{"report_id":"57960297-27f1-4887-9c16-dfc4870774d0","version":0,"status":"done","tags":[],"date":"2026-06-25T12:14:20Z","url":{"schema":"http","addr":"shopeevip.vip","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":0,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"http","addr":"shopeevip.vip/m/index","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"title":"Shopee","dom":{"size":44471,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (13065)","md5":"cae846e1b86778d5ca1c789c5aa61d91","sha1":"bbdf022a3b2d041b90d7080bd8a06055ae28c63f","sha256":"c933c701754386570c2b7eb55b502c17e01f707bbd38a64025c6791d597de1dd","sha512":"626ec21dc4cecbee1205364ee746bde6ef6c57d74480c65020767915b66df0fe65e7f599a8d454edf435f5d8517121c03812efa6d4ad4d789e2d6c7edeccd44f","ssdeep":"768:DEiOxLqgvQvFvdK/zi/sF/7D/xv/ukdhkUwA4UmikW/3VOjVokPhctl:Sx/mikWr","tlshash":"f5136738580f10ab1a23dce1e161bf5e65a3eb3ac169c86076acc35c3fc7ef06519965","dom_hash":"domhashcef5e79b98bd8d60776fcf2bc11d1bb3","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"shopeevip.vip","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":0,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-30T12:14:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":8}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"globalterdaftar.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"shopeevip.vip","ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-01-23","domain_rank":0,"first_seen":"2021-10-11T08:02:36Z","last_seen":"2026-06-25T12:13:12.631762Z","alert_count":126,"request_count":43,"received_data":2053569,"sent_data":17646,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"SockJS:1.3.0","description":"SockJS is a browser JavaScript library that provides a WebSocket-like object.","website":"https://sockjs.org","common_platform_enumeration":"","icon":"SockJS.png","categories":["Web frameworks","JavaScript libraries"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"jQuery:1.11.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"down-sg.img.susercontent.com","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2022-07-18","domain_rank":506728,"first_seen":"2023-02-16T02:40:30Z","last_seen":"2026-06-23T13:06:59.188443Z","alert_count":0,"request_count":19,"received_data":3595286,"sent_data":10944,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-06-21T22:41:40.060069Z","alert_count":0,"request_count":13,"received_data":1717460,"sent_data":6382,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"globalterdaftar.com","ip":{"addr":"148.66.3.116","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-01-23","domain_rank":0,"first_seen":"2026-01-30T17:26:16.252989Z","last_seen":"2026-06-23T13:06:59.202826Z","alert_count":10,"request_count":2,"received_data":885846,"sent_data":1171,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":1,"received_data":1249,"sent_data":503,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vant/2.13.2/vant.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"644f13180f8d398c886f534b07044cdd","sha1":"2d3349d384b50a385ed0b0d84a256be60a1e2201","sha256":"f5d6379be3cba230a20bfd8bf264805de16223e0aa0277c0fb68c3c0751acff6","sha512":"700886a3c2a288eeadeec4b09884566eecb30f2530259b18a45147f07a02103fb94e144ed643f690de26e8b76119aa639f210c0d687cc957c82318be053ec72a","ssdeep":"3072:XuhzovpPNdJ+fzFgMxnnocXJjyv7mF4Betr1G661LlS+b6aNSnIum/yXN:+hzopC0TmRQBPSWyd","tlshash":"0b54d78ab1c5b425079770b5403f110ab237298cb81a84dcba79e4e66d7ca5ca13ff7d","size":279653,"data":"","first_seen":"2024-04-24T18:56:37Z","last_seen":"2026-06-25T13:53:33.790257Z","times_seen":969,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-06ae24a4.686330fb.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"676e3a2df47d8e40c29c2d1a67127eec","sha1":"e54e8144ef939162c151a843933a98ff020a2641","sha256":"6499fae751b066d09b0d93a067502c15d6fecd5b460c7f5a981dc1fb3b286fb4","sha512":"4314d28a687dba60202a2a5974ea1b39b02a45a2fea359503396553b4bf9c1eebcc4168357fe2e43875ddd2e61c2af72b926ee6a61bc978fae9474a77de421bb","ssdeep":"","tlshash":"c0b02bbe2804790808bfa0e4300b33d8048301003f711ce507b020902b74e8e4303a4b","size":129,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-25T13:53:33.766726Z","times_seen":857,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-145c787c.a83f1fe5.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a9372cf30333980a2496044ed6ae0d7","sha1":"9ce76b284dce3b13d936947df793f86e03bce02c","sha256":"909f57c3674bb6ce4b330f2efb386d57a9ce576b051d84b6b9cc4c7c60c8ac2e","sha512":"a66fc5bc216b6369b06863fdbb4ebbfccfb946f93ad4cd88ffb599b2f49f73a39c0e770d719e8936263d0c6a28b64368e5a68fdee58b5e941eb0634dbc145f7d","ssdeep":"96:HvMx9/Khw/Kx/Kf3NKtffE8AX0eKGyuPb5ZGZ4VbUfJBGxqDMk7SSqh0mRuMZBCD:PDGkezISVMJBGQrmRFBfM2R6Io","tlshash":"21025305b893f1be8d7be051406f6a61e1256fe8c424a041fb34d8c06ab4d79676de3f","size":8627,"data":"","first_seen":"2026-01-26T00:25:19.853186Z","last_seen":"2026-06-25T13:53:33.800826Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"17e942ea0854bd9dce2070bae6826937","sha1":"434cdec1669f2c6c7406297a72120936bc56ed52","sha256":"72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26","sha512":"3f0439fa3817c71a6b34673cd32707137b29823e93b8389e1deff24e46c427e5396a897b753ba98bfe156f01c7ce54155bbed56f418b388b22622807802e6f72","ssdeep":"1536:1UXY7qLtpHt2Pqe1mZ8I6H82RaLiMBlo2VV2B/S/g:MYeJpN2yefjMBlPV00/g","tlshash":"529308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","size":93675,"data":"","first_seen":"2023-03-07T01:18:07Z","last_seen":"2026-06-29T05:17:16.844325Z","times_seen":4203,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vue-i18n/8.12.0/vue-i18n.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c019be63e713ce6f2aa221c0df8fa0cb","sha1":"e5471888945144f233714d470959059c010eb667","sha256":"87e6aba4bd25be4196ad7f269a62de823242abe105df538f218d4e6e268f74ce","sha512":"6ca3ae5fb17dc20a2c27d4008454feb7cefc626bf104252354c1abd0977f73a315001d94293a7d4379ecfda6ba21d3f49a992f243a6f9249c935195527d407be","ssdeep":"384:BPdUYakDlUGQrDQxMQ4rJaT30WCxQI1cg:DUYzhUGmUMQUX3","tlshash":"cea2b7c6f56270270a9260e5183f1107a33f241d648d855df2d6e8ee2ebdd8e91a3f39","size":22805,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.19855Z","times_seen":1173,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs//Swiper/4.5.1/js/swiper.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ac19265b38d14235141d184bca54d9a","sha1":"c725eb5a33d093e331e25c3a5ef1272b0f1f648c","sha256":"e2c1132a1877692ca2e8d46203eaae9cf6936b0a9230341c6bfc4b5aedbb1e0e","sha512":"6476ae51cfef0724ba254cff1e5d68f2cda477840954b01b933f1c9608ed6ca5094fe006d5cef7e5a32d54b25fb4a418a3e2c3eb642bcafa0d6bebaacbeac21d","ssdeep":"1536:O/pPCitsufJthaK85kqzOAkRlojU6tU8r5MhkhGllpcXvH7WcWUKcOqylFE8BtOa:+JthJkOAkaRaaGl4fH7WcWUKcOqjtYD","tlshash":"2bc31849b35071e551e72256539ed601a3b66845b90ac0a831b2d8d7acbce8c03bfffd","size":128745,"data":"","first_seen":"2023-03-07T12:58:52Z","last_seen":"2026-06-27T10:04:55.095035Z","times_seen":2420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/js-cookie/2.2.1/js.cookie.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"fa93e8894edb6245ab03883633b12b6e","sha1":"e3ba4c7d1a8876090756fd31715b4f6af6fd649e","sha256":"3fc8d8f8c09ee97d9c8cd4a6178ad0bd921a9cbe55c14513e0c06738c9dc8d15","sha512":"263612833aa8f4ad08798184b25311604f1a3bdb6aecacb71103661159007ba0a9d7803094930b3276f47e980492bdd8c49f208508ab88ebd9c0875166278621","ssdeep":"","tlshash":"0c8124b0bb8d35ab0e0e21145b1f60cd927ce43a085949f6ec9df1321468c2e977ad6e","size":3883,"data":"","first_seen":"2023-03-07T12:01:36Z","last_seen":"2026-06-27T07:56:40.424538Z","times_seen":3406,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/core-js/2.6.9/core.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"622c4c9d5dc4b1ee29a2eb908186ec88","sha1":"491753a3f979f7d180af11e1929ffff85e30f921","sha256":"794d1c7ab27be77d366e0497e641488e50f5ae6581b4db51cc08de1e142eb47a","sha512":"2b2485006e3a36dbae0d0d8488ab63ae6085c34d5a6f72c3558c52b492294c157f67ce47c1c3b89498db9ff72f748485fedc04a881f1877f903cfa0df1c8be8e","ssdeep":"1536:PLFpwkiSucuVH8MBfaQQ979S17LMgRCSRjMbEjeb6Gt6UQ:PLbw1Sucu3Qw8gc3gk6Gt61","tlshash":"1f93618cbec6f06642636675413f900bb27a1a86745f89d0e12ed1e4bc7c98f413be6d","size":92050,"data":"","first_seen":"2023-04-06T20:58:39Z","last_seen":"2026-06-29T04:50:50.951776Z","times_seen":1518,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/axios/0.19.0-beta.1/axios.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"334149adf44476f28bfbf16c7b0382c2","sha1":"ad2ea246ebb53ed655ab50d44b33d4d6f942387d","sha256":"6d2c0a450a04b5d1492f77d7e512fe6af26e95c2feac596825f45e71b9ffa4d6","sha512":"0f9d66a68e400a2499cc1dbd79331892e9e62e278d8b4784e354b7a281c91fcc1401eedb0857ff6911d842ea853d39081b459fbdc0e30d927ee93b5ba1ecdbea","ssdeep":"384:hpI8XyWPbWeAExXqgxH7RqzGbcQdVzxbUm6HwT9eei:LbXdyGbcczx/6QT9e1","tlshash":"f25285ce7861b0a757e320f0805f4a0fb2b6552a754d84a0f660e9f66db542e8733f5c","size":13638,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.169808Z","times_seen":1198,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/sockjs-client/1.3.0/sockjs.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0a01fa31e644ca44836356a172ba7c9","sha1":"e81438a79e8a7f34423168c70696cff2a820dbf1","sha256":"840ea076b43dbf564a909bb082dc287740a96f3c4483fcc024f7176306daecc7","sha512":"a18f9c600996f8f31c046e80334cc794efff550c2286bc822ba7bbc197d99e4ce5f032133866b18cb9743a717b76e578cdb2a9fb5f6ebe42614d08ea1ea2e47c","ssdeep":"1536:XFWQV1ZGORGWiB67hAHLY/IyYT3uu+OLFckh:XFW8tG967hAHM/IyYT/Law","tlshash":"5853e8c5f46134a213e7a2b582bf11032376953a640c85b4b798dcf98d7d98c532bf7a","size":62797,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.194992Z","times_seen":1176,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"eval","is_inline":false,"md5":"2675fab97e66abb2dc482356efb999b7","sha1":"3311edff263714f305e1e345e152bbee777cc844","sha256":"bc87ac65daaf5582b0084af46d5f173f84e35b6b39733943e908fd9023cf3bb6","sha512":"6d1ed57e31ecba4fd8d5e5bad006be0928245259a0d0a57a6c99029dc00cb4d2e74f0ee31a7c4e198b51bef9c544d9a55c559aad033e38acf75be73bb53873bc","ssdeep":"","tlshash":"121180cb99618a6896e214ee36fe3750b573e052f9446130751fcd103d9c70f036aaeb","size":889,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-25T13:53:33.8145Z","times_seen":1141,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-0f483388.c0a14deb.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"aed5022df795e52c8db7921070e2e88b","sha1":"ba36ce787f3194ce13b6f806d0964ab0067d8a33","sha256":"a1fcd4a1a104596b5450a46c8900825669d1b9cf67e09e29c8ffcac1f87e5cd7","sha512":"59df6e2e989414a53566f27ca244f682683cb72e86447c8aa1267dd73066e8b4f8464246c933dda3257066b193bde82a6704262340505d408503494ec8a2569f","ssdeep":"","tlshash":"d5f0accd35e2b512273b98e2146f338d88e7114035bf6d80d2b0d4d06e7698f116398a","size":588,"data":"","first_seen":"2026-01-26T00:25:19.81364Z","last_seen":"2026-06-25T13:53:33.796003Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/lib/flexible.js?2222","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"1572c9446821f8b1dc1136b64b44e739","sha1":"6a786ef63db48581f50e85601ef4a3effe8bf095","sha256":"264ef2e4767a942ee634794619d94edbd7da642cb79277c16b974cac9795c246","sha512":"4283dbb16b94c7db39673fb92808835e7f2ccb34f64502d0524cd571fb28e91c82abddcbf1224d4b83c1fb30908c96a4d16b604b22ef0f491c2bdf2d00213598","ssdeep":"","tlshash":"5b81322806e322361e2330348fbf210539728067055ace447d5ee79e6fe4a654ef6bf5","size":4065,"data":"","first_seen":"2023-03-07T12:58:51Z","last_seen":"2026-06-25T13:53:33.799142Z","times_seen":875,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/element-ui/2.15.4/index.