bfef1","sha256":"b93047caece71c9efc839b72ae65fb038df1abfe08c260b3b7fdb58c72415eda","sha512":"3e26f4539fa73a82c3e8fac1cd89ed26f555f5f6555ab7c85009aa6d9228aba7c667f549cdb221fe726a2d6c155b218280348b7c153fea227721e74af74580d1","ssdeep":"","tlshash":"ac1128f92f6e849b928cb0c96f2c34c52550580b1e1275e3790dd2d06f8cb0c90fb9e6","size":970,"data":"","first_seen":"2025-04-23T11:48:07.15579Z","last_seen":"2026-03-19T01:53:16.545452Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"5966646a9c4f85aaae9fc3af30252771","sha1":"9758c9c9e5cff00863b8539541a1bf75672e2aaf","sha256":"45c7d025e38021b998df8092f67747fe6e5d68a394009da8b77e1832fb875382","sha512":"4ce1d662d8239cce3081fac46532de4d47d6b640b2e59d4196867f5d4ae5c802d878a0c2d45572250855ed1bf593692280b9374e770f135f2c413086cb41f844","ssdeep":"","tlshash":"23d02227269e14a70abb2c3bd2ba6ba57c8e809300000d34352df4d04f044161d2528d","size":205,"data":"","first_seen":"2023-03-07T12:23:24Z","last_seen":"2026-04-01T20:46:11.865355Z","times_seen":2425,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"1892a845aa81b9ddb8b6ef6920d742bb","sha1":"0075569a5a4198b9812be41eab8956188aa19e55","sha256":"6ba6c11bd8700086c8f00d11c7e22487a9c13a211f57e0cf06bb9e365fa87704","sha512":"475d9132eb4852a71e0ce58250abf7fc9470fb67a2cf8784e8d4bed9f84fd2049a2a36cf0c983b2570593f44c6255a98cfd6ac0276bde072328d7c287847e545","ssdeep":"","tlshash":"906000000000000000000000000000000000000300000000300c000003000000000000","size":13,"data":"","first_seen":"2023-03-07T01:06:23Z","last_seen":"2026-04-05T00:00:22.523833Z","times_seen":3986,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/js/vendors.js","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"3e27dc1f526b607533c07a534e074551","sha1":"58740698f7e1c5e135e08e13c4cd185931f202c2","sha256":"c83923dc19565e9c97d7e8e20106f0c6effd60549cefeef3b1bfcb7d56518d6b","sha512":"6d38e9a9ca74eccefbf4aa955c9ccc741e3a418b95bc5f8232d9eaa91b3c72f82013d0410a5437575d5f9a8df95305dc08d81ecf0fdc0c96afc73bf71a0c081d","ssdeep":"24576:+B36a1J+BSzGYJJ/zUVTnV94u2hNtT5KzExOX:+B36aiBSzGYJJ/zUVTnV94u2xT5KzExe","tlshash":"4d555c89b281713247e760b5502f110bb23b6929a44e806cf679c8d57dbcd4da27bf7c","size":1343368,"data":"","first_seen":"2023-03-29T22:29:38Z","last_seen":"2026-04-01T20:46:11.862516Z","times_seen":1003,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"92094c2a2960e39a8ef67271413082c4","sha1":"c7d22ef78105cef288054b0da064cc091868cc46","sha256":"01970a3828341707bc3f650b004fd997fcdd583ac816144ea01ce0c8ff3e3198","sha512":"422e26f1e062ebe067755c313779c50485ce9b25539d0af735644aa95d4406c7747755b3c201baea832dcc8d97e790f161323d041245eacbd4be3a08ac5f8ca5","ssdeep":"192:ucSpYw7IFH2Q1aeCrcyTNoO9PG1Woa7O1hz5TE9O1c:ufQ1FCrXTa1WUW","tlshash":"c9122fbef0b3652444b7387e4aff78443b6a211b554adc00799d49c00fa5658f463f1e","size":9745,"data":"","first_seen":"2026-03-19T01:53:16.55267Z","last_seen":"2026-03-19T01:53:16.55267Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"1b3de1bfd328c3fc4d98f161a9cf4e21","sha1":"3eee71821cb1eaff93669e2de4f3b8598001ec5b","sha256":"810ecf9b5be755b146305a8fdd1a1e8acee03175d23e531e5745fd57512a8e22","sha512":"29bcf5aad98e269df5941ba493360f3e2d64ee50438a5c6789dda22406f2a7901f0622768391755fd6235a9cbb9d42f4949d4cd4bf82699a70f6f6666dd83bc1","ssdeep":"","tlshash":"3d21922af905b9349db336afa5a3a988bd67388700448500baff5dd10f7d1966407b1b","size":1318,"data":"","first_seen":"2026-03-19T01:53:16.554564Z","last_seen":"2026-03-19T01:53:16.554564Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"eval","is_inline":false,"md5":"f7fef8930207b23ec9c04386f9a02c76","sha1":"146273d1c716700bb25aaa15e8595624b611ffdf","sha256":"74867c5a2cf408b090752d3cb8767bb46fdb4a0529bc959d96f51aeb2607d7e3","sha512":"e76bc0261fb13841f3fd1b6095c1193ec306312c03f189965ea8fa91818cbd3044963711d7308a29a5aa58accb87e5c8fc087ccec122cab25cf669624ce2f905","ssdeep":"","tlshash":"117000002e88c008b080388e08802eaf22aa82082080e2288008002202e00c0aa00838","size":24,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-05T08:11:06.793646Z","times_seen":7332,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/js/aiz-core.js","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"113fa96ba7528cb41d38ac2349385176","sha1":"0bf3332a72afee7640b17c951a0b103eb0a82470","sha256":"c2fab04477012ff398ab9835475ee9de1b78b8a9a77f79e34ed6da0a897bc496","sha512":"7ba28f7999f0d9bb84ee32952ed67c8bb4414bd0fcbe17a3ffcefb8f705594194be8d449a016b71964e7746e733ad9ada404ba781af74fb84b3f82136ac83d27","ssdeep":"768:xMuXM3DB8jAg9AC06L3D0aAeYVvn7X6kMr1AnFL:xMpzW3D03L","tlshash":"2583730db0496455587773badfaeb500ea61912b8206c6123d7d52c85fb2c2ca1b3ffd","size":84044,"data":"","first_seen":"2023-07-06T06:51:18Z","last_seen":"2026-03-19T01:53:16.541581Z","times_seen":138,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:44.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 18 Mar 2026 18:54:16 GMT\r\nexpires: Thu, 18 Mar 2027 18:54:16 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:30:41 GMT\r\ncontent-type: font/woff2\r\nage: 25108\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48320, version 1.0","md5":"dcf31ebe107435bd68e0164d59e19b87","sha1":"b68160c9333af833fe483928b3ef7128c07a56a0","sha256":"d8e4fe0452aa2076429a9bb5d8757d00a994dd95986cf950e9a1a371b9a072a0","sha512":"130cd52c3cccc36a7029bf92b2ddb363b8b36d206454aacc246739919552fccec5cacbad615ba4ac3817da3e83239371fe51324bdadd08357e3495087f62cb08","ssdeep":"768:Jzqdwl5YV7FVmpudK5a8dF8D8Z7J78VGnNFZEKh02dmSTPe9UiallHcOEi2c0NC1:9q+SYuMaVwZ7oGRNh02dd6UialBcOEpE","tlshash":"1623f218f29471f7edecd4d500a18c72baa528d442f116ed07b8d53ca36ca817a729fb","first_seen":"2025-09-17T00:07:53.723302Z","last_seen":"2026-04-05T09:48:38.647865Z","times_seen":199892,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":55,"dns":1,"connect":21,"send":0,"wait":8,"receive":3,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/bxlhVvN0AzEbPUw18ywPWlqB0ikeFoFRSjgWtacq.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.696Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/bxlhVvN0AzEbPUw18ywPWlqB0ikeFoFRSjgWtacq.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 05:42:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63104638-17ca\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6090,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 200x200, components 3","md5":"2ecc6b1205f68e22291eb7351dce14e6","sha1":"3ea1323753b8307a89bf28474c9d94efd94099ca","sha256":"7dbf24942564ae07d811c4e9b33ba0d4d18fa415e98bf80db43c8ac5c2ffde07","sha512":"2bfc6b355cef54b4e9ffda17d188ace61bf8196bd0060ef65e94968d18b9494c3b7538d91f2efacca6911b17f63ee69222d5f04379727e4af573b207c348c7d5","ssdeep":"96:mEH6TXzPGqhGpBXB6q2TPXpRxvW/nksLPW93oWSxaHLUBwqSKYH2h9LTM7r6yrI:mDTXTGq6yPpLW/ksTW93oWrvH2bEvfI","tlshash":"bac118431d0d4ee7f625cba23f120e8c7be06648aca074ee01e1edc99f10e891e60547","first_seen":"2023-05-16T22:49:43Z","last_seen":"2026-04-01T20:46:11.844136Z","times_seen":555,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/9414492e3ece68e2b036f1543677cfbe","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/9414492e3ece68e2b036f1543677cfbe HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 64029\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"9414492e3ece68e2b036f1543677cfbe\"\r\nX-Mms-Request-Id: f963170e16a1413f8caaaf930326f20a-69b4cd85\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:46 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1ox201:12 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:5 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_13842-56898\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":64029,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"9414492e3ece68e2b036f1543677cfbe","sha1":"c5878af0e99613baf407b9ce7a51532bf3b83774","sha256":"ff446dc4a761b5e4c6f08c703f5278b868b3c68a26e44ceeb6c289750d06bcb7","sha512":"690a9f1cba54a6ec0e4a0961755f02e550cd7775f3b17e979b85ef134b9b12e3f864dafc2c9be3a0a17a5e05e92b402cd93af4b3bce83acfe22e5a666bf19efd","ssdeep":"1536:bOr8yD5ZxT96yyDJHZ0pND4y14WwE+D56GQl0p4S:s8y9jT96FDJH44yaWH+D56GQGph","tlshash":"b053c08bac0587d3802c87fafe0b5d697e494758e8933edb01121f8b77b017b1d961a8","first_seen":"2023-11-02T06:42:49Z","last_seen":"2026-03-19T01:53:16.465225Z","times_seen":9,"resource_available":false,"data":null}},"time_used":1430,"timings":{"blocked":104,"dns":73,"connect":11,"send":0,"wait":820,"receive":397,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/sg-11134201-22100-l5alnuhx7siv8c","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/sg-11134201-22100-l5alnuhx7siv8c HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 144797\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"d538ae31a78d288562bdffe76e3328f9\"\r\nX-Mms-Request-Id: e490e745f2f442e1910e428aeb78e155-699d1d15\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:46 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1ox201:19 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:16 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_17285-38631\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":144797,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"d538ae31a78d288562bdffe76e3328f9","sha1":"3f926fce15811f11f6746fd299bcf71e805db15c","sha256":"aecc29155dcfa166b8284d80b2030bdcf4ffc6d6dd86f0bafe8a50dc1ea2b389","sha512":"1c1d8890416ae2bd031bc90a617026d3b4044676cad7fafd75190ed095c145a094397659937763f369c7dad2a96e8307c3e735be256eeb5872a49d071292ab4d","ssdeep":"3072:hBZWHiLy3FkMjQ/pzB3FUiE6zUn5urk4ay00NJ54i04:h/WHyyiMjQxzDE6oIg4U0H5434","tlshash":"09e39d17cc049b93942883fdbe135e781b0e5b1da58677ee41320edb7ea42664d8f42e","first_seen":"2023-11-02T06:42:48Z","last_seen":"2026-03-19T01:53:16.468038Z","times_seen":44,"resource_available":false,"data":null}},"time_used":1567,"timings":{"blocked":122,"dns":70,"connect":21,"send":0,"wait":757,"receive":561,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/mMERiip4qN2AAn1KyxY2ymYSqPuwoRlHijVjgD76.