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c51f03d35129d9d1a9da65b24cef7fa7","sha1":"1e1d550d978378980dc3aeb60012da86c2355c4b","sha256":"339747e3a960dd82946bb6b06fcf1dda76b9ee786a337726b535a1d86d6b9c0c","sha512":"8c83157d1a2d4bacafc89ed01d444551151772f1119272c303ace71aa12b6f1fba29da8c9597e2a9baf670c93768286a405a70186b92ba5aae84554b9123c1eb","ssdeep":"6144:K4lrdS1Vqp5xb+XzxEXdUfM2Z0a54VXTnDBHiSuLx8isMZg07LQi:7vS1Mp5xb+XzxEXufM2DEDVHDub7LQi","tlshash":"04c41b8d72c1b5314ba36070503f250bb33b299c680980dcb679d8ea6dbd949526ffbd","size":585656,"data":"","first_seen":"2024-03-05T16:56:16Z","last_seen":"2026-06-25T13:53:33.761441Z","times_seen":837,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ea671664a4781158f00958fc37fff43","sha1":"85da357f6e79636c538688e45ec51d157c6294c6","sha256":"e7f9727d063ee11e78aa2edd32d0a142fb798fb7154bdae1fcef99a637c1c1ef","sha512":"1314bd9f0c883f518cf680dddad1098d2792ae8d8b55b9eb0c797daf764002c67b2112665fab030db9ddae5ea891513ed240c143bcce53a66f0e8b785294833e","ssdeep":"","tlshash":"ac21a42c2d5babf8930338b1a032c65068f8e51ff114af0677ae0fd04b757ee8918824","size":1301,"data":"","first_seen":"2023-03-08T23:52:18Z","last_seen":"2026-06-25T13:53:33.81392Z","times_seen":860,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-vendors.42f07336.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"bdaaed4e9e1d5e0322ea968e6f47ac0c","sha1":"85c58af8151ed5badcdca952295e8c6e7b3e1e15","sha256":"c9634af5f9b16a9f44d78311163effd76467a2441f744859c96fc066a3b58aa8","sha512":"e23c153981e588a4d6b99c8341da319ce7e9bb16036ff952a8a469910640505b6e7ee7bb9e6d06dc59082f537053bb46cc8d800b82de8a730abee7d743bf03d5","ssdeep":"1536:qJuH03+0goh0dbU2Q+39Ya7C5x+eccVdofh3q4A6R:qJuU3bCbU2Q+3MXccgpE6R","tlshash":"0553e788f2d5b070439771a8402f610bf37ae959b44d8498f625e8e1bdb8dce546bf38","size":65536,"data":"","first_seen":"2024-04-24T18:56:38Z","last_seen":"2026-06-25T13:53:33.788939Z","times_seen":821,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/app.8fa092f2.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"a43b2bd14c127627413e3d25acf51b5a","sha1":"e50a2c389d962d6a72113736caab0f9f05ed5e53","sha256":"e8c3721d54613284735ed0e3c723b42a3b085cc674cd30e9367e46bfe3d277a0","sha512":"4cba882a170bce6599838ab23a4491f4c41bf83ee9910b5f9c850ecf8cbd448872b185eeca70df77d464e709d0c77d26f933fd5aad6a0ba76dfbbcc9d1864dd4","ssdeep":"12288:+AJufza6qFlDu2XKkd6lX8I82S11yo52ZQiKkQn1+paHilxaNpgD9ogO/xXIDxD7:5u2uaWEuAkzPajuzn","tlshash":"4c558d9833de76f60042e456500f3e3cb1650fbaf74692812c71e69c26e9ab14637e7b","size":1314160,"data":"","first_seen":"2026-01-26T00:25:19.966661Z","last_seen":"2026-06-25T13:53:33.813347Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/lib/jquery-1.11.2.min.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"6355f3cc28006e33bad2e765cde30e0d","sha1":"909cd6318d5047f3c8e83528253b256981394414","sha256":"39eed2d24faf4985b922b64d078f106edba6b3b84d5385e483a5c7bd69201da7","sha512":"b22d3868a7b311f82bb149f8afccee03c68dcd5e7152a061b8e18d97aef794b106dd1cc081d49f4d638193924ffa5885239cf67152fc339ff0cf3cd1d194d175","ssdeep":"1536:0Hg1kz+hAmcGmVFnlkFybx+amELolY+30k1dml+BQZX6YPnrCtn8JkDnlwMxVW2:0HDdc2F3c2G7mIW2","tlshash":"13930add76c2b06387a720b9506f550bf276599e280c4440f268e8fabc7ca49a137f7d","size":96382,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-29T03:09:15.732066Z","times_seen":1864,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vuex/3.1.1/vuex.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c66594705de51675f08e3b83b9b9b38c","sha1":"40fa40f722043957a56324174ec6f80389391971","sha256":"e973901e74ff65888bbe2e58b95cfb957d5db316bb185a106f543d99176d1d65","sha512":"3cb0d6b77ac49d3c6c5c5740efa2fd9e3e0c79158c88a9d4f0b709f4713a38a7b72109a2b4c636377c783effc3c6457c718d8cdc2e9c7577db9691562e95375f","ssdeep":"192:90DuIfY7JtjC5ydUypH82+H8urFLR7BD4GOUo1MQl+B2GHPpB3QE7WA+MWnBP:9guIw7JtWqmhfldD4Eo64UgH3nx","tlshash":"4f1261ccf661b0764a377460623f120fe276a46d200a4468f598e4ef6cbe14d94abf3c","size":9875,"data":"","first_seen":"2023-03-07T12:05:56Z","last_seen":"2026-06-29T06:03:54.169993Z","times_seen":1443,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vue-router/3.0.7/vue-router.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"32e2eb91e6ed0512057b2ad1e6d1b242","sha1":"27809df1b99a4b81b6b82ba2985cdd4b1c8bebb6","sha256":"e8707a396dd2f8d74eaaeb2f784074a24d7a71cbe15dcc70297f726b31c160d5","sha512":"0ab7b445b586dd27a0aeb72396350982783129c9ba028ba1db847c9d2acc0de9c90c3c9636e76a21553fedf81031220f3676ea64bf7336644c04da33d744563d","ssdeep":"384:UUcnX3xpR5tumD+EaKGZRpqB1UdEPQFWmexTMCJ:7E3jXtuW+qGZK1UCP5mqMk","tlshash":"01b2c7ddb581b03547e326a0412f250bf27b358db44e8498f269e4d52cba85ec42bf79","size":24822,"data":"","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.181481Z","times_seen":1192,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"warn","text":"将根据已有的meta标签来设置缩放比例","filename":"http://shopeevip.vip/lib/flexible.js?2222","line_number":0,"column_number":0},{"level":"log","text":"devicePixelRatio = 1","filename":"http://shopeevip.vip/lib/flexible.js?2222","line_number":0,"column_number":0},{"level":"log","text":"dpr=1","filename":"http://shopeevip.vip/lib/flexible.js?2222","line_number":0,"column_number":0},{"level":"log","text":"Locale.useid","filename":"http://shopeevip.vip/js/app.8fa092f2.js","line_number":0,"column_number":0},{"level":"error","text":"Cannot find module './theme_1.scss'","filename":"http://shopeevip.vip/js/app.8fa092f2.js","line_number":0,"column_number":0},{"level":"log","text":"websocket连接成功./api/websocket/server","filename":"http://shopeevip.vip/js/app.8fa092f2.js","line_number":0,"column_number":0},{"level":"log","text":"订阅/refreshNotice","filename":"http://shopeevip.vip/js/app.8fa092f2.js","line_number":0,"column_number":0},{"level":"log","text":"订阅/refreshUiUser","filename":"http://shopeevip.vip/js/app.8fa092f2.js","line_number":0,"column_number":0},{"level":"log","text":"订阅/refreshDict","filename":"http://shopeevip.vip/js/app.8fa092f2.js","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"http","addr":"shopeevip.vip/lib/flexible.js?2222","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.924Z","timestamp":1782389636924,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /lib/flexible.js?2222 HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-fe1\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4065,"size_decoded":1617,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"1572c9446821f8b1dc1136b64b44e739","sha1":"6a786ef63db48581f50e85601ef4a3effe8bf095","sha256":"264ef2e4767a942ee634794619d94edbd7da642cb79277c16b974cac9795c246","sha512":"4283dbb16b94c7db39673fb92808835e7f2ccb34f64502d0524cd571fb28e91c82abddcbf1224d4b83c1fb30908c96a4d16b604b22ef0f491c2bdf2d00213598","ssdeep":"","tlshash":"5b81322806e322361e2330348fbf210539728067055ace447d5ee79e6fe4a654ef6bf5","first_seen":"2023-03-07T12:58:51Z","last_seen":"2026-06-25T13:53:33.799142Z","times_seen":875,"resource_available":true,"data":null}},"time_used":351,"timings":{"blocked":-1,"dns":0,"connect":175,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/api/common/dict/allMap","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.764Z","timestamp":1782389638764,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"POST /api/common/dict/allMap HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US\r\nAccept-Encoding: gzip, deflate\r\nCache-Control: no-cache\r\nX-USER-TOKEN: undefined\r\nOrigin: http://shopeevip.vip\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15841,"size_decoded":6701,"mime_type":"application/json","magic":"JSON text data","md5":"ecf2e87d27bb0c179b3969e2e930ffe9","sha1":"3b101c9d1b593ffb347bdc94f321b354f5aca0b8","sha256":"b5b0110db527913eacf2e0917548ad15f5bcf4eba9858982a3b050ffe2a191b0","sha512":"da4c37388aedac809ae3bd4fe1875567513e49867bf62a0f22c9439ba47c152687d568c02586661b22c4e68ac758a0083a9d5fc76bce45bde2c366f2322969a3","ssdeep":"384:Kw65Wn/3xRobrMJBc5Q3OqMEjQZnhxqlQQJgI0ww6fiYV+DfmUuQYuA7:KSxYkQ+0wDtmm","tlshash":"8f6250ccf74375a8dd03ac5962a8b84d30bd7e731e8af6157945f60236b01419e2bf2a","first_seen":"2026-04-07T18:39:42.006062Z","last_seen":"2026-06-25T13:53:33.778677Z","times_seen":21,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/css/chunk-0f483388.42aff6bd.css","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.948Z","timestamp":1782389638948,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/chunk-0f483388.42aff6bd.css HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-5071\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20593,"size_decoded":4241,"mime_type":"text/css","magic":"ASCII text, with very long lines (20593), with no line terminators","md5":"526938c26816ba45c536d833a884125c","sha1":"34f1b25171a96de1ae2132aad77d5b89bc46ad98","sha256":"ac79b6c33d30c1a975c5c71e32dbee868428a2489fd024dbbf72b7b3c0a970db","sha512":"30090928353cdc011c35db81fc489f4b0a7545d2be1e15c6c522cc55c8fcb9fa406f1e0c711bed9a8f739309a21ca2de3d5804264c5a21d767df75a459d80669","ssdeep":"384:r5RBxSEUyTprVTG1Bo35sCe0MXeZmcDsHmMV:r59SEU6prVTG1Bo35sCe0MXeZmcDsHme","tlshash":"c79252b7f1d11619610b8ba89196b6f8533af445c2012ff6f01a77358fc76cb266234b","first_seen":"2026-01-26T00:25:19.928326Z","last_seen":"2026-06-25T13:53:33.780408Z","times_seen":50,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/S.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.248Z","timestamp":1782389639248,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/S.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 5720\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-1658\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5720,"size_decoded":5960,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"3fc1a8b0d8fd06ebef4881f9acc4c61a","sha1":"2fa7cbd9282efd4467e0e38ac31582eb8cfe6158","sha256":"2a4e05c1c1b3a0439f7d95e5c28829e568bc0190273a8231373c5044caebdbbb","sha512":"9054cfddf318cf849adf7ea8f3b9f64d466162c26606b5607853570f4c0e5b49543b1c1b8ee83256b8ee270f6889976ce82643018118742cd355ee7066530386","ssdeep":"96:0wGkCRUP8PEkNuPYYiKrWs5zFC8AgXbVPweGsaVzvvCPJizxirAA2ExWDjNr:TGkCRUWuPYYLC8AgLVPwFak9IAIxsp","tlshash":"8ec18e90da8b07c48bd93b5d4710e1089ede6be189167717480c1fe7c9d7423107ba8f","first_seen":"2026-01-26T00:25:19.80818Z","last_seen":"2026-06-25T13:53:33.79476Z","times_seen":36,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/my-11134207-7r98x-ln3tefi3fnkr86","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.662Z","timestamp":1782389639662,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /file/my-11134207-7r98x-ln3tefi3fnkr86 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/api/translation/list","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.581Z","timestamp":1782389638581,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /api/translation/list HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US\r\nAccept-Encoding: gzip, deflate\r\nCache-Control: no-cache\r\nX-USER-TOKEN: undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2624,"size_decoded":1050,"mime_type":"application/json","magic":"JSON text data","md5":"d2c50c9953ab6f94ba04360eeb992eaf","sha1":"a6cb8b33f7052e20ac64581279b4cd054538474f","sha256":"19fb12f3a6266cd75a36e242947bc1dc35f022a462bee780349ae9bfaee1a219","sha512":"371d466a58e432ad00adc39dcbae499b7b34866087d9b29c65041bebe403b58b84753385d03aa45ef37142fa4086f14e88bef2db9e47df1e3115886db0cf1eee","ssdeep":"","tlshash":"38519f34488ce8efae93d5c38a1f760724388621b7597e1c9a480f3a11eeb7543d4977","first_seen":"2025-11-24T14:05:07.625061Z","last_seen":"2026-06-25T13:53:33.75372Z","times_seen":86,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vant/2.13.2/index.