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/mMERiip4qN2AAn1KyxY2ymYSqPuwoRlHijVjgD76.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 15 Mar 2026 02:04:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b61393-67031\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":421937,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 670 x 447, 8-bit/color RGBA, non-interlaced","md5":"44713c51867fe3eed29053a229cc1513","sha1":"8af6481c6abe254685cf8f723c507f6c643522ad","sha256":"06b52fa7b6d289434895fb90fa3513ef7e1bd4f9e611f03f2fdbbc501b09db51","sha512":"5b4da5275de11b394e32a5f0f93b9783188dde051f92990521457baad332f925f70f3c4c6b793f6fbc39b48e6495bea5483f26edc4897135e0a155d8aba83025","ssdeep":"6144:/LDZoZ4eyYulIACqUDkr2NkK6vvHqxkfYm9+m64D9OnEGTp79k8LqWuABEvhf:/xo+eydIANVSSjXHmkf9G4DyN2tAal","tlshash":"699423d59b7f7eb7a236821f6809e320a8a234465f6e24f7400d851ae0c76c5ec43b7d","first_seen":"2026-03-19T01:53:16.468967Z","last_seen":"2026-03-19T01:53:16.468967Z","times_seen":1,"resource_available":false,"data":null}},"time_used":535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/sC6ULeGDfqVbu1b3LcqrTOL5pm4UGQedv0kbHDIv.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/sC6ULeGDfqVbu1b3LcqrTOL5pm4UGQedv0kbHDIv.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:42:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63103834-4d5\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1237,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"96298d43684ffd02a2a79da4b3fe249f","sha1":"2e79300fc21bcf3999a341bd76cac97f114b4382","sha256":"bcae7635b12fb44a84dce7e6bed9be6a709ceba04fee1385094506de6be5eb4f","sha512":"b039c7cf285ad4d1cb3e5bd760a8a2eced17497fc4db53d22e279d8f650e0c35be7f7ce8f78ddbebaa4d1fc425c93a197ae3e3c25625c21809c54edf96d0de37","ssdeep":"","tlshash":"9a21b72e32d207d0ba3784b3103a5ca2a2d87d82b0a413862ee85231c412dcb8508a1c","first_seen":"2023-05-04T05:57:31Z","last_seen":"2026-04-01T20:46:11.639332Z","times_seen":1348,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/home/section/auction_products","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.512Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"POST /home/section/auction_products HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 47\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":47,"data":"_token=1zIWPiKxayXxDgw9FoW7KDJKkHBFkqtBEM342gqZ"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\ndate: Thu, 19 Mar 2026 01:52:46 GMT\r\nset-cookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS; expires=Thu, 19-Mar-2026 03:52:46 GMT; Max-Age=7200; path=/; httponly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T09:47:05.247441Z","times_seen":13369813,"resource_available":true,"data":null}},"time_used":1021,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1021,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/img/placeholder.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/img/placeholder.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62d6aa62-9d5\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2517,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3","md5":"5632598c913a4107afee98e7ce1f9e4a","sha1":"17398b1ef500f3c736420927da819ec69cd08d5e","sha256":"b993c5624a17777a296e58d275a775899e72f320f73c254db952dbaa970739ee","sha512":"9dc93d3bb0ac4da02a5a5426a36d3685addbe1abd28c6ff295495ac748fbd6bc4c4fefd36c9c54932d96c75cbfc1bd0b49c03f01f1a95955636048526734b4a1","ssdeep":"","tlshash":"985154a31244a082c4d92bb445e64b56238ed66a86d89fc57e4977b455a33860e8c098","first_seen":"2023-05-04T05:57:30Z","last_seen":"2026-04-05T00:00:22.305745Z","times_seen":2813,"resource_available":false,"data":null}},"time_used":538,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/qOsfqmodn2R06IKyHgcnY0TyRxuUfTY4xYnI6YVd.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/qOsfqmodn2R06IKyHgcnY0TyRxuUfTY4xYnI6YVd.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Mar 2026 02:10:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b61522-34483\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":214147,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1200x800, components 3","md5":"deaa451346f4580ef3af05f5c243dc15","sha1":"a53e64a7ecd2de76e2aa2d2e1d255de71085860b","sha256":"e1d94b5f64e76ba807312b61db4b54cf39c85813e3a9de38e0d4d4b9287bc323","sha512":"c817d23e2b33c1e1cb5cd600df17bafd891f0154ef2d832486bc0acc2308d1d676db59d6da192cd3c6aa53bc2aa472f0f1b8874fe2e0742855b959381058abc5","ssdeep":"6144:R0ydsgwgFNrL5+Wqv0hMlXCa0AYxECSUJF3Z2HCCq0YACNRg6xI9b:/CgZFt/j2CSUJF3ZqRq08g6xI9b","tlshash":"a7242353622213be1912bdc898ce5b25c7e87e1190b553e8d6d7ecc8e30acf5b2f4664","first_seen":"2026-03-19T01:53:16.474685Z","last_seen":"2026-03-19T01:53:16.474685Z","times_seen":1,"resource_available":false,"data":null}},"time_used":536,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":536,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/aZrKPk8DiOV4C5wAMt5ObBC3Jk5dSpnWUuLHP8xe.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/aZrKPk8DiOV4C5wAMt5ObBC3Jk5dSpnWUuLHP8xe.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:39:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63103796-4e1\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1249,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"e1580854a56cf8efce3da98b6f6b2244","sha1":"5b0bf6176fcda86dde1fb62d523e521b03b84dc7","sha256":"4e30079f56d5ba1bbf4199b3aad170c591e4c554a74131bc213474ede0e5824f","sha512":"a2c68d29babda68c59816f4e2607614d2a7ded8dbea7e8238d4cf6ed4525201258f241db5e9f77c762efcddd9aadbc79c29c830bd98284fe0d73149d061f44f6","ssdeep":"","tlshash":"c921743a568347e0b92388f7cd622da6a3ddcf50349046492af05ae0d261ed591d891a","first_seen":"2023-04-18T11:40:39Z","last_seen":"2026-04-01T20:46:11.681702Z","times_seen":1282,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/EF9g1my5HQIF8tGgEjNGW1vxR8JajuhSvZ1C0uBn.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/EF9g1my5HQIF8tGgEjNGW1vxR8JajuhSvZ1C0uBn.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 05:28:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631042ea-41a\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1050,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"d879d525121e7198c5c5f0b2be71c2ce","sha1":"da70f1ae56fc1834c0e16ae7dc5b9d93f18f0891","sha256":"8bdf46de0b2685634bb04ae842a892b9bcec19d9438c2b7e381b8e7b23cc2a61","sha512":"634910325de608b980d19ca3011ad0be78c329e61d0eee21a8ec6ab3e08ed3a769f67e4f9fae3664090f20175a0f74c9295fae6be72c3946ea006060facee278","ssdeep":"","tlshash":"8711a57f174313c0fc3b88f756912d65c2e8654638d003062be152d0c920ecdc4c890c","first_seen":"2023-05-04T05:57:31Z","last_seen":"2026-04-01T20:46:11.796185Z","times_seen":1306,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/css/custom-style.css","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/css/custom-style.css HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: text/css\r\ncontent-length: 29\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\netag: \"62d6aa62-1d\"\r\nexpires: Thu, 19 Mar 2026 13:52:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with no line terminators","md5":"2cc149a2ebd1a4253dc242d54c2dd366","sha1":"c28a715492b8decb160125ca7ba623e217c733e3","sha256":"3b6b5f14b03f97ad3a449c30657096210268c8460408a9b77a9b4bdb966e37ed","sha512":"6ff235b93b3aa0adaf92f24fd925894f461fd862238624423a14510dc05895180b38622701f677694fd08ddf373ca6b7dc101df4a936379bb8821b956c9aba11","ssdeep":"","tlshash":"a080002e002380aca8200b82300c0c30e003a20300ba82002e0820ba20b22a8000c003","first_seen":"2023-04-05T18:32:05Z","last_seen":"2026-04-01T20:46:11.751154Z","times_seen":1875,"resource_available":false,"data":null}},"time_used":540,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":538,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/63sbeom7wWL7T1jrFKSWQf7dps9WRgbkuNkstVNz.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/63sbeom7wWL7T1jrFKSWQf7dps9WRgbkuNkstVNz.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Wed, 18 Mar 2026 12:50:33 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69ba9f99-1e6a2\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":124578,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1280x720, components 3","md5":"e015ac82e9727d366b89b1070c714f1a","sha1":"c91e1fcc21d891438e55ce7f718dda8ab1b9d935","sha256":"58483e8fc761d5cedd9e84b7410440adbef23f2693980a8e7650e28f1bb17403","sha512":"670bd3d5c66530b7373a5f6ea5fbd9e03d22eaa924d285b690a44f52651defcd69469dd7d25776f1f5adf204794bb41f33f658de95221973de5f15174df1efa0","ssdeep":"1536:b8aklcOhpG03mmxF205tq8M6rEAZPA4h0/Klef91xLl3r9r6Nhe1ONlEEAqvfVDu:Y535xF2owmBi/7z6he1ONlEEn159q","tlshash":"32c3121f8f5e22f05a1e61b4fdcb242d0ed1477886ce6fbd4672da9650d06312ca875c","first_seen":"2026-03-19T01:53:16.479635Z","last_seen":"2026-03-19T01:53:16.479635Z","times_seen":1,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/fonts/la-solid-900.woff2","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:44.458Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/fonts/la-solid-900.woff2 HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/public/assets/css/vendors.css\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 96752\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\netag: \"62d6aa62-179f0\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96752,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 96752, version 1.0","md5":"36fc297902c9a2e857858baa6ac25f2c","sha1":"89d9531c0c70a8751dff83c1917baab1f16a2071","sha256":"10a68e01209d939afa9318ee71601b0a6e10f025d4cd6d98a492d340b73941fb","sha512":"c5711d5027762fbc8d352dfdf64094958348b873671c891e8c5cf701a569c3bad672a380db7fad76692bf79dc9235b37f76b6f42f73698c9f85d2c7a23aa62fd","ssdeep":"1536:H8wZeXMjWqtJeAAHBX6ANib7HTYJv+Nr1ScHQjn6t/k5LBNCMAG35y:H8hXMjWeeVHtA7evKr1Xwelk51N4Gw","tlshash":"1f930257f0921be097c688990e189035cd39fd71397fe9f4e603ae4cc361927e52a4b6","first_seen":"2023-04-05T18:32:05Z","last_seen":"2026-04-05T08:45:03.561181Z","times_seen":10919,"resource_available":false,"data":null}},"time_used":639,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":635,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/css/vendors.css","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/css/vendors.css HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62d6aa62-6d5a5\"\r\nexpires: Thu, 19 Mar 2026 13:52:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":447909,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65251), with CRLF line terminators","md5":"02118fd99729f7f7f943923a4888eec2","sha1":"65795a8c4d93890045ba52ffc1c173bfd136a1db","sha256":"80788cb10255b2093da150862c8566b3b29f51f3f7c9fc6e357c8ad71cee3282","sha512":"954b57c87f030fd6cba472edcd23bfb685d9058f1393b7766da4ee261f2b6e95d3cfacf3ca910c41e4fbdf683b00abeb047d0e9feedc2edab81c31cf71460694","ssdeep":"12288:ykX1upEL+Dhh1CRchzUablNcvtKZywQ1OAPkWDL32ye5trKem0OT2:ym1upEL+Dhh1CRchzUableAZywQ1OAPA","tlshash":"619497bbe15420d8b327c516b7c07bbd151ae116e5220ee9f2472a1d8bc27c712e6f1e","first_seen":"2023-04-08T13:40:53Z","last_seen":"2026-04-01T20:46:11.668251Z","times_seen":1138,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/css/aiz-core.css","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.859Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/css/aiz-core.css HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62d6aa62-2ca32\"\r\nexpires: Thu, 19 Mar 2026 13:52:43 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":182834,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with CRLF line terminators","md5":"8c082aa6cfc2447d650ad1f9e3ac6a7d","sha1":"73959dc428f71e76e467670cd2110733906a0378","sha256":"1e3d66aa4ed7c6ad8a53fe206ec383add749411ef1c1443b266d72d2d5031484","sha512":"b29b2061ddbe8bdb5b1c5ee501a90a37fd7b8739ddb53d4a31c10e81cc81c720c4addb237bec7b23fb56c631377a2efdb2488a1002b46c9a39d3c767d27cf770","ssdeep":"3072:fGaXbuDojBDC6L6Gjfj0MgA+acqWGxMDYXWo9NhmJ:fGaXbuDojBDjx+acqWGxMDYmo9NhmJ","tlshash":"4104a5abd6101149387793b9e7e25468eb3e2107ff0244b97bfc26074fb59a4c911ee8","first_seen":"2023-04-08T13:40:53Z","last_seen":"2026-04-01T20:46:11.73414Z","times_seen":813,"resource_available":false,"data":null}},"time_used":365,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":365,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/A4exnDZSrAXvDu3OLWe07zbp2XXmwnQXb8iHu7jE.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/A4exnDZSrAXvDu3OLWe07zbp2XXmwnQXb8iHu7jE.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 01 Sep 2022 04:20:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6310330a-bc82\"\r\nexpires: Sat, 18 Apr 2026 01:52:44 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48258,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 111, 8-bit/color RGBA, non-interlaced","md5":"76d2e804b13ae4a73982c3b2d75df903","sha1":"6747c9c593477ea96a3c96b808f2c93ce1a792ac","sha256":"dab6d5663f1c13413064c8e61aaa469dee17d921ff466b52380d4ecdacfcba45","sha512":"29cae41b0746fedb3641f52681cdedf6d2aae1b4cbe7c45cf5bf281da3689000fe1ecbf7daa646627925a24e084fdd4536f140ea5a287c3e3049687af770bd1c","ssdeep":"768:/lpWRpVZ/xrbiaVNCHRXvTZqYAsThs1/Y7LDPn4/FQ1jZgooky7DT2g0u+HaMYhh:/l8HZ9bdNCHxb8kTsY7LDPj1jZgD7Da+","tlshash":"a223f161f55e483740307d59ef42ed3ae1ecb1e17b7a8c2b7902ec9c94d9dd908aa40b","first_seen":"2023-05-04T05:57:30Z","last_seen":"2026-04-01T20:46:11.679131Z","times_seen":3135,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/nAxAZ0YpF6MNwsWm9NBZxRYC7bAeP5V1PbuzYvFa.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/nAxAZ0YpF6MNwsWm9NBZxRYC7bAeP5V1PbuzYvFa.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:30:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6310355c-4f7\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1271,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"2eb641f296d43ede2b5774ce3eec836e","sha1":"d14987fcf0a711420b361deb9b2121e01e5694ed","sha256":"d8f9f359c90c02cd15010237f765240d967782ab0b8ffbe1dddca8bd1335be8d","sha512":"1481ea8d56f83f6cb9285fb74e90065e42c5d792590ad61cf8ab124d3a4cc452eaf316f5a8b21bd63f4acc04f62a90d800ecb5f1b3c8f6a2834b7b6a34f31bd1","ssdeep":"","tlshash":"1021e76ea36323c1fc3b47f6ec146c42e2de8ac23d511a053ff10991d961ec8a408658","first_seen":"2023-05-04T09:04:14Z","last_seen":"2026-04-01T20:46:11.834798Z","times_seen":1017,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/dKDjrCqQs5L8XembeZk3oENQe3sHOckPagdtzwL6.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/dKDjrCqQs5L8XembeZk3oENQe3sHOckPagdtzwL6.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 01 Sep 2022 04:32:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631035c6-11576\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":71030,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"e67671da06e2c7eb39def44488dd6d75","sha1":"4ba20a1a65734bdb200838132f7b532feb3842f8","sha256":"caa02494b7d4bbd47c3a2b6c4e7d0ef6d046bead252f4f832eb420bb05d304d7","sha512":"890fe4d1f80e3f04f87a4c16db634b55b830b2f42550cae947e9bd872ab481a29f7c2e4541c58877635febd6977feb69086b1087d79a9bdc9ab3d99bceb9bca6","ssdeep":"1536:9Fn3SwMP6uVgZfbFgJP+ZIxqxy+FzJfsV4lJBGA:Hn3vMPzMFgJP3qx1FzJfZJBGA","tlshash":"016302b2c76da1bc04a572ba3f61d4ab41c360c94c59b80e897d39389b657c858f7bc3","first_seen":"2023-05-05T03:08:08Z","last_seen":"2026-04-01T20:46:11.642151Z","times_seen":1191,"resource_available":false,"data":null}},"time_used":196,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/img/placeholder-rect.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/img/placeholder-rect.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62d6aa62-19bf\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6591,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x600, components 3","md5":"76891b0b93848682626db79b8d421b8d","sha1":"f5532d4d9fd281b513922ea75639feb284f24d63","sha256":"6ce595f5fd220331717134f243812e695141ce3c9925bd4135dae9291228e8a8","sha512":"54243374803de7823215d2390bfb0eddcb2b76be8733162b4b061f402026bcc5425d3225be33ef3811cc908606aeb68743bd8872d6c866ba4720c40acb7a6bda","ssdeep":"48:UyYVDhW133C49Qg1zoI8VLexKFKF1DIAp/3j9y/951SgeK:U5kdC49QgGIjY4lxMbogT","tlshash":"92d1b8b6c60cb150faf64cf4c52242416a2006973f75116b8b89f4bed8727c5ac22ec1","first_seen":"2023-05-04T05:57:30Z","last_seen":"2026-04-05T00:00:22.409812Z","times_seen":2324,"resource_available":false,"data":null}},"time_used":534,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":534,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/img/flags/th.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/img/flags/th.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/png\r\ncontent-length: 452\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\netag: \"62d6aa62-1c4\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":452,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced","md5":"af85286bf1cadae9c2c636fe83195251","sha1":"0a947fc1eb6a6efa4a574435c9276a7f5b1ae08c","sha256":"9301b5300fa18b50f774512c3549ded45bf41c30359d1824ced7cca0cc75e216","sha512":"ec68e247fa0ceff7f85532448063452e22014e44f32f737819bc89ea2f5061c85d23f578dbe7349959012269b9b93b0ac7efe9b9317640d007209faa3e775f6e","ssdeep":"","tlshash":"16f0a3d7b9d04dedd59f03f2a8c213b825a7a7191312c0681906dfd778b4c06e4ee72a","first_seen":"2023-04-09T01:25:56Z","last_seen":"2026-04-03T05:16:43.8592Z","times_seen":1632,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/FwZlWQdDtdap6FDGukabtPR9nGISL2SINWeDUlLV.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.460Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/FwZlWQdDtdap6FDGukabtPR9nGISL2SINWeDUlLV.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:50:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63103a32-57f\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1407,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"5b29995f74195e646abe742f826a586b","sha1":"52b226843eb0050eece321b5b84fc06e3d7f407a","sha256":"b01d56794c1ee32c4ab6b186a8758edf129ba93be2b73117c523726cba08f1f7","sha512":"aeb93900addfc47a7439ea5b67a51b090f830b65dd70636ffc130b094614235f3f1c414c3bf38bbec3dddcf3f459a666b77cbfac857a1d69e39dde88da95e1b5","ssdeep":"","tlshash":"0c21b67a374207f4f51a83b78c111ca9c2ef6291368116e736ed8652c1726c0dcaca99","first_seen":"2023-04-18T11:40:39Z","last_seen":"2026-04-01T20:46:11.773172Z","times_seen":1375,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/home/section/best_selling","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"POST /home/section/best_selling HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 47\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":47,"data":"_token=1zIWPiKxayXxDgw9FoW7KDJKkHBFkqtBEM342gqZ"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\ndate: Thu, 19 Mar 2026 01:52:46 GMT\r\nset-cookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS; expires=Thu, 19-Mar-2026 03:52:47 GMT; Max-Age=7200; path=/; httponly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58548,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (433), with CRLF line terminators","md5":"85a641a9981c6524918ccd484b3ede52","sha1":"f8318a1f811d6008c5076e819b527c7813b27ffa","sha256":"d01fa6a204c20355a43769ea3173cca8b0a73110323fec225e756e2177908f1c","sha512":"08f8134ff4d7724ba26746214ca713ec85fef2e42edbd4213a8b967e05089b350a9f7622aefac0c4f7c7e9dc5ebdab7782f8fc888426c5afbaf05974a9e4210b","ssdeep":"768:6kQdNE03dJiFdvWdQydMc7q8TOuMEO0qSdYLdYKdWZdqsdoUd2ndumcd5LdKgdRl:68TTxR8TVMEO0qPuPiV9Am68gl","tlshash":"3143006238e0137705b3f18642317b99fa519607d743a8c8b6ec93972ff2eb29907d16","first_seen":"2026-03-19T01:53:16.49026Z","last_seen":"2026-03-19T01:53:16.49026Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/iHOjnygPdOMIDICsimZMAMoE0b3NXYGInqETeSBo.