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.955Z","timestamp":1782389636955,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/vant/2.13.2/index.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 40107\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Tue, 17 Oct 2023 04:33:30 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 124747\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nEWne4i9OSEQVuyzfeAiasQkdx%2B6wotAEZ9HCTQKX9sWBBLk2MCafoCAXkMSfr0ZOXihq8LmEYtY1BSAefHb2b94cAC0tKk1czxNv1aea533VPwhjKYCGHVH%2FwlsBH%2FbXNLpMt33\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39efbdb0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146877,"size_decoded":41126,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"fba0b10cfa931074254e7531f2cc9373","sha1":"eceff9fb867e11786cbbae234d0c697f0dd445d5","sha256":"7a6dee2202c1dfd3a499f873dee167942e255703859f86107d6bfc2272ea14f0","sha512":"556c2196cc479fd20fb3a1a6ffd6ce4836267b940a2b95bbcb8851d3f3a3e16c7286cbfd9d59ee8eb7ad5e3b58e3ba6d31d4ebe0cd0fd0cc2a30f1deb1ff6ce7","ssdeep":"1536:KC3MhK25tWrWoK3Unrx3WqyrtpqoSWEDZMAfP1rz12VLSV:KcrxmNH9yD3fNfMSV","tlshash":"36e3d52756c0236cb31bcd219bc496c5e224c123f5121bfaf1517a2dcfdbb9612a2b5b","first_seen":"2024-04-24T18:56:38Z","last_seen":"2026-06-25T13:53:33.808534Z","times_seen":972,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-0f483388.c0a14deb.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.950Z","timestamp":1782389638950,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/chunk-0f483388.c0a14deb.js HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-24c\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":588,"size_decoded":631,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (588), with no line terminators","md5":"aed5022df795e52c8db7921070e2e88b","sha1":"ba36ce787f3194ce13b6f806d0964ab0067d8a33","sha256":"a1fcd4a1a104596b5450a46c8900825669d1b9cf67e09e29c8ffcac1f87e5cd7","sha512":"59df6e2e989414a53566f27ca244f682683cb72e86447c8aa1267dd73066e8b4f8464246c933dda3257066b193bde82a6704262340505d408503494ec8a2569f","ssdeep":"","tlshash":"d5f0accd35e2b512273b98e2146f338d88e7114035bf6d80d2b0d4d06e7698f116398a","first_seen":"2026-01-26T00:25:19.81364Z","last_seen":"2026-06-25T13:53:33.796003Z","times_seen":50,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/tabbar/tz.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.269Z","timestamp":1782389639269,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tabbar/tz.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 856\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-358\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":856,"size_decoded":1094,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"78747abc914660dd91c8a68b202e846b","sha1":"255317d8900cabb11f2d1ddad8bf7483b2ec529d","sha256":"8d9360b62af4a40d9df795d75c46ec6fa2199de497b7a7ce18985e61e88fe1ca","sha512":"6a6de3ae122928fcb7c585cd30aeea542fae6c16fca1e105ea971bb1c69c9cce23ab087d885fe9854dbbbf813359dc4ea345fc7546d245afa64bddab1cadaa03","ssdeep":"","tlshash":"661192423a2b9f28bcb2a83504bb156f3147009f2c5eb18b19c76334893a88c7f083e1","first_seen":"2026-01-26T00:25:19.846596Z","last_seen":"2026-06-25T13:53:33.76864Z","times_seen":36,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":329,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-23020-dxidym63b8mvde","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.651Z","timestamp":1782389639651,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /file/sg-11134207-23020-dxidym63b8mvde HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134201-22110-0716izo5wijv6b","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.666Z","timestamp":1782389639666,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134201-22110-0716izo5wijv6b HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"ae7e0e9428dce17f539ee85efc9c73ea\"\r\nserver: nginx\r\ncontent-type: image/jpeg\r\nx-mms-request-id: 1ed6837f4d8843909bb9475a39fa0f93-68ac4da6\r\nhandle-by: down-src-global.img.susercontent.com\r\nx-spcdn-request-id: 6f3882e3f44d35a4c9ec0f320a272c52\r\nage: 1753614\r\ncontent-length: 57452\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 11384685782435326246\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":57452,"size_decoded":57927,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 300x300, components 3","md5":"ae7e0e9428dce17f539ee85efc9c73ea","sha1":"ef04e97eb503167d432c104a2d04d525e8269b9d","sha256":"67e2b694263d2810e314229ed1abbc052b7f0f764f3cbee7fc56dc55132744e4","sha512":"343bbda3743e3942d79a479f64530a8778ec0f3e0b519a253b879ba61a3386cdcb56f904f0b1537cb25146f827b8db940f0494a58133f5ed24b8218e4c6f1e2b","ssdeep":"768:7UOY4VReFQxt8cAIz3pLVeOnHS94hA4+9HdG309YAEEoKXEclBS+7T/qyPY2XV6F:7gQAEX/HSNHd2sYAHBX9jN3bspGnIHn","tlshash":"0243024b905a9033d64c9031bde92e9d0353abbc759b38a72e393e4de3ac2124d4dc9d","first_seen":"2026-06-25T12:14:32.564249Z","last_seen":"2026-06-25T12:14:32.564249Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1480,"timings":{"blocked":962,"dns":0,"connect":0,"send":0,"wait":274,"receive":244,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134201-22120-x2o8nmkxkzkv31","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.673Z","timestamp":1782389639673,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134201-22120-x2o8nmkxkzkv31 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"de6284f5d005fb3ddc3324da18a0b42a\"\r\nserver: SGW\r\ncontent-type: image/jpeg\r\nx-mms-request-id: 31dee8593fb84b4ab0727a8d0090bf89-68afe40c\r\nage: 2590509\r\ncontent-length: 389532\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 17439698221179922625\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":389532,"size_decoded":389903,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"de6284f5d005fb3ddc3324da18a0b42a","sha1":"383fc89c7c5fe542a8e0e2425c926101a5378cd7","sha256":"519d79ce9ceb72fdda6ba9dfe621d00a838fc6b47e51c2f8deebbd80dad73bba","sha512":"467101855b31c392f5dea9515284ad4dd6206b2bc08bcdc63bd51a9a6471307c41b7a3c5dce282bca18512f1419f769cf831976950fabb32ed67658d98d15b70","ssdeep":"6144:0HOU1fr98sdAbGuwHLa1dVzBK71EFtfPuPCI3QD9KwkQc4yLQjHziV0TBErXMZOo:0H71dwGBHLKvUEvfPqm/kQc4GQjFT4Xq","tlshash":"2c84235b88689703815acbfb6f6704623e69d72ce9c49da433752fc8b5e0f45cd3212a","first_seen":"2026-06-25T12:14:32.565505Z","last_seen":"2026-06-25T12:14:32.565505Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2883,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1176,"receive":750,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134201-7rbk2-lmitkik61tl161","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.683Z","timestamp":1782389639683,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134201-7rbk2-lmitkik61tl161 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"6fc8d9dce00e0982a4e6b7ead674ae62\"\r\nserver: nginx\r\ncontent-type: image/jpeg\r\nx-mms-request-id: 66ab5d6ba47e45babd05a1eb81ac640e-67b9211e\r\nhandle-by: img.susercontent.com\r\nx-spcdn-request-id: 854fb6e93a41d21fe487b38528f0fa67\r\nage: 1658594\r\ncontent-length: 291120\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 10130919725504941416\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":291120,"size_decoded":291580,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1024x1024, components 3","md5":"6fc8d9dce00e0982a4e6b7ead674ae62","sha1":"cdb326d9fbce830060b62021576525d7730f7d38","sha256":"3a2dae9ef26d84199ab71b4697eb190b4666c52d1430f519a34c360b8096d7a1","sha512":"e1b0b82976acedda663c01824b4014f7166b8366ecdd0aa87393325e8004a7a901aa81b34c392bdc603a724b4414db9c05ae0c34256276d27c423c2892f73477","ssdeep":"6144:p1zx2bE/h18payxLPIrlCoECXmASvb9AhqEtrlhADJVwk1SR:vzxqqh1mBLwrlBXHYbs5llhAbwk1g","tlshash":"f5542299771e6423a3e12aad6cb13b989c2cdeabfb505454043067fcc9be0c2dd8513e","first_seen":"2025-11-09T20:09:27.426755Z","last_seen":"2026-06-25T12:14:32.566648Z","times_seen":6,"resource_available":false,"data":null}},"time_used":2937,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1712,"receive":268,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/lib/flexible.css","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.922Z","timestamp":1782389636922,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /lib/flexible.css HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-408\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1032,"size_decoded":839,"mime_type":"text/css","magic":"ASCII text","md5":"7524a2ba32138a0363ad48a78f4c7b9a","sha1":"aab46e82603b9de5b1880c0aaddc0d0f29dbf7a6","sha256":"d68ca73f7b227d0da6b310867a0a588530657bc433fce241b3b2aea1502c10c6","sha512":"77518eea3846fafd71ba1a086f06975e9ab22c2d1e55265795f62604d2411eec3a9a9ce50e6f5ce369fad4ad22e4346fb4547beae00e043fd7f48b5b21e9c252","ssdeep":"","tlshash":"081175315350b490a4f78e33320d955865304352cc378a60f320f198d5e203b27a2b8d","first_seen":"2023-04-06T21:01:20Z","last_seen":"2026-06-25T13:53:33.803223Z","times_seen":850,"resource_available":false,"data":null}},"time_used":352,"timings":{"blocked":-1,"dns":0,"connect":176,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/core-js/2.6.9/core.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.935Z","timestamp":1782389636935,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/core-js/2.6.9/core.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:09:17 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 15166\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fq7ENmR2q96mgdwe%2FKr4urPuKNMJqeegIR%2F8sxUfHQ5Yvb0J5NIXa%2BhhdzZmZRA%2FHYpJ%2BZJxlk43k%2Bij7onF%2FwvLXEXtxK%2FRAkkxmWbw2TL1GX64GJo%2FqummGE2ktdjUZRuYVgV6\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39edbb70b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":92051,"size_decoded":28059,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (32000), with LF, NEL line terminators","md5":"622c4c9d5dc4b1ee29a2eb908186ec88","sha1":"491753a3f979f7d180af11e1929ffff85e30f921","sha256":"794d1c7ab27be77d366e0497e641488e50f5ae6581b4db51cc08de1e142eb47a","sha512":"2b2485006e3a36dbae0d0d8488ab63ae6085c34d5a6f72c3558c52b492294c157f67ce47c1c3b89498db9ff72f748485fedc04a881f1877f903cfa0df1c8be8e","ssdeep":"1536:PLFpwkiSucuVH8MBfaQQ979S17LMgRCSRjMbEjeb6Gt6UQ:PLbw1Sucu3Qw8gc3gk6Gt61","tlshash":"1f93618cbec6f06642636675413f900bb27a1a86745f89d0e12ed1e4bc7c98f413be6d","first_seen":"2023-04-06T20:58:39Z","last_seen":"2026-06-29T04:50:50.951776Z","times_seen":1518,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"globalterdaftar.com/api//file/front/df7ea59f3a864b37a5cd881fcf9f0a2d_.png","fqdn":"globalterdaftar.com","domain":"globalterdaftar.com","tld":"com"},"ip":{"addr":"148.66.3.116","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.180Z","timestamp":1782389639180,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globalterdaftar.