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/iHOjnygPdOMIDICsimZMAMoE0b3NXYGInqETeSBo.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 01 Sep 2022 04:30:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6310354e-cc92\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":52370,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced","md5":"d08962c167054acb565d56968900c1fa","sha1":"4cc291ef506c6fb22a3de27f841d3ceb323ee100","sha256":"ff07f347264bcdfb55dcd9cf9de62d8046c0dfdf9f884842668d5fe1b5250936","sha512":"a934b9983fe775423960bf0c455289d53ee99c17f910077fed8726949010b793f6478f9ca0dd17043b45af75f2775103242280355b7405422fce81aacf12fe77","ssdeep":"768:f8ueIlJrC5bSVFPp3yHRq7+8p6LqSHE2JTk1EdYzX51YwzYcJgOonT8iQhB:q5bS8HWNFURAEOzJ1xYc+OImB","tlshash":"2a3301411e2cd360e33c722fd19e2b25b5f361a14e2f716a70829bc657325ea4e39d2d","first_seen":"2023-05-05T03:08:08Z","last_seen":"2026-04-01T20:46:11.63152Z","times_seen":856,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/img/avatar-place.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/img/avatar-place.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62d6aa62-891\"\r\nexpires: Sat, 18 Apr 2026 01:52:44 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2193,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit colormap, non-interlaced","md5":"ef7330479dbe02e220ad6dee9998df64","sha1":"c433e1915c00ba4693a76958b9f1cc45df4a0bbe","sha256":"54efe0671051e55fa2622b0bdfdf959389a82840f6a42c06acf99b7f8eb97da8","sha512":"65af67af6f5bea168f6e26162fc439adbfd4a3972759db3f21c426249150acb4a648f920fafbf4ecda9f36a6f8b2628ff1edb81218b9dfeef437741127609cba","ssdeep":"","tlshash":"d24107cf65193f4dd1e5163aa0acea3176c0c01a42fb56040c8868e92c73e54ee39fbb","first_seen":"2023-05-04T05:57:30Z","last_seen":"2026-04-01T20:46:11.61251Z","times_seen":1889,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/js/vendors.js","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/js/vendors.js HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 04 Sep 2022 17:36:56 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6314e238-147f88\"\r\nexpires: Thu, 19 Mar 2026 13:52:44 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1343368,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators","md5":"892778359170727f61a5c126de22bbc4","sha1":"3c96b1c22b2ac0910da4fd907b6b9dcfccdbf249","sha256":"8af4d6ddad6778ef6e6f3ce0365db8566f02848c24dfd63555fe1d6b4b3ff9d2","sha512":"f94b550e36e5fb3a8b68f738d62490c5f56d6375bf32ab77ee6640fe2919efe55015345007d27429f5cf9823910765c08fde0da511aeb6e943606ed467bf0961","ssdeep":"12288:eywRuI36a1J+HhjynEs+tYdLnx7/zUVTnVMmbS5M3u68:+B36a1J+BSzGYJJ/zUVTnV98","tlshash":"e6254bc9b291b03247d760b5502f110bb23a6929a44d806cf639d8e97dbcd4da27bf7c","first_seen":"2025-07-28T13:06:06.60703Z","last_seen":"2026-04-01T20:46:11.710962Z","times_seen":188,"resource_available":false,"data":null}},"time_used":532,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":532,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/P052DIfVaW5aIufaDbbjBvOgzucl1PJAevaLLlPr.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/P052DIfVaW5aIufaDbbjBvOgzucl1PJAevaLLlPr.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 01 Sep 2022 04:56:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63103b92-4cbd\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19645,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"56270ee06f7c789cf16ac8708aadfd35","sha1":"62b822707c1e480bb7f3419d5641e35fce58b1cc","sha256":"49305ae4f74552c89a04030a29dbc952f8aabc0be5bb1ab3397ee2ab235bb5af","sha512":"e71ce3856fc3921a1f627b8e6be96c84f18379824a4bb55bb9870f275aa43c935bf82df049e3b6a83b7c93ec8e0b3d4edda3ab420f3700a2032dda2b5bc1e852","ssdeep":"384:3jYPS1xVY8oKIGBnh0nnN1I5vI3JY1LTjTOdxb2qm/CoD/QZ:3jYcx7IGNynNqvIAud6TQZ","tlshash":"4f92d0f163826841fb9358a66d8585f788680ab4cbeffc99d55200f78dd3f0281a5b1f","first_seen":"2023-05-05T03:08:08Z","last_seen":"2026-04-01T20:46:11.763575Z","times_seen":1130,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/xjmjKIo32nm4WUsDbDgpyEOyJtDNXSCqZvrclGPL.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/xjmjKIo32nm4WUsDbDgpyEOyJtDNXSCqZvrclGPL.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:53:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63103ac0-5bf\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1471,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"a0ecb7e59a02eb0764387f21be234f63","sha1":"2d0b24fcb1e75b6cb96264e6b8d42354b8cf6062","sha256":"df4fc66c8dfddb9c87a6ea42549ef7b88359ae9115c2e33483b2767c1e307ec1","sha512":"fcf46878c232d155f68833bce2141cf744e4fa76af5c0d655b983fe9cf76d0a1e924ea74508c7b393065212c7220f6f74ed9d70c09d41ee473c8bb46df1acac2","ssdeep":"","tlshash":"b731965d1b9f13d0fd7781f3641d9c66e3ee9e8354802a056bf4a2a0c872fc8580ca1e","first_seen":"2023-05-04T05:57:31Z","last_seen":"2026-04-01T20:46:11.754323Z","times_seen":973,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/4f1997cbefbb51ac007e086ae9a81a9c","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/4f1997cbefbb51ac007e086ae9a81a9c HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 139593\r\nConnection: keep-alive\r\nExpires: Fri, 30 Apr 2027 05:23:57 GMT\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"4f1997cbefbb51ac007e086ae9a81a9c\"\r\nX-Mms-Request-Id: 69d50a5562ca4cb18ce1db9a40e5b442-69940990\r\nCache-Control: max-age=36000000\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nAge: 822529\r\nx-via: 1.1 kf148:14 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:5 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_13842-56899\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":139593,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x1024, components 3","md5":"4f1997cbefbb51ac007e086ae9a81a9c","sha1":"4a363775a5739ddc1d8af0806e18d7d22f1081d1","sha256":"2a006e63617ffad9312c772144bb5bf1c0db29143d1623bcf8cd807b48d27557","sha512":"0ec5274cfd320a3940c9de67117d7df406dbbe2d47625a45db65f526f9327b6c050117c1ea3fba4674295317530be25db72e63d972f8d7e3dc60fe6e637476d1","ssdeep":"3072:FHUcxBNTjF4Sdm0haUBkcZSfCSF5abBotGiYLAy43Tug9DIIM1qdlFTARy6:xUcxbTjf3htkc1s5abBocFLYZjMwdXTs","tlshash":"19d312ce51c573f27982c2f336e9e93cb9eadb0c75997e7e22505b9952d2e964820c00","first_seen":"2023-11-02T06:42:48Z","last_seen":"2026-03-19T01:53:16.496949Z","times_seen":8,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":109,"dns":81,"connect":8,"send":0,"wait":45,"receive":17,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/b56fc51fa55b3f7cb633c7d50fedd640","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:48.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/b56fc51fa55b3f7cb633c7d50fedd640 HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:48 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 223982\r\nConnection: keep-alive\r\nExpires: Sat, 17 Apr 2027 04:31:26 GMT\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"b56fc51fa55b3f7cb633c7d50fedd640\"\r\nX-Mms-Request-Id: ec5a235a9d8d4a98a64ec4a6e449f269-6996e941\r\nCache-Control: max-age=36000000\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nAge: 1948882\r\nx-via: 1.1 kf148:8 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:16 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56f0_PSrdsdgemSTO1sw92_17285-38890\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":223982,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 760x760, components 3","md5":"b56fc51fa55b3f7cb633c7d50fedd640","sha1":"ad674d5f500f638dacb81c0ecb1dcca1bed96648","sha256":"4ef66fb9d80f470b6fe1f50de295e29c147a1222990a263b22d5e759c241b73d","sha512":"2f1b0fb7f6e1ddcf4a1175a36ced5228c9bbda40ca1e753be00ea9db3c8d68ca5b3364c09e39bf1ca45cf0ef52f51c8e6505fa417914b7b3f15d9947cbb4ff04","ssdeep":"6144:kcMSaVKRX4aQvghZG0sdTHUfbx3RMZ4vUHkG+LPopRa+t:HM3sAYDGJ1Hov/vUyLPqxt","tlshash":"7d2402b7310051a00dafa322d474aa2fa1e18fada8d7e30c57641e46b29d7dbb9d4c94","first_seen":"2023-10-18T19:59:12Z","last_seen":"2026-03-19T01:53:16.499257Z","times_seen":2,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/52Guu36ULaFJEUnbVguBTbQVYL1wGkH1x7a5mse8.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.865Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/52Guu36ULaFJEUnbVguBTbQVYL1wGkH1x7a5mse8.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Mar 2026 02:09:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b614d9-46ab6\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":289462,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1200x800, components 3","md5":"65d8410ddeedeb76979c49fde572ed09","sha1":"9b9af2a6bd7199ee38166c8020d8cbc422e92641","sha256":"36c8bf18b71ca00d871cfee740426cf54cf032519da0c49674ac59583fc2fce6","sha512":"d7ed8bada4ceb34b5f71cdd7b608c6d1b228c4912e8517a1e50bc6e1bd854e101b13f828572907c23eb9fb6c42a873542b08af293092cf567615604b9229ce73","ssdeep":"6144:cddA8bIYwQRJOAOUaDXwTrpcmg9XpBRG5JwT0mV8Kjl:YA8ZOUI9hUWQx0l","tlshash":"7554121492401f72395c0f4b7f83ceabb279fb346a98a279c1154edcb64fb41b05792a","first_seen":"2026-03-19T01:53:16.501584Z","last_seen":"2026-03-19T01:53:16.501584Z","times_seen":1,"resource_available":false,"data":null}},"time_used":536,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":536,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/LJ2GCmMJlMSvP8gxCmKd3fn51awD7bMZNOmnW6E2.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.380Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/LJ2GCmMJlMSvP8gxCmKd3fn51awD7bMZNOmnW6E2.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Mar 2026 01:52:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b610e2-21e41\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":138817,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1081x1081, components 3","md5":"5ab7872b45f8fc67f8f8bb22ac5894c2","sha1":"0d1614d2bf6f76a9190ba69da4fd0937e235505f","sha256":"dc68e3901d1963d3f22149ae4d5987da22963bfb9cea8203bbed5c342cbc81b8","sha512":"60c3dd9705a27dd979805449ad408a2c84fc0bdfbce81e929c2f1b4ec5d3bf899a9f8fd718514e7779e0b839d7c440be67824adfa24c5d1978240cbf10322a49","ssdeep":"3072:2GfvPc2EjfhLbgHqDmQmtnn8jCBhFDP5bmRIMvNf7/AR:2GHrElLbMf15hFDP5bmRICNfjAR","tlshash":"71d38d439c498ad7941cd3e8bf471dac6f465b0ce8827aff05224ecb7e942620c9d56e","first_seen":"2026-03-19T01:53:16.503566Z","last_seen":"2026-03-19T01:53:16.503566Z","times_seen":1,"resource_available":false,"data":null}},"time_used":179,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/home/section/best_sellers","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"POST /home/section/best_sellers HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 47\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":47,"data":"_token=1zIWPiKxayXxDgw9FoW7KDJKkHBFkqtBEM342gqZ"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\ndate: Thu, 19 Mar 2026 01:52:46 GMT\r\nset-cookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS; expires=Thu, 19-Mar-2026 03:52:46 GMT; Max-Age=7200; path=/; httponly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7455,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"021551dc1e49c523a49da96f0bc19a28","sha1":"bda44f39b2b8b8920dcc6eace6e7969f9e544451","sha256":"3656ab29a6967678a47c75a1221d3b693506ff8c7ed680a4466b95c60296041d","sha512":"8934bb16092f6ca3da052cac073595aa282d2bfdc0ba69096c59466bc22e74698b1045ebef8a23cbb73be5d6297c2ff1b977aeb6f5c2675f58da3a224ee54bba","ssdeep":"96:WmlF+bHQhldLlFkbxQ5hdLlF1ybdQmUesdm:WyFIQhP5FYQ5D5FMQJrm","tlshash":"17f1753530d0223b0673d19a56206badfa828113d717998ab2fd13c7aff3e929803d06","first_seen":"2026-03-19T01:53:16.505603Z","last_seen":"2026-03-19T01:53:16.505603Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1069,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1069,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/sg-11134201-23010-5wl9xqgguxlvbd","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/sg-11134201-23010-5wl9xqgguxlvbd HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 522242\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"90e37424f0514d4f73550407a7a58a0d\"\r\nX-Mms-Request-Id: 64e3e9011ea1464ca13370f9cd99bf76-69bafc1a\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:46 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1hb199:1 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:0 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_12778-31299\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":522242,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"90e37424f0514d4f73550407a7a58a0d","sha1":"279f3055374f16346b18daceb9a3c44bfb752212","sha256":"0e9421305dbb7343f201ebb6bd4435ad8be18b6054972cd76196321c30a0ee96","sha512":"5cd52232bec9402fb528238b3911ad99e87ff7ffa76357320770b20178db116b3e4bd9df98bc506f61d50283b87b0e2375d127b9c4d2a2215c5436ef54979efe","ssdeep":"12288:S4YssVIkLhhX6JgqrsTVvCIYuzQpxSo+NogUz32jIw:wssVIkLhhXlLcBuiUvSeUw","tlshash":"9bb423648e5c663da55f26d52393fbc14181db2ce94c618a7af3064ebbcc33b2846b1d","first_seen":"2023-11-02T06:42:48Z","last_seen":"2026-03-19T01:53:16.50734Z","times_seen":9,"resource_available":false,"data":null}},"time_used":1798,"timings":{"blocked":121,"dns":71,"connect":21,"send":0,"wait":570,"receive":982,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/sg-11134201-22100-3ox9t95xouivab","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/sg-11134201-22100-3ox9t95xouivab HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 154513\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"3dcf0a489c5ce98762ddd2d826421800\"\r\nX-Mms-Request-Id: 47ae28c1a05e4ce181a0694779b176ee-69805281\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:46 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1bc200:14 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:3 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_13300-7303\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":154513,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1000x1000, components 3","md5":"3dcf0a489c5ce98762ddd2d826421800","sha1":"9b5a2727f46100701a483c16162d0342623b6033","sha256":"a4729fdd3f3835a5481d2f9dda6e61d50bc2e3755b85a05880062afff552f9e3","sha512":"ebe8eab63e59126d50cc680fee155a8f17efbe8f81edf9769659d203ccb0cd223a0efeb77886104d49b47d63c5a87283a6c885ac67ba99600ace2ee9a283d5be","ssdeep":"3072:o8xGs3HP8zMGYbP7WG9oetoaPQL5+ClNFbjm2e//Q:o80o8Qvzt9HLn2qQ","tlshash":"bce39e07cc189b835568c3b8bf430e6d1b1e6b0da99537ef44264e8b7f692260c9f52d","first_seen":"2023-11-02T06:42:49Z","last_seen":"2026-03-19T01:53:16.508423Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1460,"timings":{"blocked":157,"dns":0,"connect":0,"send":0,"wait":793,"receive":510,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:44.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 18 Mar 2026 18:54:16 GMT\r\nexpires: Thu, 18 Mar 2027 18:54:16 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:30:41 GMT\r\ncontent-type: font/woff2\r\nage: 25108\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48320, version 1.0","md5":"dcf31ebe107435bd68e0164d59e19b87","sha1":"b68160c9333af833fe483928b3ef7128c07a56a0","sha256":"d8e4fe0452aa2076429a9bb5d8757d00a994dd95986cf950e9a1a371b9a072a0","sha512":"130cd52c3cccc36a7029bf92b2ddb363b8b36d206454aacc246739919552fccec5cacbad615ba4ac3817da3e83239371fe51324bdadd08357e3495087f62cb08","ssdeep":"768:Jzqdwl5YV7FVmpudK5a8dF8D8Z7J78VGnNFZEKh02dmSTPe9UiallHcOEi2c0NC1:9q+SYuMaVwZ7oGRNh02dd6UialBcOEpE","tlshash":"1623f218f29471f7edecd4d500a18c72baa528d442f116ed07b8d53ca36ca817a729fb","first_seen":"2025-09-17T00:07:53.723302Z","last_seen":"2026-04-05T09:48:38.647865Z","times_seen":199892,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":32,"dns":1,"connect":7,"send":0,"wait":13,"receive":5,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/Mdqpntq74vXUac1DOSZC0chtS4jmw0BbEpSvdImp.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/Mdqpntq74vXUac1DOSZC0chtS4jmw0BbEpSvdImp.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 05:28:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631042e8-1530\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5424,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 200x200, components 3","md5":"f5ee88fd5386827f8c3c45607df29bc6","sha1":"d0af0907d3fea172f7832319c322310037b0016e","sha256":"273bb02c1b5a3cfbfa242bcf02a393f94202b52d1c43ec9c9d329ba42b0ddbf9","sha512":"f0d8c38e6a324eeae844b19ff868eb1d161d8e85e96a0dac252ef0fb99948121dd9dac7f8477b4544cd5b9999e05b121c2688871a40d044e106228bbd12b6ba9","ssdeep":"96:mEoekke3dtp3ah5Iv4B26PPK7hBCmV5RNKiZErOsLD6TodH9QNq7:mVkYU+v4tchBCU5tZECYGToh96q7","tlshash":"e4b13957de91ead3b823d3bebe5a6e7563ed6d1410c037e316e00d92b325a809e17188","first_seen":"2023-05-04T09:04:14Z","last_seen":"2026-04-01T20:46:11.596863Z","times_seen":1071,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/nTA6b7ykLUPenc1v6OMgmHUzST7ZxQTrvlzSgE8i.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.698Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/nTA6b7ykLUPenc1v6OMgmHUzST7ZxQTrvlzSgE8i.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Mar 2026 02:10:43 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b61523-1f86f\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":129135,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 800x800, components 3","md5":"7de8ce0dbf8e59ca8c31532828ca1eca","sha1":"8df78d4ac53ff65b4df2144f3ae1bd83110aaefe","sha256":"3a45dc84eef27d53688c0aa1247b45d661b42c9f4e017dd870fe66b5d4e5c3ea","sha512":"54c5a70622f85dfe1eea04d63796879f65641be7e60282ac4bf99876584de150c431122a328dc65e46f85c3e1fc4a7a6ae444ef047dd4ef0a7f969b4077f62ef","ssdeep":"3072:UPmQz5rCcLt0S+3TD2p3S4jlsNxkf+5HPbEggeHwBhSBf1hpPPRvMK:vQz59GTNxkfwRgeXRr","tlshash":"d6c30223687a57b03d7ce3b15c769c9e1be625f038c17eb8a6f76640a2b54350bc0b19","first_seen":"2026-03-19T01:53:16.51151Z","last_seen":"2026-03-19T01:53:16.51151Z","times_seen":1,"resource_available":false,"data":null}},"time_used":221,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":221,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/bc137060af39bcf461914d2cc9428c81","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/bc137060af39bcf461914d2cc9428c81 HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 278247\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"bc137060af39bcf461914d2cc9428c81\"\r\nX-Mms-Request-Id: 40cc770fe7514febb26447ca72c6b84e-69940990\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:46 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1bc200:6 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:5 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_13842-56908\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":278247,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"bc137060af39bcf461914d2cc9428c81","sha1":"24da5a70a0132fb6b82a65bc5f8bb9431f1e88fe","sha256":"5bae78dfd3271d3a97701b19c945dd79f166adf15928f315ac6a266db1980a92","sha512":"3ff82296c3e8d093635a73f8d1826a6867f8200401521e3d0068a78d62e5c573b5d2dbc26af5732468835855666f0fb093cd1795836b115e9c5c0b2761f38e2b","ssdeep":"6144:horJ/IZ3QW4yHmWAkr8lVDfGQYbbyoracHq8ECSTc5ubZ9dc:OreZAW4yHms8PfGbbyo4kkZfc","tlshash":"744402e4ad1314f56cbe172ec289788d025847e895fdce4d333a1cee7be0a411c6ba59","first_seen":"2023-11-02T06:42:49Z","last_seen":"2026-03-19T01:53:16.513183Z","times_seen":39,"resource_available":false,"data":null}},"time_used":1755,"timings":{"blocked":161,"dns":0,"connect":0,"send":0,"wait":831,"receive":763,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/sg-11134201-22120-3lsv9v9lgskv87","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:48.