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 00:05:45 GMT","end":"Sat, 22 Aug 2026 00:05:44 GMT"},"fingerprint":{"sha1":"E0:BF:CB:85:42:38:63:2A:FD:E9:08:D4:E1:2C:4D:66:12:28:AE:15","sha256":"2C:09:37:77:DB:AF:27:2E:AF:09:A4:C4:F0:BE:1A:0E:40:FA:CA:33:B4:9A:5C:47:93:8A:61:7B:E6:91:E5:2E"}}},"request":{"raw":"GET /api//file/front/df7ea59f3a864b37a5cd881fcf9f0a2d_.png HTTP/1.1\r\nHost: globalterdaftar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:14:00 GMT\r\nContent-Type: image/png\r\nContent-Length: 69774\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nLast-Modified: Sun, 08 Dec 2024 09:43:58 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":69774,"size_decoded":70069,"mime_type":"image/png","magic":"PNG image data, 1442 x 1556, 8-bit/color RGBA, non-interlaced","md5":"1ae6354408460b397242d47c2830fb9d","sha1":"fb8b96b4b291683d82b1ba83030e3a5a8de9cd58","sha256":"ef4371b587d0e73af2cd779ce4af2554f46c52417786c4a56f33731b4884c7ea","sha512":"8c6d9270113aab7c12161cf2849e457f0fc4f0f7ada4d910536effa0049d35659aaedbb9647d9aa63a0b1699b16149d8973be71c06fa2c93d50b5b83e2bc04bb","ssdeep":"1536:KVq9B17/KTeBqXOxIbPxma1BoH4TiIfuC7PZvzRgq/HwVEae:KI/KiBKO0l0H4TinCNvzRgqvwCae","tlshash":"5b63f10307aa78b7ecab71341d3297c49f6011fd6127065b36b8ca46ce3a6cb61ed174","first_seen":"2025-03-18T13:29:30.702293Z","last_seen":"2026-06-25T13:53:33.794122Z","times_seen":89,"resource_available":false,"data":null}},"time_used":1412,"timings":{"blocked":0,"dns":354,"connect":174,"send":0,"wait":351,"receive":179,"ssl":353},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"globalterdaftar.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/tw-11134207-7r98o-llvs1w661lsp17","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.660Z","timestamp":1782389639660,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /file/tw-11134207-7r98o-llvs1w661lsp17 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-7qvdh-lfp64pwn93m62b","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.670Z","timestamp":1782389639670,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134207-7qvdh-lfp64pwn93m62b HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"c75020b4ac0cc81bf58f2c130235a963\"\r\nserver: SGW\r\ncontent-type: image/jpeg;charset=UTF-8\r\nx-mms-request-id: c6692e7b3fdf40d6a6391a9f17456866-6a0bd507\r\ncache-control: max-age=15552000\r\nage: 3229313\r\ncontent-length: 308991\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 13509371000726645786\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":308991,"size_decoded":309409,"mime_type":"image/jpeg; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x1024, components 3","md5":"c75020b4ac0cc81bf58f2c130235a963","sha1":"ecf648697238074eddc6a848e39d7a09622b69fe","sha256":"6c41dfd61062e7cef2c3be31d652d8dae6f0fa56b14596fcdebb62f40e91a1f6","sha512":"3959bffe90e3d5e19d8dd9f270bfad13ab5182f3e0cb7cca810724790651818cd987e5381612ab60d3de1c49c5c1824f35d187ad9af0973ce20917c709d7f7de","ssdeep":"6144:rvq1XX/5GSJPK7ihwJ2yNYAefPOtDp6MEPHLtOmBQYIc:ri0SJyehwJ2QkfP0DnEPHlQjc","tlshash":"066402997054739ecf4f135b0143e3b4f004a7b53032caaaaded56c76f1995a16b8b0e","first_seen":"2026-05-26T20:31:32.676089Z","last_seen":"2026-06-25T12:14:32.569629Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2891,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1482,"receive":452,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/lib/jquery-1.11.2.min.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.932Z","timestamp":1782389636932,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /lib/jquery-1.11.2.min.js HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-1787e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96382,"size_decoded":33746,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"6355f3cc28006e33bad2e765cde30e0d","sha1":"909cd6318d5047f3c8e83528253b256981394414","sha256":"39eed2d24faf4985b922b64d078f106edba6b3b84d5385e483a5c7bd69201da7","sha512":"b22d3868a7b311f82bb149f8afccee03c68dcd5e7152a061b8e18d97aef794b106dd1cc081d49f4d638193924ffa5885239cf67152fc339ff0cf3cd1d194d175","ssdeep":"1536:0Hg1kz+hAmcGmVFnlkFybx+amELolY+30k1dml+BQZX6YPnrCtn8JkDnlwMxVW2:0HDdc2F3c2G7mIW2","tlshash":"13930add76c2b06387a720b9506f550bf276599e280c4440f268e8fabc7ca49a137f7d","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-29T03:09:15.732066Z","times_seen":1864,"resource_available":true,"data":null}},"time_used":676,"timings":{"blocked":310,"dns":0,"connect":0,"send":0,"wait":187,"receive":179,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vue-i18n/8.12.0/vue-i18n.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.943Z","timestamp":1782389636943,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/vue-i18n/8.12.0/vue-i18n.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:17:47 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 169265\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lba0cMTrTAHhuXlVnWU8ZD7Xi5LfRdSwZvrVP9XhCXyIq6TNSM2jUj3XH4Z%2FzzxZBmXGqEiZ2WhPqM4UXiRxicynVMvkzrTaNK1Y82w7gGPDDONO3xz2D61stcIjzwpAbHKfJMHX\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39eebc30b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22805,"size_decoded":7185,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (22712)","md5":"c019be63e713ce6f2aa221c0df8fa0cb","sha1":"e5471888945144f233714d470959059c010eb667","sha256":"87e6aba4bd25be4196ad7f269a62de823242abe105df538f218d4e6e268f74ce","sha512":"6ca3ae5fb17dc20a2c27d4008454feb7cefc626bf104252354c1abd0977f73a315001d94293a7d4379ecfda6ba21d3f49a992f243a6f9249c935195527d407be","ssdeep":"384:BPdUYakDlUGQrDQxMQ4rJaT30WCxQI1cg:DUYzhUGmUMQUX3","tlshash":"cea2b7c6f56270270a9260e5183f1107a33f241d648d855df2d6e8ee2ebdd8e91a3f39","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.19855Z","times_seen":1173,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-145c787c.a83f1fe5.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.999Z","timestamp":1782389638999,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/chunk-145c787c.a83f1fe5.js HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-21b3\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8627,"size_decoded":2989,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (8521), with no line terminators","md5":"9a9372cf30333980a2496044ed6ae0d7","sha1":"9ce76b284dce3b13d936947df793f86e03bce02c","sha256":"909f57c3674bb6ce4b330f2efb386d57a9ce576b051d84b6b9cc4c7c60c8ac2e","sha512":"a66fc5bc216b6369b06863fdbb4ebbfccfb946f93ad4cd88ffb599b2f49f73a39c0e770d719e8936263d0c6a28b64368e5a68fdee58b5e941eb0634dbc145f7d","ssdeep":"96:HvMx9/Khw/Kx/Kf3NKtffE8AX0eKGyuPb5ZGZ4VbUfJBGxqDMk7SSqh0mRuMZBCD:PDGkezISVMJBGQrmRFBfM2R6Io","tlshash":"21025305b893f1be8d7be051406f6a61e1256fe8c424a041fb34d8c06ab4d79676de3f","first_seen":"2026-01-26T00:25:19.853186Z","last_seen":"2026-06-25T13:53:33.800826Z","times_seen":50,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/ml.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.250Z","timestamp":1782389639250,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/ml.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 6032\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-1790\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6032,"size_decoded":6272,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"54949456cac367c5f49a562f5d35f16f","sha1":"b1ff3a63921c24aa5e7f9cbbf609a3a5987ed73f","sha256":"e29cc00297fd609eb9a2d64f6206d50527822876c1d9fe7edb02c6629e35e69f","sha512":"12683ad8f3e3508348cdf15cf3e14a89d8d8ed9c83dc8986233032e5b28e186936fe21da080a0a70be3557835451ee0b0207a1e807d3d5fa3c61b02604829356","ssdeep":"96:O97a0T8Td+GqCOkZSxuNhyVm4dcjFp2+hYxMc3usECfsnQRBNjejgTq7pC6AcKh4:2aG2BTZQikViC+hY6euzCoQRBZejgQCS","tlshash":"dcc19f1fc071989a04c7c11e828f4bb74ad77b45ee0287df5f4da1106f7e96c8709859","first_seen":"2026-01-26T00:25:19.781993Z","last_seen":"2026-06-25T13:53:33.811455Z","times_seen":36,"resource_available":false,"data":null}},"time_used":318,"timings":{"blocked":144,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/free.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.255Z","timestamp":1782389639255,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/free.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 5189\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-1445\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5189,"size_decoded":5429,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"606cd673eaccfffced94a9d829406ce6","sha1":"bcd45df859f36219a8c6d4132ca61cb03268e03b","sha256":"0655279d18922520510fd505c5206e045fcd5415e68df81f9a9023c86d58262f","sha512":"fe7aed8d673e03faea11a4c222e994802bb55b2a8b4705472db76d1ae06b6c115eca5c162e21916e60fbc085f544b857bfbe8cbe79fdd70c55a8a1bc46021fd1","ssdeep":"96:l9t38CZ1TzpYjl072LatTwn/mXAu2BhOh5wUlIYRb5:hlZ1TdY05cuXAu2BcIY","tlshash":"2bb15dc63d15985dc1eb56e86a785895fd5fef8aee11067b9440b8344cf0da10048f57","first_seen":"2026-01-26T00:25:19.897139Z","last_seen":"2026-06-25T13:53:33.809993Z","times_seen":36,"resource_available":false,"data":null}},"time_used":322,"timings":{"blocked":146,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/more.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.263Z","timestamp":1782389639263,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/more.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 2057\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-809\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2057,"size_decoded":2296,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"830511c2fc5f23e77288cd6c4224b115","sha1":"ad5c5cb1b93d7fdc1e3ec54969177ac467d2107b","sha256":"9bff91941a0c5e072ddaf4508aab5775bedc9a696259439f0f3c9c57eeb18eee","sha512":"987ee142ceba740cd99dcdb37619760ea316d26b83e6576fbba1ae697b10420829025c1afc9a697bf616d9b474eda2ea448dd96063cec5d84df6719568b94f29","ssdeep":"","tlshash":"6b412a852f2eabdece475d7d067059e8a876fe4d1aec3396909538046c3c701a4841f8","first_seen":"2026-01-26T00:25:19.959062Z","last_seen":"2026-06-25T13:53:33.812649Z","times_seen":36,"resource_available":false,"data":null}},"time_used":492,"timings":{"blocked":317,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/fbd2c4cc2337487469a988c6d9d348a0","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.665Z","timestamp":1782389639665,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /file/fbd2c4cc2337487469a988c6d9d348a0 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134201-23010-sqy7211kgvlvcd","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.676Z","timestamp":1782389639676,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134201-23010-sqy7211kgvlvcd HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"8076e5c0da92924d0440528942cdd58c\"\r\nserver: nginx\r\ncontent-type: image/jpeg\r\nx-mms-request-id: c7d11c2e85ff45d09fc68c4686849575-66c97923\r\nhandle-by: img.susercontent.com\r\nx-spcdn-request-id: ac6b2a9b4c486f3bfd264a1d3365d790\r\ncache-control: max-age=15552000\r\nage: 11351029\r\ncontent-length: 193462\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 4314177624695457305\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":193462,"size_decoded":193955,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"8076e5c0da92924d0440528942cdd58c","sha1":"c5c32fb5abef2ac60672a961ee0229df68aa775e","sha256":"efbab6cb476ac86b6d79a2a61549a1cf0bc454da1c48df95c28017b2653a4559","sha512":"f6acfbc64a188f070b7191c59ca37c7d2d3c465f3c0f5a13570dc23118aaf8a01576c7f5b74046220abf8274eee09b7143af33b32d6af949fa5ca6d38c627118","ssdeep":"3072:mzGyeRrO+xbXFH9yec4MkyyKaxVxOzn427G7/tzWyEx7MCL2dLkVFhH0fmtV5qFi:qe1RZ9XwyK+4n427utzNXdLOj1p","tlshash":"801412d3b81dad9f230edb21bf2575dbe7af9daaf9c0f2c2805a08802b5095415f51c9","first_seen":"2026-06-25T12:14:32.574921Z","last_seen":"2026-06-25T12:14:32.574921Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2703,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1176,"receive":570,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shopeevip.vip/","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-25T12:13:54.909Z","timestamp":1782389634909,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-vendors.42f07336.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.930Z","timestamp":1782389636930,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/chunk-vendors.42f07336.js HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-10000\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":65536,"size_decoded":19014,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (29775)","md5":"bdaaed4e9e1d5e0322ea968e6f47ac0c","sha1":"85c58af8151ed5badcdca952295e8c6e7b3e1e15","sha256":"c9634af5f9b16a9f44d78311163effd76467a2441f744859c96fc066a3b58aa8","sha512":"e23c153981e588a4d6b99c8341da319ce7e9bb16036ff952a8a469910640505b6e7ee7bb9e6d06dc59082f537053bb46cc8d800b82de8a730abee7d743bf03d5","ssdeep":"1536:qJuH03+0goh0dbU2Q+39Ya7C5x+eccVdofh3q4A6R:qJuU3bCbU2Q+3MXccgpE6R","tlshash":"0553e788f2d5b070439771a8402f610bf37ae959b44d8498f625e8e1bdb8dce546bf38","first_seen":"2024-04-24T18:56:38Z","last_seen":"2026-06-25T13:53:33.788939Z","times_seen":821,"resource_available":true,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":175,"send":0,"wait":180,"receive":175,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/favicon.ico","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.710Z","timestamp":1782389638710,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: text/html\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-2a4e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"SockJS:1.3.0","description":"SockJS is a browser JavaScript library that provides a WebSocket-like object.","website":"https://sockjs.org","common_platform_enumeration":"","icon":"SockJS.png","categories":["Web frameworks","JavaScript libraries"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:1.11.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10830,"size_decoded":2632,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (5984)","md5":"b78c34f0ed48db5027c5942208d8a989","sha1":"73156d0616dd9e2389b4c52e4c9389411a923df8","sha256":"529268397cc769f6f0c655232c372f165dd45c535461c72dce5985361a0ba89e","sha512":"a2040a1fbefa217a724a971c32a9ce32e2d5acd5bcdf6cb6c3628015e3dfd8da17f011ee46b8e1a6e291e4bf341a632da3ed6e21cc16879952966ca1f9149bd7","ssdeep":"192:vsNZeKIC+LFGSFGmQnqQn7jFIJ8++MngiAQntyztM4/Z0tf+ahaOa0acaiaBaaaf:vOZUGEyQntyztM4/Z0tJ","tlshash":"7a22bc39da0195aea591dd9b9a29f72dc4eb8c3b2030e444b66d4d9fcf74fd4012a483","first_seen":"2026-01-26T00:25:19.739728Z","last_seen":"2026-06-25T13:53:33.769618Z","times_seen":53,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/axios/0.19.0-beta.1/axios.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.939Z","timestamp":1782389636939,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/axios/0.19.0-beta.1/axios.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:06:02 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 15166\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7idO%2BaQ016BqXjETCK%2Fo4Qprhgo3ftaD9Awc7vDCnnlVF9t3Wc8p2VuMdVSrlRf%2FS3oY0rTSnTXWBtT64%2FffrBEAP9wjfDTx74nZLlGROG1crKsxgtGAfblIhYqxGT2g0COTUfWM\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39eebbe0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13638,"size_decoded":5202,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (10313)","md5":"334149adf44476f28bfbf16c7b0382c2","sha1":"ad2ea246ebb53ed655ab50d44b33d4d6f942387d","sha256":"6d2c0a450a04b5d1492f77d7e512fe6af26e95c2feac596825f45e71b9ffa4d6","sha512":"0f9d66a68e400a2499cc1dbd79331892e9e62e278d8b4784e354b7a281c91fcc1401eedb0857ff6911d842ea853d39081b459fbdc0e30d927ee93b5ba1ecdbea","ssdeep":"384:hpI8XyWPbWeAExXqgxH7RqzGbcQdVzxbUm6HwT9eei:LbXdyGbcczx/6QT9e1","tlshash":"f25285ce7861b0a757e320f0805f4a0fb2b6552a754d84a0f660e9f66db542e8733f5c","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.169808Z","times_seen":1198,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vuex/3.1.1/vuex.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.941Z","timestamp":1782389636941,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/vuex/3.1.1/vuex.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:17:51 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 5339\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dixDnxFmkEo7ao3xw1AHhkmQ7JFCUES7ChcyWLpEweDCvjEKhQXysGlpdrtebP7L1yXoHlkQvlP2w9kkdeSkTo7wNkCCoKAJ4Zh0WMlWo8Mak5xNtgQs05NErmVx%2BxqdUKrZ99ZD\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39eebc00b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9875,"size_decoded":3758,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (9815)","md5":"c66594705de51675f08e3b83b9b9b38c","sha1":"40fa40f722043957a56324174ec6f80389391971","sha256":"e973901e74ff65888bbe2e58b95cfb957d5db316bb185a106f543d99176d1d65","sha512":"3cb0d6b77ac49d3c6c5c5740efa2fd9e3e0c79158c88a9d4f0b709f4713a38a7b72109a2b4c636377c783effc3c6457c718d8cdc2e9c7577db9691562e95375f","ssdeep":"192:90DuIfY7JtjC5ydUypH82+H8urFLR7BD4GOUo1MQl+B2GHPpB3QE7WA+MWnBP:9guIw7JtWqmhfldD4Eo64UgH3nx","tlshash":"4f1261ccf661b0764a377460623f120fe276a46d200a4468f598e4ef6cbe14d94abf3c","first_seen":"2023-03-07T12:05:56Z","last_seen":"2026-06-29T06:03:54.169993Z","times_seen":1443,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/css/chunk-06ae24a4.fd43ee93.css","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.356Z","timestamp":1782389638356,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/chunk-06ae24a4.fd43ee93.css HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-bb0e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47886,"size_decoded":4255,"mime_type":"text/css","magic":"ASCII text, with very long lines (46623)","md5":"177ff7e3310c02d7e6a139a3237e0d38","sha1":"375c1fac3912c4b63c01d7bc241aa43ed0055460","sha256":"db079d71523907889a19e611a38e528a3405d89d22506634a177248f03f93226","sha512":"004642aa9fe53920ff46cbaf93784da99051143c22aa04e4e24ce332e2556b057d331a481f31ff427dc0b5ef0cac013c55e41764af8496f59366278918044741","ssdeep":"768:KEkZgRUp2R7p2ROwo1OAPkuD336ya5hrCen0eTg:KEkZYwo1OAPkuD336ya5hrCen0eTg","tlshash":"9223b89a48a1224591234e56cbcc9fa8473cc76364b25cef33967c4bc745bad23ce617","first_seen":"2024-07-02T22:35:06Z","last_seen":"2026-06-25T13:53:33.765687Z","times_seen":779,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/sytc.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.252Z","timestamp":1782389639252,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/sytc.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 3836\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-efc\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3836,"size_decoded":4075,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"951b5419c23fa06cc646ebda33289489","sha1":"e12166ae16694736229750bdfef196514d0fa1ff","sha256":"ca1aa66d720f7297df33246439f48fd1bdd362673720b7f8707b189e91b2847a","sha512":"af78c0f351966a68f6be132ec7f81d79656ada130fc55d59deb35c32899bc66cf11238f284d4de1f7cbfc755ecc3329199ac216e19421a52902b16beffb208e7","ssdeep":"","tlshash":"2c815b0b629878ff6ec9242993b051c4ed5ad5a37082d57cb0abf41d2885b88db36631","first_seen":"2026-01-26T00:25:19.82065Z","last_seen":"2026-06-25T13:53:33.755693Z","times_seen":36,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":144,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/sy-03.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.260Z","timestamp":1782389639260,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/sy-03.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 2391\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-957\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2391,"size_decoded":2630,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"a6986541106e66a8ef8c3a5996ec4f76","sha1":"a762d3ba06a470d4bf48c08c9906d97b80654c0e","sha256":"30e0138eb1404d6b791cebc781e56a17114537122e60046b484e46047440e717","sha512":"5fbaf3e18f80aa29728df534a922916d5fce26a5d770fdb89fc83d1c923e2494ac3aa9e71dcffe2c334d167528b4b5f61cd001000f249e211519dc6a457555c1","ssdeep":"","tlshash":"f1410a02027ea545d553b19523e7b22278b13e673b1f18bfae4cf045390c5c7869f5c1","first_seen":"2026-01-26T00:25:19.796832Z","last_seen":"2026-06-25T13:53:33.812078Z","times_seen":36,"resource_available":false,"data":null}},"time_used":325,"timings":{"blocked":151,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/xsyh.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.262Z","timestamp":1782389639262,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/xsyh.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 4322\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-10e2\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4322,"size_decoded":4562,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"55bb73cf969f99c918d8931f7995bc31","sha1":"39cab5b6820bfce5b436f4944689c750fe8cee68","sha256":"c47421f712b77b6000eca66c6ebbfde2cb0de52a14e4d882871ee45400720a61","sha512":"b34b118373963604ab8baf2b09da24bbd3140159554c4997da5f69289acfb3fe77baf610bc6892de7c3e90170558204533ae7a6870d4c4ae5e9d5b83ff117d22","ssdeep":"96:/16dwMsSlOIMdzJq26bunoLi95KFkqxrBA7VbA:doHlOd9YLy+i94S1A","tlshash":"b2918dfac77627c4c22072f836d8a041f97c47a271d2b0acb327d3114917de597928ab","first_seen":"2026-01-26T00:25:19.95472Z","last_seen":"2026-06-25T13:53:33.802086Z","times_seen":36,"resource_available":false,"data":null}},"time_used":488,"timings":{"blocked":314,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/tabbar/mine.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.272Z","timestamp":1782389639272,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tabbar/mine.