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/sg-11134201-22120-3lsv9v9lgskv87 HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:49 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 212943\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"669e71a8cf2f8a374b51d2bffbb4112f\"\r\nX-Mms-Request-Id: b0e96ded86d748f59b5aec15813948cb-69a1263e\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:49 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1hb199:1 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:0 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56f0_PSrdsdgemSTO1sw92_12778-31369\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":212943,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"669e71a8cf2f8a374b51d2bffbb4112f","sha1":"2ad16ed0ca4c8eed58aca7ed8ee1e94e862d5c21","sha256":"4f31e54dbdd96d3e3b478e80997f52e8d162abd310cf18207762289dfc36909f","sha512":"6d0aaaf9feab9cf719d45753b0410cc8ef93271ec5232abf8a9082127cbd09fd89f14ae28ff05fc856717837560b8149c525ccfe5b2cb1d8ecdf19a1a9f97914","ssdeep":"6144:VVO7yPZ6dGH5NdbqfEyXdkuQHOKWHz1NOyWerB5:a7yPEdUb3y6RqsyWev","tlshash":"c9240269550b42395f1ccb52d664ac2f67a4af3188e3e67561fa2f02f5ea146fcc00ce","first_seen":"2025-04-09T11:30:23.796348Z","last_seen":"2026-03-19T01:53:16.515403Z","times_seen":6,"resource_available":false,"data":null}},"time_used":1401,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":812,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/2bf83c1a5551aed1c588771dbdd71f1b","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:48.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/2bf83c1a5551aed1c588771dbdd71f1b HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:49 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 272805\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"2bf83c1a5551aed1c588771dbdd71f1b\"\r\nX-Mms-Request-Id: bf69b841f6e54271b825be4091b2edab-699d4380\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:49 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1hb199:2 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:3 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56f0_PSrdsdgemSTO1sw92_13300-7345\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":272805,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"2bf83c1a5551aed1c588771dbdd71f1b","sha1":"0c197fce72421c13a8a9b54e7df0a153980b6634","sha256":"c50b7d39404f4d08e48217683bcffa551767ebb839f7d7c67c1e35ba17b9b4f0","sha512":"fdd0842b951f54ae59f956eb9f573f38c07f592557cf59132d1fec35ffeaa890d87eddbd3ad9f74633ae7b91733c0ea17b60f300d6f326172c1105d90232fb0c","ssdeep":"6144:dufna1U9rM0WsnkU6ACPwjhWUGHohnol1Q7mMf:dY0GrjnkNeSEol1Q71f","tlshash":"be442362ae42583dc70453d884951cac5e1fda26abaa37141febc09cce4f6db12cf505","first_seen":"2026-03-19T01:53:16.517524Z","last_seen":"2026-03-19T01:53:16.517524Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1421,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":721,"receive":700,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/fonts/la-brands-400.woff2","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:44.496Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/fonts/la-brands-400.woff2 HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/public/assets/css/vendors.css\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 84772\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\netag: \"62d6aa62-14b24\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84772,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 84772, version 1.0","md5":"54b0b4e7de85711c3796882b2b19eb00","sha1":"89f4f0d9ee3a2bde5fa250bbe6dc4a4804e1a863","sha256":"ff70c9bc4650cf5e6b12d1feaa7af29ebf0681993fc0c5ffe3658cea0dbd5403","sha512":"38490f72deaf75fd7a82a23919fe479b5a5a0d0d7279aab96e153dfe413c1ee89f2095111dcccdc58470c17622f6bb44ea4d63a8da6208c973bfea7035a37a21","ssdeep":"1536:5W447cpQ00eKOVGTZUbT3g4SAXjZoUANGBem/V1R6WsMpEEeOWeB:5zSiVGZUwEXjOvGws/WweOhB","tlshash":"e7830284fb35e9e4718ecb30d58432a9d5e9a0f8b91a0456f1c7c07bce2d6fcb196492","first_seen":"2023-04-10T16:26:38Z","last_seen":"2026-04-05T09:19:49.138692Z","times_seen":2481,"resource_available":false,"data":null}},"time_used":601,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":597,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/YTrXmHPHEBAeW73ffIhMuvOkpDsDbd1IbHVGDaZh.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/YTrXmHPHEBAeW73ffIhMuvOkpDsDbd1IbHVGDaZh.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:32:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631035de-556\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1366,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"b9d5b478cf1ccf4b63c4c4f309c57672","sha1":"cf135870f4e958ae16622897add5e44b9a661039","sha256":"393f0153f4308fa263f01711192bcb12054c99454799b7b36c2382c7a95582ef","sha512":"518b3a718575a8c9ab14bd4aa7bc01e94b2301434da55e7ee8aab9d91320457976a019191f7038565b29c839d0b44f88d0d4b93febff12d779d8aa93ea2eff0a","ssdeep":"","tlshash":"dd21fb274b5303d0f5bac4b340d97dd962da59aa30e95352e8e181e1d990be8c1c4d0c","first_seen":"2023-04-18T11:40:39Z","last_seen":"2026-04-01T20:46:11.791884Z","times_seen":1452,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/5724376edbd09442dfceea44000c00b1","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/5724376edbd09442dfceea44000c00b1 HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 111515\r\nConnection: keep-alive\r\nExpires: Thu, 10 Sep 2026 08:15:09 GMT\r\nServer: nginx/1.22.0\r\nETag: \"5724376edbd09442dfceea44000c00b1\"\r\nX-Mms-Request-Id: 88d86648aaf3441d9e17ba0ad92cb381-685bafb9\r\nHandle-By: origin-cf.xiapi.shopee.cn\r\nx-test-header: prom\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nReferrer-Policy: no-referrer\r\nCache-Control: max-age=36000000\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nAge: 20857057\r\nx-via: 1.1 kf160:9 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:3 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_13300-7300\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":111515,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 601x601, components 3","md5":"5724376edbd09442dfceea44000c00b1","sha1":"1faf22dff36924590ae4221b23ab5036ea5e3e94","sha256":"69348caad72650323467b204ab3cb308a1c2501f14890f820a63fc21124f92bf","sha512":"fcf5bfc573eb5fd850ce0b8b9ed467d4ae11642406a9ccb3c96349a2017c4247c2471afb5950f6d257bb8fd97447d2c051d697698c02493044f06b193cf7efa1","ssdeep":"3072:zv2gHgxh3/JG+tKF9FeeD54dZMKJfXuNNgKZ0gLlbY:D1MxGKK/FeeWdturLe","tlshash":"beb30257ad8963b358aa005dbf074b80af5d135df5a1e98510c14dca3326aaf0fbf31a","first_seen":"2023-11-02T06:42:48Z","last_seen":"2026-03-19T01:53:16.520842Z","times_seen":8,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":105,"dns":75,"connect":10,"send":0,"wait":46,"receive":11,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/sg-11134201-22100-2odppk6kvsiv71","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:48.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/sg-11134201-22100-2odppk6kvsiv71 HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:49 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 194466\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"29c7573ca13c866c29b3593a470b9c4a\"\r\nX-Mms-Request-Id: 7a00c7332cf045a0a387775002045c64-69b625aa\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:49 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1bc200:14 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:3 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56f0_PSrdsdgemSTO1sw92_13300-7344\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":194466,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"29c7573ca13c866c29b3593a470b9c4a","sha1":"2606361406d1fc47a69c8ceac0d65ace8fff8e67","sha256":"20bdbeac1c33e701978b1618bdbbb32dcabf8d68fd5c5edd2ce02de86694c886","sha512":"1bb6d2b340c8975fc8085e868242e5dc03c842522ffd66d13d88446fc59bc4236ba1fad4bf17732dad89e9a8863504a44a58cff2a350c2675ebd6cdf9a5ff4e5","ssdeep":"3072:N9GBjRg3NbF01wGLtzdxEYhuX/HJ1Woxu+4WDg1ZlpxvHk9WkLLKKlbs4/aalQ/G:N9GB1gb0BByYI/JMoxpclbfi9OAslahV","tlshash":"37141254956d0032fa2fe720d8908e2f81a5afbc5dee989ca4300fcaf6dd5c63c74489","first_seen":"2023-11-02T06:42:49Z","last_seen":"2026-03-19T01:53:16.522715Z","times_seen":40,"resource_available":false,"data":null}},"time_used":1290,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":541,"receive":749,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-19T01:52:40.