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 1161\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-489\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1161,"size_decoded":1400,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"423201b042d7a418225d61629c3cdb66","sha1":"8ceb16f173d21e355958b5956a35e6afaa336358","sha256":"9617cc651121a5f54af4aded9a554fd89969650b3112936d8c2e04bbcc08523e","sha512":"c1d5db0db611027fe7605845ee9addf9aa4d28345ca32264d4d9f0954ebad6ff6f7993af25fb7fb7658d515e3d7a0a29358ff8223cfdec23e088f2dccdf402ba","ssdeep":"","tlshash":"7721caeb1dde2e5cda2d40744d013db8637fa6331fc309e974445865d569b844c0fb24","first_seen":"2026-01-26T00:25:19.869687Z","last_seen":"2026-06-25T13:53:33.792066Z","times_seen":36,"resource_available":false,"data":null}},"time_used":666,"timings":{"blocked":491,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.936Z","timestamp":1782389636936,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/vue/2.6.10/vue.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:17:48 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 1081\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6EsY4Pd8EHrspHxi3x%2BO87zOhpy6XNdPIspHm5DXgYNGEYUMv%2FYkjUaCrW9aQEu41Pe%2BEuNORXL7EFxnbpKUhCWvPndqwpVpI8TPQE76b7W%2FVnWjUxh033IWj4YJWe6knmV6%2FftK\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39edbba0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":93675,"size_decoded":31759,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65449)","md5":"17e942ea0854bd9dce2070bae6826937","sha1":"434cdec1669f2c6c7406297a72120936bc56ed52","sha256":"72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26","sha512":"3f0439fa3817c71a6b34673cd32707137b29823e93b8389e1deff24e46c427e5396a897b753ba98bfe156f01c7ce54155bbed56f418b388b22622807802e6f72","ssdeep":"1536:1UXY7qLtpHt2Pqe1mZ8I6H82RaLiMBlo2VV2B/S/g:MYeJpN2yefjMBlPV00/g","tlshash":"529308dc7299b07157eb31f1107f140bf2365a19ac0ec194b222e4e67cb984d92abe7d","first_seen":"2023-03-07T01:18:07Z","last_seen":"2026-06-29T05:17:16.844325Z","times_seen":4203,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/sockjs-client/1.3.0/sockjs.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.947Z","timestamp":1782389636947,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/sockjs-client/1.3.0/sockjs.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:16:21 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 5339\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=othlNw5qZs4qaFH9BQKSaJ2HRadikRK%2FUnUEz2bR83l0i4hDkx1fYhtG3X1VB3wcaDPwEGw80Qv7XiMxgDKbLvlpM75kvlPC9CCdmDLt6mxiuvRn8jUddGi8U%2FVz%2BkHNTLVnH2wD\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39eebc70b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":62797,"size_decoded":17637,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (62696)","md5":"f0a01fa31e644ca44836356a172ba7c9","sha1":"e81438a79e8a7f34423168c70696cff2a820dbf1","sha256":"840ea076b43dbf564a909bb082dc287740a96f3c4483fcc024f7176306daecc7","sha512":"a18f9c600996f8f31c046e80334cc794efff550c2286bc822ba7bbc197d99e4ce5f032133866b18cb9743a717b76e578cdb2a9fb5f6ebe42614d08ea1ea2e47c","ssdeep":"1536:XFWQV1ZGORGWiB67hAHLY/IyYT3uu+OLFckh:XFW8tG967hAHM/IyYT/Law","tlshash":"5853e8c5f46134a213e7a2b582bf11032376953a640c85b4b798dcf98d7d98c532bf7a","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.194992Z","times_seen":1176,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134201-7rbl5-lm8u2hmt5s8370","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.676Z","timestamp":1782389639676,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134201-7rbl5-lm8u2hmt5s8370 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"72a5f15426de3da4eec130d0384f0940\"\r\nserver: SGW\r\ncontent-type: image/jpeg\r\nx-mms-request-id: 479b6c3ba7ba4b5baba92da6a34ee46f-69b28e28\r\ncache-control: max-age=15552000\r\nage: 9080160\r\ncontent-length: 124800\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 6832409409308472951\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":124800,"size_decoded":125203,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1000x1000, components 3","md5":"72a5f15426de3da4eec130d0384f0940","sha1":"bad567c5b5a2ad29f91438b48d2ab02cb1301d45","sha256":"61669220a34b63b0e743bc08965b57dc1b7c5bce1b92df79983c8a47f7d1991f","sha512":"bc808b47df27c6559a1aeb5fb5da9b1434dea49ff9c7b04fc61e2784c14943b033b98bb83eb0e4d583b352dd5bf4b97b40da8b8af07e76fc76e522d47b298067","ssdeep":"3072:XWo2eLqjT55EgNPJwRCqHbZmrCAHFr9idOJJ4r9az4k:GBeLW5nZJwTUvidOJJ4rTk","tlshash":"b8c38b5789189792f06992e9fe0b1e6d2f866a4cf4d336fe01570ccb6a247760d4e03e","first_seen":"2026-06-25T12:14:32.58375Z","last_seen":"2026-06-25T12:14:32.58375Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1994,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":518,"receive":519,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-25T12:13:56.172Z","timestamp":1782389636172,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:56 GMT\r\nContent-Type: text/html\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-2a4e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:1.11.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"SockJS:1.3.0","description":"SockJS is a browser JavaScript library that provides a WebSocket-like object.","website":"https://sockjs.org","common_platform_enumeration":"","icon":"SockJS.png","categories":["Web frameworks","JavaScript libraries"]}],"data":{"size":10830,"size_decoded":2632,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (5984)","md5":"b78c34f0ed48db5027c5942208d8a989","sha1":"73156d0616dd9e2389b4c52e4c9389411a923df8","sha256":"529268397cc769f6f0c655232c372f165dd45c535461c72dce5985361a0ba89e","sha512":"a2040a1fbefa217a724a971c32a9ce32e2d5acd5bcdf6cb6c3628015e3dfd8da17f011ee46b8e1a6e291e4bf341a632da3ed6e21cc16879952966ca1f9149bd7","ssdeep":"192:vsNZeKIC+LFGSFGmQnqQn7jFIJ8++MngiAQntyztM4/Z0tf+ahaOa0acaiaBaaaf:vOZUGEyQntyztM4/Z0tJ","tlshash":"7a22bc39da0195aea591dd9b9a29f72dc4eb8c3b2030e444b66d4d9fcf74fd4012a483","first_seen":"2026-01-26T00:25:19.739728Z","last_seen":"2026-06-25T13:53:33.769618Z","times_seen":53,"resource_available":true,"data":null}},"time_used":353,"timings":{"blocked":-1,"dns":4,"connect":174,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/my-11134201-7qul7-ljz47vnf5u1ic2","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.647Z","timestamp":1782389639647,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /file/my-11134201-7qul7-ljz47vnf5u1ic2 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-23020-lhu93uy5ehnv8f","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.671Z","timestamp":1782389639671,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134207-23020-lhu93uy5ehnv8f HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"7adf9d9f3e520f1fdc993054b38e21a2\"\r\nserver: nginx\r\ncontent-type: image/jpeg\r\nx-mms-request-id: d2c8f5e382d143d98b1799731cd689dd-682c53ab\r\nhandle-by: down-src-global.img.susercontent.com\r\nx-spcdn-request-id: 735b937b1e4535e89c09092da53fd6f7\r\nage: 528895\r\ncontent-length: 421471\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 9920320570892490745\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":421471,"size_decoded":421945,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x800, components 3","md5":"7adf9d9f3e520f1fdc993054b38e21a2","sha1":"267617e38088eced6581af3671379e618dd9450a","sha256":"1a34a134d5eadbb7d8473ae7bf1106e311ecb63adfd4a7f430882dd5c55ea66c","sha512":"f297f4f51490b87bd45c843431c7b55d903cf5fd22d5c08130dcb951c3994c2483db2f13b4844323c714e77fc825108c28cb42f2727e6cdf5c08c2fd7de13fd5","ssdeep":"12288:TJvc7wFFgZdjApzaWXUe+B33chOCRc/ZbU40:Tu7wHciZaWXUfNhUP","tlshash":"0b9412e4d7bd50d0facc062eeef2fe087eb74857d75ab716ac8011b4d28a40757a085a","first_seen":"2026-01-07T13:14:57.302641Z","last_seen":"2026-06-25T12:14:32.585201Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2719,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":518,"receive":1244,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-7qve1-lf0m9mz8ql1kaa","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.677Z","timestamp":1782389639677,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134207-7qve1-lf0m9mz8ql1kaa HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"af63358597a0af4918e9f23dc81407b8\"\r\nserver: nginx\r\ncontent-type: image/jpeg;charset=UTF-8\r\nx-mms-request-id: a72a5a248eec4ab88fd237dd0aee1c34-67e3fc42\r\nhandle-by: img.susercontent.com\r\nx-spcdn-request-id: 643aee261479a25a9b6868b527f7d8c1\r\nage: 1999102\r\ncontent-length: 295497\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 14872449939627325587\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":295497,"size_decoded":295971,"mime_type":"image/jpeg; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1024x1024, components 3","md5":"af63358597a0af4918e9f23dc81407b8","sha1":"e42720673620735a84030d8257dbf98feab094dd","sha256":"a1dfbc2dc8c3373ec3cafb20c84326d6255bdd4cfe12f26e76b2e26d6be7d437","sha512":"b89e7425fef6bdf3380d4f74075933271c31d738614b7709eea06cdec6b5a56ca8226de1393fa70c7fa2a118f69148f117df781fada5ced5eaa81503630449e0","ssdeep":"6144:LiKGjPpvhn2z+E5m4/bnDfdg+paBnwL+7k6Jxeu3sUIVnE:LgjPlhnBJEnDdgYaBnw67k6Jxeu8jJE","tlshash":"4f549a289243dddfe1011377a8d0bc4ea54a15b1bb0d8ff8e087ee5ed21a7b1d283556","first_seen":"2026-01-08T05:07:30.600092Z","last_seen":"2026-06-25T12:14:32.586949Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2883,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1385,"receive":541,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"globalterdaftar.com/api//file/cfg/202412/12/6515b548f78241a397ecbbc25b0f16ed_.png","fqdn":"globalterdaftar.com","domain":"globalterdaftar.com","tld":"com"},"ip":{"addr":"148.66.3.116","port":443,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.680Z","timestamp":1782389639680,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"globalterdaftar.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 00:05:45 GMT","end":"Sat, 22 Aug 2026 00:05:44 GMT"},"fingerprint":{"sha1":"E0:BF:CB:85:42:38:63:2A:FD:E9:08:D4:E1:2C:4D:66:12:28:AE:15","sha256":"2C:09:37:77:DB:AF:27:2E:AF:09:A4:C4:F0:BE:1A:0E:40:FA:CA:33:B4:9A:5C:47:93:8A:61:7B:E6:91:E5:2E"}}},"request":{"raw":"GET /api//file/cfg/202412/12/6515b548f78241a397ecbbc25b0f16ed_.png HTTP/1.1\r\nHost: globalterdaftar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:14:00 GMT\r\nContent-Type: image/png\r\nContent-Length: 815481\r\nConnection: keep-alive\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nLast-Modified: Thu, 12 Dec 2024 13:41:29 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":815481,"size_decoded":815777,"mime_type":"image/png","magic":"PNG image data, 1308 x 1308, 8-bit/color RGB, non-interlaced","md5":"455f1f4abc36d59272e53ac8fbb29c75","sha1":"b43dcd7038d14c0f658d5e0a312a501f80ed54b1","sha256":"076e149db4f06d102219dcf6264da46b57b629aa5fb4111646eba01071bdada8","sha512":"86985a852e53ea03611ff9c4c801123f1e29beb93482ee629a92def80542399d99755a80dd55afbc88aefb161ab430884e8fc193b119947d4b5f5ef1f6aef822","ssdeep":"12288:TFt6PyH24YMGkigSP6DluOKzC1UhildyRa1XNZIYaqTTfrnQF+DUoXXy3yfcoi:T9WLhHP6DluOCiCGNZINoom7XyifcB","tlshash":"6305331fa0528d52efeef07e7960b6bb05c01991f1f45b054fe85a662a93b20b4739cc","first_seen":"2026-06-25T12:14:32.58806Z","last_seen":"2026-06-25T12:14:32.58806Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1828,"timings":{"blocked":45,"dns":0,"connect":177,"send":0,"wait":359,"receive":889,"ssl":358},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"globalterdaftar.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"globalterdaftar.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-7qvcy-ljp3fjmi0xdxf2","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.685Z","timestamp":1782389639685,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134207-7qvcy-ljp3fjmi0xdxf2 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"417b083d746b8798d8b02a5b11b26145\"\r\nserver: SGW\r\ncontent-type: image/jpeg;charset=UTF-8\r\nx-mms-request-id: 180624233f7a4675b9f58baea12ee74a-6a1999c1\r\ncache-control: max-age=15552000\r\nage: 2326983\r\ncontent-length: 185797\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 8495543629418043379\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":185797,"size_decoded":186214,"mime_type":"image/jpeg; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x800, components 3","md5":"417b083d746b8798d8b02a5b11b26145","sha1":"b54738e6d494f81050b762e5ba4fc268314a1cbf","sha256":"3382931b16f0db5e16fb1a53cfac586288c71c1bd49690f155ed0ed247d6d260","sha512":"44f2e0f7296fd1c19a44f45d57df2a1500992c5fd282f8f3c778603b58ef491ddf66099e7e7022e6f10e20d0d9c77385339038d432e6e9831037014847071ab6","ssdeep":"3072:eAjB3ziORU2pGnFci6Y6Ss9mMrZQNVn3EAawWuhmSlU7VAjt+xf6TSpp6uTJBvdJ:ecB3EsGFcZ3Ss9m2Kv3pUmC7xf6uagXJ","tlshash":"df04f1bc27e3fa4b98374c2299e598237915403387a0d591458a3dffbc8dd0bda78b21","first_seen":"2026-04-28T06:57:03.668379Z","last_seen":"2026-06-25T12:14:32.589169Z","times_seen":2,"resource_available":false,"data":null}},"time_used":2821,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1632,"receive":232,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/chunk-06ae24a4.686330fb.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.359Z","timestamp":1782389638359,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/chunk-06ae24a4.686330fb.js HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-81\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":129,"size_decoded":397,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"676e3a2df47d8e40c29c2d1a67127eec","sha1":"e54e8144ef939162c151a843933a98ff020a2641","sha256":"6499fae751b066d09b0d93a067502c15d6fecd5b460c7f5a981dc1fb3b286fb4","sha512":"4314d28a687dba60202a2a5974ea1b39b02a45a2fea359503396553b4bf9c1eebcc4168357fe2e43875ddd2e61c2af72b926ee6a61bc978fae9474a77de421bb","ssdeep":"","tlshash":"c0b02bbe2804790808bfa0e4300b33d8048301003f711ce507b020902b74e8e4303a4b","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-25T13:53:33.766726Z","times_seen":857,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/xx.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.239Z","timestamp":1782389639239,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/xx.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 1412\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-584\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1412,"size_decoded":1651,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"f78abb25a9d41b5787f219e9e46111b6","sha1":"bcc36e3cb6da6961cbf00b5b092530e321b49262","sha256":"065ed7d89e69ae4166767c92123e49e8429f68aa9b09c202e70e743dc18b0214","sha512":"03d53ae18601d8175737d8a6e39b8a8ed5823f3346e2091d3c4865e2469db5a45820cbd1073c7cf051640b21414bc07ab4317934e900d9593cfc690e02c87a30","ssdeep":"","tlshash":"5d2108f96bf282ea5b7601f3960dc53a5332900201256185e0d905b6ac33e689f0b67b","first_seen":"2026-01-26T00:25:19.862274Z","last_seen":"2026-06-25T13:53:33.801391Z","times_seen":36,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/tabbar/home-sel.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.264Z","timestamp":1782389639264,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tabbar/home-sel.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 734\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-2de\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":734,"size_decoded":972,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"5dc3336cad817dfe67bfb9faeef26688","sha1":"1a02ce60cfead3aa8f1546f653b68fa129dfa278","sha256":"25785a95a89b19ba7616377b0db09b23073f3f82721bb08dac9fb2f1c9b5bd5a","sha512":"920ef5f841adaadd05103f791f7bd911f7878a4511e9f86a40ed678f1c968f222ebe06225b7f2df67497c5fb686a1e00f81521892a4d4e7fd84042cfc7e6c8f9","ssdeep":"","tlshash":"380120f3b23a0c4e90ce95d3550af190e03106066976a84e282cd57d0736504c4ec031","first_seen":"2026-01-26T00:25:19.906635Z","last_seen":"2026-06-25T13:53:33.802657Z","times_seen":36,"resource_available":false,"data":null}},"time_used":495,"timings":{"blocked":321,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/icon?family=Material+Icons","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.919Z","timestamp":1782389636919,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:10 GMT","end":"Mon, 31 Aug 2026 08:38:09 GMT"},"fingerprint":{"sha1":"8A:2F:DC:6F:C0:09:07:D3:E5:9C:B7:EE:C2:C4:63:DC:59:36:B5:1B","sha256":"64:7C:E4:55:AB:5C:58:7E:89:F1:19:3B:95:DB:7B:4B:E6:75:42:2C:0C:51:2E:66:85:F5:BB:51:58:08:39:19"}}},"request":{"raw":"GET /icon?family=Material+Icons HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 25 Jun 2026 12:13:56 GMT\r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":565,"size_decoded":1025,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"2b7a8d84952a9183b106df19f711324e","sha1":"a92c5e12b422bba9ebb447e1852d9681487361bc","sha256":"282801a0d182035440d5ef6d429d227126d2e6720a52b91d31a7d746c758154e","sha512":"d7ef3f86fe9fa5730a118c688b8f779e82ec3695df5ec48953905ed078ef4d78a3c8005021574d936f69ff0467968b6e68fbcb0680894470abf8f26200af2e0c","ssdeep":"","tlshash":"c0f0c064be0a988566110c42370f3f164d1d401fa80ac8fe8b911d4c8cff1bb134670f","first_seen":"2025-09-17T21:11:07.996842Z","last_seen":"2026-06-29T05:32:10.210419Z","times_seen":49546,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":1,"connect":16,"send":0,"wait":40,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/css/app.37de37b7.css","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.926Z","timestamp":1782389636926,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/app.37de37b7.css HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=0\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-1da5f\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":121439,"size_decoded":26172,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"9c9595347cfcc757ddebfa9046fdf37a","sha1":"4cb4175a4b8eb33dc7d5c4ce69d93749f41c0f0c","sha256":"3810ce6ffa784bd6339f63c939681323ca7824b830d1106cef19c70bb50ff4d9","sha512":"6f124467d6ad8ea6c1f0bc1c018943407bb43a95fb96c28a4a133e2bb1022439f64948e8caf238870d24792d64726ac02aae7fc9c44333568d9bda8f14646c32","ssdeep":"768:gId3U6o3V+4+6agSMJvSL7IfS0GHGHUjXgR5xziZ9zZyuc48gQ6pVU8eS2A6kiqK:gIK6o3uIfS0AiUjXcLzivIW0xmBH7CH","tlshash":"4cc36697bad9254cd9978a91c59a3efcfebb191183828cd3d4537bba9f453cb221001c","first_seen":"2026-01-26T00:25:19.890013Z","last_seen":"2026-06-25T13:53:33.77168Z","times_seen":53,"resource_available":false,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":175,"send":0,"wait":179,"receive":175,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vant/2.13.2/vant.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.957Z","timestamp":1782389636957,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/vant/2.13.2/vant.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Tue, 17 Oct 2023 04:33:30 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 313800\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vexbE7vh7KeED1ce%2FMeC43ROthVGZtyrnY1nkKZQeC37JoOnU6ZiemMMGr5mzoBSuEC7DoBme%2FWZl3eGzRtCXh9lgHkkBgykbHVx9z8n26Ap7LFBVmXplUBJAfzXOE5RLhypWuxy\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39efbde0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":279653,"size_decoded":68886,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (57301)","md5":"644f13180f8d398c886f534b07044cdd","sha1":"2d3349d384b50a385ed0b0d84a256be60a1e2201","sha256":"f5d6379be3cba230a20bfd8bf264805de16223e0aa0277c0fb68c3c0751acff6","sha512":"700886a3c2a288eeadeec4b09884566eecb30f2530259b18a45147f07a02103fb94e144ed643f690de26e8b76119aa639f210c0d687cc957c82318be053ec72a","ssdeep":"3072:XuhzovpPNdJ+fzFgMxnnocXJjyv7mF4Betr1G661LlS+b6aNSnIum/yXN:+hzopC0TmRQBPSWyd","tlshash":"0b54d78ab1c5b425079770b5403f110ab237298cb81a84dcba79e4e66d7ca5ca13ff7d","first_seen":"2024-04-24T18:56:37Z","last_seen":"2026-06-25T13:53:33.790257Z","times_seen":969,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/gwc.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.237Z","timestamp":1782389639237,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/gwc.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 931\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-3a3\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":931,"size_decoded":1169,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"e449530dfbc645059520917136e13907","sha1":"9cd88fcf97b4cf16abaf67078db828f0a43af464","sha256":"fcb1fd13fa77eb8486fea303a9ed7b3717e642a7ed1dda55e6c5e706c63fa97a","sha512":"672a434eeb5513a3c90dc0f14ac346e4dbedcaf00f32ebe4b8d70f86e6042092a6eebf1a19b18f6c8a54b291648555f748194d27005d556b370bd781e143fbff","ssdeep":"","tlshash":"fc11f7ebb005813c8d8ba51769b0f674423305fc28e20807e8cbd84eae1e88816082b7","first_seen":"2026-01-26T00:25:19.891808Z","last_seen":"2026-06-25T13:53:33.804276Z","times_seen":36,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/xpzf.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.246Z","timestamp":1782389639246,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/xpzf.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 1444\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-5a4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1444,"size_decoded":1683,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"2cdd3cc6a99e822ee1def3a3a708448a","sha1":"6d505e9d1e8e2adf7b2371612787d5db620e2dc1","sha256":"014832d798a1885304714e2e388f2b3fc9770993a0de305c29152d9b6401d93d","sha512":"6afd7421ca5b33ebd7dfe186eacdb8faf551533853be2f14ad59f13099a3449e4a8942668163b988d5be7414523e50f73b2377430673a8b438a87c9f5cc8305c","ssdeep":"","tlshash":"2831e9596714b93cc6ef9be3ecbcc10e55b2a38ee5009008fc8a6330b4638374274206","first_seen":"2026-01-26T00:25:19.827938Z","last_seen":"2026-06-25T13:53:33.800255Z","times_seen":36,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/api/websocket/server/info?t=1782389638425","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.427Z","timestamp":1782389638427,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /api/websocket/server/info?t=1782389638425 HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: application/json;charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nCache-Control: no-store, no-cache, must-revalidate, max-age=0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":77,"size_decoded":450,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"afd0e1ca3624cbc484190bcb4cb175a5","sha1":"a956e4cfdff780348fdd5a667e78f5d714c042c9","sha256":"83c8c803e08a8e4d367a3f5812da90d85118b97a55b83bcbd2b277fd27232757","sha512":"803d8b41a8dd820a9c7d3a318cb11cdc50baba2040a529d81848afe8eb2830e06e2b01e644e6c2575dc9fe414e7af1dcecb474ec9095497d1c47c98c7ad4b82d","ssdeep":"","tlshash":"a9a0121aa47c202458885b0103001d226a1814b70100a0e55119291801d1021001058b","first_seen":"2026-06-25T12:14:32.596206Z","last_seen":"2026-06-25T12:14:32.596206Z","times_seen":1,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/xj.