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\ndate: Thu, 19 Mar 2026 01:52:42 GMT\r\nset-cookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS; expires=Thu, 19-Mar-2026 03:52:43 GMT; Max-Age=7200; path=/; httponly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":133943,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"f5d7f567028a0b1f6833c1df255ee28e","sha1":"def936d2a08a5052fd3910095b61c9b98a656d80","sha256":"36262c807e4ff88783d5d54700c7f9d26c2882903f1641a2c08e293861a5dbc3","sha512":"8f9c8790d712a56bca0d59e29a8cd3e9817857c196e1c70b43e7af2846525e841b8dffe6acd928fe816f9825e1086df1f204c22a7f4e03b6eff94c63e9c5a1c6","ssdeep":"1536:XKXL4Kl2eQwXXVlFTFlP7uqDOo4CLo80ONs2:aXLvFNKILh","tlshash":"18d31f3234f011760173a1d65631bb8dfe82a207d74759c5b2fc5397aff2e929803a2a","first_seen":"2026-03-19T01:53:16.524515Z","last_seen":"2026-03-19T01:53:16.524515Z","times_seen":1,"resource_available":true,"data":null}},"time_used":3120,"timings":{"blocked":390,"dns":18,"connect":179,"send":0,"wait":2340,"receive":0,"ssl":191},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/home/section/home_categories","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"POST /home/section/home_categories HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 47\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":47,"data":"_token=1zIWPiKxayXxDgw9FoW7KDJKkHBFkqtBEM342gqZ"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\ndate: Thu, 19 Mar 2026 01:52:46 GMT\r\nset-cookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS; expires=Thu, 19-Mar-2026 03:52:47 GMT; Max-Age=7200; path=/; httponly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":71332,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (399), with CRLF line terminators","md5":"8e219b78430ed7d94ffd521c87789fd9","sha1":"0f594441484891f0b90c43ee0dda1a836c2bdd5b","sha256":"2b55566599e3b1cd403c1fec02f3111d737e249848d293a380ae70cea5723772","sha512":"6c42ef7f5e5057acf226af4b82fb273950e1aef4cf021c019fd5bee5b66c57a76fafeafede269345a26360f58abc31dc0e6012d5c55b78872986f5d354a25e31","ssdeep":"768:kdxTOAd1B9dX8dOYdrqSd4Ld4ZdKKd2UdWsdIndumkQdNk03dJCFdvWdwydaWedO:ATFBLnKqPOCP9VAmcTTxBEHIyzL3L","tlshash":"bd630d7238e051770573c1d68230bb9df991a617d743a8c4b2ec23976ff2ea29907d26","first_seen":"2026-03-19T01:53:16.52614Z","last_seen":"2026-03-19T01:53:16.52614Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2363,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2363,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/daVWMYg729HjSPlKmknmYwhj2r9PNUSZdRxdwTSo.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/daVWMYg729HjSPlKmknmYwhj2r9PNUSZdRxdwTSo.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 05:35:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631044a4-4f1\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1265,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"2ee9653ca564329d4ab6771a802741e4","sha1":"f39633c5e4b51e23a3085b29f9482e21a5c204d7","sha256":"a197c7c913627e639aaf3a4ab155eaa119f846e1fd810cdd8e0e9aa58c5be14c","sha512":"aca893b869cffb0411803ec543105858b6e597a4aeb911fe062273fe97f45f0f56abaf9618c32905b5e3fc947a406b4627769847b4440a92c31e1c16aade4a73","ssdeep":"","tlshash":"1f21843b57520bd0793588b644057fd1e6ccdd45b1d0566a2fd4daa18961f81c08c90d","first_seen":"2023-05-04T05:57:31Z","last_seen":"2026-04-01T20:46:11.629118Z","times_seen":942,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/th-11134207-23020-ruu2tqlkp1mve5","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/th-11134207-23020-ruu2tqlkp1mve5 HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:46 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 547710\r\nConnection: keep-alive\r\nExpires: Thu, 15 Oct 2026 11:52:57 GMT\r\nServer: nginx/1.22.0\r\nETag: \"7b1897d6fb5d4484efa0bc7518158957\"\r\nX-Mms-Request-Id: d2cacaa523f94ce0bbb8a67312aa37d2-689c9cd5\r\nHandle-By: origin-cf.xiapi.shopee.cn\r\nx-test-header: prom\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nReferrer-Policy: no-referrer\r\nCache-Control: max-age=36000000\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nAge: 17819989\r\nx-via: 1.1 kf160:1 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:3 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56ee_PSrdsdgemSTO1sw92_13300-7301\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":547710,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 800x800, components 3","md5":"7b1897d6fb5d4484efa0bc7518158957","sha1":"02b9098ca0b73e4f586c0242b31365a59edca2ae","sha256":"8604272ebf83082e37cbe87a1f94e0c3551be4dd69c84687ee97c3ecd8809fe9","sha512":"b0946270089751f45260b88d7900d8afaf0f99a593d29c3581f72d4fa0e134993c6b8e58eaf072b03dfc513eea9185fee4a050cfe71cdf56c4d0c85caf561193","ssdeep":"12288:VZDYZdrDvL+F/rIhK/tzj6k2vfNw/yR+OaVVxXy8CP2eGBuG3:PDCdL+xN/tzN2XNv+5hhNbX3","tlshash":"18c42385d7d3e202933f27b752ea98135252a3d90ae277d906070a55fec0f3d0c6a77a","first_seen":"2023-11-02T06:42:48Z","last_seen":"2026-03-19T01:53:16.528501Z","times_seen":8,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":106,"dns":77,"connect":7,"send":0,"wait":47,"receive":60,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s-cf-tw.shopeesz.com/file/sg-11134201-22100-hd8ky1iqnviv6a","fqdn":"s-cf-tw.shopeesz.com","domain":"shopeesz.com","tld":"com"},"ip":{"addr":"163.171.134.109","port":443,"asn":54994,"as":"ML-1432-54994","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:48.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.shopeesz.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Feb 2026 10:30:04 GMT","end":"Thu, 28 May 2026 10:30:03 GMT"},"fingerprint":{"sha1":"8C:63:C7:43:45:D7:15:56:78:75:6B:D1:3E:8D:8B:7E:60:33:99:54","sha256":"CB:59:11:68:AF:05:27:F8:4C:29:68:4B:C5:BB:28:C3:5B:1D:26:34:09:05:D5:F8:3C:97:EA:67:B9:D4:00:C0"}}},"request":{"raw":"GET /file/sg-11134201-22100-hd8ky1iqnviv6a HTTP/1.1\r\nHost: s-cf-tw.shopeesz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 19 Mar 2026 01:52:49 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 229525\r\nConnection: keep-alive\r\nServer: SGW\r\nContent-Security-Policy: script-src 'self'; object-src 'none'; report-uri https://secreporter.susercontent.com/csp\r\nETag: \"c8292516b3afb3b251c8e3f3e54fd815\"\r\nX-Mms-Request-Id: 2d244266756349e2b853498a1ca526a5-699b0546\r\nCache-Control: max-age=36000000\r\nExpires: Sun, 09 May 2027 17:52:49 GMT\r\nX-CDN: akamai\r\nTiming-Allow-Origin: *\r\nAccess-Control-Allow-Origin: *\r\nx-via: 1.1 PSdgflkfFRA1ox201:12 (Cdn Cache Server V2.0), 1.1 PSrdsdgemSTO1sw92:5 (Cdn Cache Server V2.0)\r\nx-ws-request-id: 69bb56f0_PSrdsdgemSTO1sw92_13842-57031\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":229525,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"c8292516b3afb3b251c8e3f3e54fd815","sha1":"ffb3e26648cce84bb2629ce917e77a535c616a97","sha256":"a507f74fb2b8c48c81f64062efa985e525f432d276a7237aebc38339f541f50d","sha512":"75dff2bbea4aef821099db49065e238e61c1f173759dddbcd261081cdc59a490512cbd35a68c087ff949f4a22c12f0a9c4473ff895809a6048d04951fa4d9138","ssdeep":"6144:8UUKSspS0pha7SebhyNyIDC3jdwTaBmIp9Td1ExAufOSw:GKSspS0bGSUhCygKCaBmIp9Z1ExAuk","tlshash":"38240164850641a50e6ed378f89b380d17a3bfbafec9db1d46780f44b6e22162cc6d5c","first_seen":"2026-03-19T01:53:16.529986Z","last_seen":"2026-03-19T01:53:16.529986Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1558,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":829,"receive":729,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/LJ2GCmMJlMSvP8gxCmKd3fn51awD7bMZNOmnW6E2.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/LJ2GCmMJlMSvP8gxCmKd3fn51awD7bMZNOmnW6E2.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Mar 2026 01:52:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b610e2-21e41\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138817,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1081x1081, components 3","md5":"5ab7872b45f8fc67f8f8bb22ac5894c2","sha1":"0d1614d2bf6f76a9190ba69da4fd0937e235505f","sha256":"dc68e3901d1963d3f22149ae4d5987da22963bfb9cea8203bbed5c342cbc81b8","sha512":"60c3dd9705a27dd979805449ad408a2c84fc0bdfbce81e929c2f1b4ec5d3bf899a9f8fd718514e7779e0b839d7c440be67824adfa24c5d1978240cbf10322a49","ssdeep":"3072:2GfvPc2EjfhLbgHqDmQmtnn8jCBhFDP5bmRIMvNf7/AR:2GHrElLbMf15hFDP5bmRICNfjAR","tlshash":"71d38d439c498ad7941cd3e8bf471dac6f465b0ce8827aff05224ecb7e942620c9d56e","first_seen":"2026-03-19T01:53:16.503566Z","last_seen":"2026-03-19T01:53:16.503566Z","times_seen":1,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/AmrpWEDDbar3ylIjWdVvyIxHrAhcYfq9EGGY9tjh.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/AmrpWEDDbar3ylIjWdVvyIxHrAhcYfq9EGGY9tjh.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 04:56:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63103b92-552\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1362,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"43d7cf53fa96deb31c0827f0b04bee49","sha1":"0b635faa3172ccdbe047ebf9b7b92627c82b667f","sha256":"a6d142db9cab39711d9b043d66a83334cfb56a859d9132b0c7ff71a378a8b392","sha512":"3bbb880835d2ae57b6d2ff4310942710e2397129a42703984b4cffdd0bb2a5b0041dc71cd03a7c5e2b09c4b50e9c19883111eb623305723a598ded515ddfb68f","ssdeep":"","tlshash":"a321fb16bb0747e0f92642f60d443d80f3ee1b42b4e066072bf451f182536e44064d9d","first_seen":"2023-04-18T11:40:39Z","last_seen":"2026-04-01T20:46:11.693075Z","times_seen":1328,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/ECYDW6z7Zc2wnd4rKESEJWMWriKGXit0C2faJKxZ.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.868Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/ECYDW6z7Zc2wnd4rKESEJWMWriKGXit0C2faJKxZ.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sun, 15 Mar 2026 02:10:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b61522-1646d\"\r\nexpires: Sat, 18 Apr 2026 01:52:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":91245,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1024x538, components 3","md5":"1b0f59e269df65333b61ee429bf1a08e","sha1":"8b94fe96a8d24f827d37124d8876e658ee4c9123","sha256":"39a2bce47bd68d77f18bcefa8a722b6674bae6b6525e03246c19f5710717311d","sha512":"138f90588fc46dc3ab797fbbc9195b247f442d297dadd62049854a26f884ad45439623f827d93d46b9844a133e6b943828af10cb7bde62b7788dd82bb3ef48be","ssdeep":"1536:ylD84x64dgVzuPDC6KCMPN4O4Pv1IGsvn1VO1MtJLYqX5sHX2uVwZmOOu+64BkTR:8D164q5eN9MPalPKGsvn1YmtJLdX562L","tlshash":"769302071d4b49a2f49dd7c17b532f588f08af49fc4b6dbac1513cd6b5a8b031d862a8","first_seen":"2026-03-19T01:53:16.537825Z","last_seen":"2026-03-19T01:53:16.537825Z","times_seen":1,"resource_available":false,"data":null}},"time_used":535,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":535,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/fonts/la-regular-400.woff2","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:44.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/fonts/la-regular-400.woff2 HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/public/assets/css/vendors.css\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 12900\r\nlast-modified: Tue, 19 Jul 2022 12:58:10 GMT\r\netag: \"62d6aa62-3264\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12900,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 12900, version 1.0","md5":"88d9d9416c58bde56378dc4439e3a144","sha1":"bebed8d7033a4df35bebba69f1fc261a78a4ee22","sha256":"51ca2c00a3e30945e52227147fed9e296dde03af3c4d7589e8e95ca5740037db","sha512":"906884d6b687dd0b583872578a107fc7264e4198b3218545c01dd2185a397015b7226e0c96ae3dea6294abf7599052d3d271b6bb8461e972c5e49149f28b95f6","ssdeep":"384:cQ/ZCDaw2Q49jW8QIkW5SepdRZS3KUWSQoppk6CMRYtPP:l/BwzojW8lB5SenCKUtDC3tPP","tlshash":"fe42e1629963cb089c9d5b38b0ee5d401792703dfd9d5bec022bfe52cd4e09e4b1a076","first_seen":"2023-04-05T18:32:05Z","last_seen":"2026-04-05T08:45:03.520624Z","times_seen":4361,"resource_available":false,"data":null}},"time_used":605,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":604,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/n3HgCaj2U1rbs12p3TVUKNbCVD3Jo4r4hYOcEzH2.jpg","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/n3HgCaj2U1rbs12p3TVUKNbCVD3Jo4r4hYOcEzH2.jpg HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 01 Sep 2022 05:31:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631043c8-5b8\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1464,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"04439ebf1e9b150965aed277b9b532b5","sha1":"67a22cd08f57f95e0873503ff65b4e8ad01a5be2","sha256":"a067809d0b0cc0d4938f0f7680dbc5a6860f681916314df474cf77fde063aa37","sha512":"cfdedc4a6408ebe76133f64328d45cd6773252c731d671a52e30a18d21ce49f8f1db527e19808bdfbebe786f3c2a2c952dcc6376e1292e86680c933a44316d19","ssdeep":"","tlshash":"4d31766f970306c17d13ace6c6341e66d7ec9a41bd52270529e197f2ca315dc445ce1d","first_seen":"2023-04-18T11:40:39Z","last_seen":"2026-04-01T20:46:11.577238Z","times_seen":1061,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/assets/js/aiz-core.js","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/assets/js/aiz-core.js HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:44 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sat, 18 Feb 2023 14:23:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63f0df46-1484c\"\r\nexpires: Thu, 19 Mar 2026 13:52:44 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":84044,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"113fa96ba7528cb41d38ac2349385176","sha1":"0bf3332a72afee7640b17c951a0b103eb0a82470","sha256":"c2fab04477012ff398ab9835475ee9de1b78b8a9a77f79e34ed6da0a897bc496","sha512":"7ba28f7999f0d9bb84ee32952ed67c8bb4414bd0fcbe17a3ffcefb8f705594194be8d449a016b71964e7746e733ad9ada404ba781af74fb84b3f82136ac83d27","ssdeep":"768:xMuXM3DB8jAg9AC06L3D0aAeYVvn7X6kMr1AnFL:xMpzW3D03L","tlshash":"2583730db0496455587773badfaeb500ea61912b8206c6123d7d52c85fb2c2ca1b3ffd","first_seen":"2023-07-06T06:51:18Z","last_seen":"2026-03-19T01:53:16.541581Z","times_seen":138,"resource_available":true,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/home/section/featured","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"POST /home/section/featured HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 47\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":47,"data":"_token=1zIWPiKxayXxDgw9FoW7KDJKkHBFkqtBEM342gqZ"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\ndate: Thu, 19 Mar 2026 01:52:46 GMT\r\nset-cookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS; expires=Thu, 19-Mar-2026 03:52:47 GMT; Max-Age=7200; path=/; httponly\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23212,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (303), with CRLF line terminators","md5":"1be81dee6103db5ae350b132a78f736c","sha1":"034146dbc0e62ee1a4ba5d72d6800e0c83122ea5","sha256":"c14cf0acf5b2da85baf13018b89c9ec7b1142079ab5f7d2f2305f6379339a8d6","sha512":"2a0aaa094756658827a5833cba2c88db6c89d8df8c275f3cb8c07f58259e022c8aeb83e8bfbd60556ca1e8611c21e21f3f1641244f10aa49b8b4f2f82c508458","ssdeep":"384:e8QdN003dJyZd66fdYpf0dWpndu2cd5ldf:e8QdN003dJyZd6UdGsdYndu2cd5ldf","tlshash":"78a20e6638e111770273c1d68231bb9df951a607e743a8c4b2ec13976ff2fa29907d26","first_seen":"2026-03-19T01:53:16.542318Z","last_seen":"2026-03-19T01:53:16.542318Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1736,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1736,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbyshop.org/public/uploads/all/GDsEIyu2GPUOGpd7FBVMx1BuLOdZ0gbCjYArcHnn.png","fqdn":"bbyshop.org","domain":"bbyshop.org","tld":"org"},"ip":{"addr":"104.194.154.135","port":443,"asn":14956,"as":"ROUTERHOSTING","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:45.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbyshop.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 15:57:04 GMT","end":"Fri, 12 Jun 2026 15:57:03 GMT"},"fingerprint":{"sha1":"7C:86:A9:DE:87:B5:D2:E0:82:2A:E9:11:FC:C3:5D:6E:B1:D9:CD:BC","sha256":"AA:13:14:1D:32:B5:E3:19:D8:09:FC:C5:3B:E8:D4:D4:32:5B:F9:D6:79:40:9B:3E:26:6C:70:31:5F:D2:EF:7F"}}},"request":{"raw":"GET /public/uploads/all/GDsEIyu2GPUOGpd7FBVMx1BuLOdZ0gbCjYArcHnn.png HTTP/1.1\r\nHost: bbyshop.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nCookie: bb_buy_trading_limited_partnership_session=Rzob9wmo4YTGz6IF8pc8rV9CXxQcWKZhA0LkXGfS\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 19 Mar 2026 01:52:45 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 01 Sep 2022 05:44:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"631046ca-290a\"\r\nexpires: Sat, 18 Apr 2026 01:52:45 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10506,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"3469ea139f99d6f2b701826a8849d754","sha1":"5e3e8cceb52a7e060377e49786d24f2991caf742","sha256":"cd4c74c0ced51bbfb15913b2d5715131a1ac32314dc335ecaba0bb508c8c39b7","sha512":"f45199663636220f5f4b50884a5d04c30ce0d955c1115487e5ce40e0d58ec5d80b2f19124c85501ef2ae8df0a27659edb95ed0dae200d0380369bdeffbcc75e2","ssdeep":"192:O5bW32+LiUCiKSfqDmPKUWeRF1grFBNe3VUw/9jV1DQQCCw7U:UWXLRhTWeRoXN2VUQjV1DcHU","tlshash":"cf22ae32216a0d9c25ef86510774d967ae87a6f0a2fa4e082fd50382e7e53678f7d106","first_seen":"2023-05-05T03:08:08Z","last_seen":"2026-03-19T01:53:16.543914Z","times_seen":303,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-19","alert":"Phishing Block","trigger":"bbyshop.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:43.857Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:01 GMT","end":"Mon, 27 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"AD:23:3E:9B:CF:2B:A1:EC:31:14:63:D1:58:73:BB:E7:C5:32:16:8C","sha256":"B1:5F:45:BF:00:8C:68:35:D3:42:B2:67:66:47:9D:BB:42:41:07:56:3A:C4:1C:D6:10:7B:B7:53:C2:71:81:33"}}},"request":{"raw":"GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbyshop.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 19 Mar 2026 01:52:43 GMT\r\ndate: Thu, 19 Mar 2026 01:52:43 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60285,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"5e5b4b2e4d78154ea73b0609805cc2d5","sha1":"ceeed0d32187afdc105bd721bfbd69673a1d371e","sha256":"831b4f88e3e23e5cee5dae66d5ad1b348bd4a5dd9ecfa1d88c40938751b6f909","sha512":"a8c2cfd51edb65116da470fe1a8486154f8f9f1e09d42886633d3a92b24d4d815bb1f6111aaebc174d46dc63aca916ac8b3726925cdeb1398166d90fbfc1fc41","ssdeep":"384:+oOcL9tMTv9qY49OnL6dOhqqt5Iv0qY49HnQdXO/UQtXWvyqY49tnyTUOYnht4v2:wdBIM84eKcZd4oIp+6hFzFCuVh","tlshash":"d043fb9104171440aa435dd233de7e34ee0fa6616044c0baabfd9bdbeecad6963b435c","first_seen":"2025-09-17T04:42:01.875528Z","last_seen":"2026-04-05T08:09:20.479516Z","times_seen":11339,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":78,"dns":1,"connect":20,"send":0,"wait":37,"receive":0,"ssl":68},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://bbyshop.org/","date":"2026-03-19T01:52:44.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 02 Feb 2026 08:38:00 GMT","end":"Mon, 27 Apr 2026 08:37:59 GMT"},"fingerprint":{"sha1":"43:A0:56:D7:CE:45:C9:96:6F:34:12:13:53:CC:34:DD:63:FB:5D:20","sha256":"A4:AF:37:76:AF:D3:DB:1B:79:93:8F:E9:D4:21:4B:BA:43:54:3D:F9:56:DC:18:E9:5C:CA:1A:7C:B2:C7:DF:9B"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://bbyshop.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 18 Mar 2026 18:54:16 GMT\r\nexpires: Thu, 18 Mar 2027 18:54:16 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:30:41 GMT\r\ncontent-type: font/woff2\r\nage: 25108\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48320, version 1.0","md5":"dcf31ebe107435bd68e0164d59e19b87","sha1":"b68160c9333af833fe483928b3ef7128c07a56a0","sha256":"d8e4fe0452aa2076429a9bb5d8757d00a994dd95986cf950e9a1a371b9a072a0","sha512":"130cd52c3cccc36a7029bf92b2ddb363b8b36d206454aacc246739919552fccec5cacbad615ba4ac3817da3e83239371fe51324bdadd08357e3495087f62cb08","ssdeep":"768:Jzqdwl5YV7FVmpudK5a8dF8D8Z7J78VGnNFZEKh02dmSTPe9UiallHcOEi2c0NC1:9q+SYuMaVwZ7oGRNh02dd6UialBcOEpE","tlshash":"1623f218f29471f7edecd4d500a18c72baa528d442f116ed07b8d53ca36ca817a729fb","first_seen":"2025-09-17T00:07:53.723302Z","last_seen":"2026-04-05T09:48:38.647865Z","times_seen":199892,"resource_available":false,"data":null}},"time_used":150,"timings":{"blocked":65,"dns":1,"connect":10,"send":0,"wait":8,"receive":11,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}