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.234Z","timestamp":1782389639234,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/xj.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 1930\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-78a\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1930,"size_decoded":2169,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"e96e14f478e1c2b9214653ae734afaa5","sha1":"b564999fbf6a0efdd9ffb4173f816c2dfcf0de11","sha256":"f6863b801da10895ec33c6643b68ede2f55787a7d407fb80564079ed5904270d","sha512":"4791aee73e554c00c008d590407782ac4a8d00f0cf1910a54b1cff992764fb2256f92f75659ccef1e675f33283b61f16ff69e7218072897173f902f2bbde1938","ssdeep":"","tlshash":"74413bd3e148345f6350cf34516907799586ac291b3d05acf89430251851e510b2a3b8","first_seen":"2026-01-26T00:25:19.86091Z","last_seen":"2026-06-25T13:53:33.76771Z","times_seen":36,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/tabbar/grab.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.268Z","timestamp":1782389639268,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tabbar/grab.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 884\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-374\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":884,"size_decoded":1122,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"39dfe7dd6afdeaca01c4acaf7768a9a9","sha1":"2cd5dba3a3e7c50df56ff8c7dad08d882ac98379","sha256":"514d7e4a1e79438e2d38ce436fc6333430b1781ad1360e14dc8ed105414657bc","sha512":"41e0549d64ad129cce40baf510b444d01a9eec76153d6df8dde0f90fc85efb768453a40265193a4df279f9d44137156182b84bfe9523850d31e0be88d8bd4821","ssdeep":"","tlshash":"ff1196472725d49f3d562dbd303538d516222f59021056d07a044e24fac93a62ed12c3","first_seen":"2025-01-28T12:57:08.396999Z","last_seen":"2026-06-25T13:53:33.809153Z","times_seen":61,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":325,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/7f35293f20b488ab944a36ec3432b0ab","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.674Z","timestamp":1782389639674,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/7f35293f20b488ab944a36ec3432b0ab HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"7f35293f20b488ab944a36ec3432b0ab\"\r\nserver: nginx\r\ncontent-type: image/jpeg\r\nx-mms-request-id: 47512b7137c64793ac5d50b39987123a-67d1b4ca\r\nhandle-by: img.susercontent.com\r\nx-spcdn-request-id: 9579f4475a5808998d5139d81088edea\r\nage: 78957\r\ncontent-length: 156243\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 16678790717651979709\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":156243,"size_decoded":156701,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"7f35293f20b488ab944a36ec3432b0ab","sha1":"42146748fec5a12672e3f3ad9560fdcff1b84752","sha256":"fc810554c65f01add45cccc4daea09e398639a3e8b0aef684ba6d45631865c1b","sha512":"86e1879adf7e81843f18a7e0977fd21fe49db766e834a0d9387ea683688dfd0744a69aef134b0d33bdb104df815e3ed0e6b7a7584bf41f6b5d52663ebe8e7b79","ssdeep":"3072:f7+DyQ2roNfacaTjbUcXgQl9k+p3sBJYXxmlK3YJ22n/MrVrDJ/f4F:6m1oFwbUcXRHEJMxyK3YI2n0rVrNHY","tlshash":"78e31247dc5a45f20a4c03b7ed5a1d4d27902baca94b60fe11410fc7bb6b8e3bd69868","first_seen":"2026-06-25T12:14:32.599302Z","last_seen":"2026-06-25T12:14:32.599302Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2815,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1530,"receive":328,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-7rbla-llmxl68e922775","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.681Z","timestamp":1782389639681,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134207-7rbla-llmxl68e922775 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"6f5b0b9e6b9562218f24f99eaa984564\"\r\nserver: SGW\r\ncontent-type: image/jpeg;charset=UTF-8\r\nx-mms-request-id: fead998583f843f785f9fd070313f1c6-6a11d574\r\ncache-control: max-age=15552000\r\nage: 2835988\r\ncontent-length: 391670\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 10755481342059569897\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":391670,"size_decoded":392088,"mime_type":"image/jpeg; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 750x750, components 3","md5":"6f5b0b9e6b9562218f24f99eaa984564","sha1":"0d42023564eda87d2587ca70ba52916fb9538d8b","sha256":"8195975afd49507422792ee02b3bbcade71d8f74c86631d2735bf7ba7788718e","sha512":"1365027158a5ec3c306b01989106b8fe73c86585f98cc9ffdc84f2fd57fb182ff22e3ce60ac861a6ed39d15e1ec1d9c657b7f0de6161197a4272fa76e7999d76","ssdeep":"6144:FYk5pFEvSfreN5jF/8tnyEsdMyUVoHnLZE0KKMFjZCdwA5gifg6vNmwnX5XUaow5:6k5bEvEruAyrMyUVoHL2VKM3CHpDQW5z","tlshash":"af8412d0e8b3dc30b9165ee930ba4bb1389271e249749c91230e78f2e259ece5df564d","first_seen":"2024-08-19T18:52:54.612273Z","last_seen":"2026-06-25T12:14:32.600342Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2937,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1672,"receive":308,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/api/common/dictEnumMapAll","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.370Z","timestamp":1782389638370,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"POST /api/common/dictEnumMapAll HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US\r\nAccept-Encoding: gzip, deflate\r\nCache-Control: no-cache\r\nX-USER-TOKEN: undefined\r\nOrigin: http://shopeevip.vip\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7882,"size_decoded":3568,"mime_type":"application/json","magic":"JSON text data","md5":"3d1360e1428236b71f16ccf495be9e34","sha1":"b8c6465fd0ba71da8322b3b339f3b972a202d5b1","sha256":"8688f983b66354d1e4e3f31e84eadd209b9b8f0d6e17e92ac54b5ecbad92ca6c","sha512":"5e104287f5b2d6dbee451d16af081996c0572a93700e964a57dc0e111c8fb1910dce07a615dd3ac5b49a2ee7ae8d0e244713703721e2e8f3086f9d3fc6248114","ssdeep":"192:e2Y1Ys18r262EQEZSuG5R1INERUDOx2Af2:eC262EQEZSTb1eDOoAf2","tlshash":"2ff1d680b38c9db08c52d51155933c2979712adef21c8260a6f5fe4db08cb53b71bae6","first_seen":"2026-04-07T18:39:42.058966Z","last_seen":"2026-06-25T13:53:33.786722Z","times_seen":21,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/api/country/list","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.373Z","timestamp":1782389638373,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /api/country/list HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US\r\nAccept-Encoding: gzip, deflate\r\nCache-Control: no-cache\r\nX-USER-TOKEN: undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":327,"size_decoded":490,"mime_type":"application/json","magic":"JSON text data","md5":"c118f2a72a72dbfa54ee52442323d69a","sha1":"eeb0f38436a508171d9c7937685049497ce77ffe","sha256":"8de345af6f24e1ac202bc978b6c15c96380cf366051ca19f1d0d00e3fbe6c72c","sha512":"4addc2381a0a18eb1a91861aec8b34c9ead0f2d06f0c7ff3f3fc35b619ae10c73df3af332d225d536e7e2f5cef5dad1cfd9fc34043b80c363cb68b75e1d742a0","ssdeep":"","tlshash":"48e0266e710cecfde961c012600ea71d687d52a5ecc62c5822cd9f6882c39f2411c822","first_seen":"2025-11-24T14:05:07.623594Z","last_seen":"2026-06-25T13:53:33.791291Z","times_seen":86,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134201-7rblj-llz4db5jw6x103","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.635Z","timestamp":1782389639635,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /file/sg-11134201-7rblj-llz4db5jw6x103 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/vue-router/3.0.7/vue-router.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.945Z","timestamp":1782389636945,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/vue-router/3.0.7/vue-router.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:17:47 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 5339\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=okO73rizzPrhIqvS0M3UuSUpoBZHyHzVZDgxvnFkfkEZmdZ9MjehlKuQ4q%2FHkBKXyBaeaytrtPdofGwXazBCIoe8sgzD04i5m6LO%2BNyr75P0haFlbpoENWLAKT3Y%2F4waLU%2BCKXsz\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39eebc40b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":24822,"size_decoded":8857,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (24752)","md5":"32e2eb91e6ed0512057b2ad1e6d1b242","sha1":"27809df1b99a4b81b6b82ba2985cdd4b1c8bebb6","sha256":"e8707a396dd2f8d74eaaeb2f784074a24d7a71cbe15dcc70297f726b31c160d5","sha512":"0ab7b445b586dd27a0aeb72396350982783129c9ba028ba1db847c9d2acc0de9c90c3c9636e76a21553fedf81031220f3676ea64bf7336644c04da33d744563d","ssdeep":"384:UUcnX3xpR5tumD+EaKGZRpqB1UdEPQFWmexTMCJ:7E3jXtuW+qGZK1UCP5mqMk","tlshash":"01b2c7ddb581b03547e326a0412f250bf27b358db44e8498f269e4d52cba85ec42bf79","first_seen":"2023-03-07T12:09:32Z","last_seen":"2026-06-26T14:00:05.181481Z","times_seen":1192,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/element-ui/2.15.4/index.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.949Z","timestamp":1782389636949,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/element-ui/2.15.4/index.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 121691\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Tue, 03 Aug 2021 11:06:04 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 170001\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J1L4np%2BrxErN3NpGrHQPcwvewAYsx7OUJryxUZNZcPb4vBGtEIqTkl5ckXyspC6bnJ3KxnPivV%2FaWQi4q6B1dwDcsRKLwaqKsWt4q5kmF4ER6yBL2i6riZ%2B5pXUeVtjXZ6ZeWjBr\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39eebca0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":585656,"size_decoded":122725,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65105), with no line terminators","md5":"c51f03d35129d9d1a9da65b24cef7fa7","sha1":"1e1d550d978378980dc3aeb60012da86c2355c4b","sha256":"339747e3a960dd82946bb6b06fcf1dda76b9ee786a337726b535a1d86d6b9c0c","sha512":"8c83157d1a2d4bacafc89ed01d444551151772f1119272c303ace71aa12b6f1fba29da8c9597e2a9baf670c93768286a405a70186b92ba5aae84554b9123c1eb","ssdeep":"6144:K4lrdS1Vqp5xb+XzxEXdUfM2Z0a54VXTnDBHiSuLx8isMZg07LQi:7vS1Mp5xb+XzxEXufM2DEDVHDub7LQi","tlshash":"04c41b8d72c1b5314ba36070503f250bb33b299c680980dcb679d8ea6dbd949526ffbd","first_seen":"2024-03-05T16:56:16Z","last_seen":"2026-06-25T13:53:33.761441Z","times_seen":837,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs//Swiper/4.5.1/js/swiper.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.951Z","timestamp":1782389636951,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs//Swiper/4.5.1/js/swiper.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:04:02 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 857\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Kcp69mHwNxECgCMjdfmgqQgcOIcIGEKaTeMbaXLCSPfmc4Mxl%2FS7M7IQ8IudRtAaPn8hEqhBc7ivRp%2B4pLO745%2B%2BfxvR8u%2FooKRqN36K3tzkEadfWGNAQxXsl6iPty6n7rycEs5l\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39efbd00b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":128745,"size_decoded":29982,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65269)","md5":"2ac19265b38d14235141d184bca54d9a","sha1":"c725eb5a33d093e331e25c3a5ef1272b0f1f648c","sha256":"e2c1132a1877692ca2e8d46203eaae9cf6936b0a9230341c6bfc4b5aedbb1e0e","sha512":"6476ae51cfef0724ba254cff1e5d68f2cda477840954b01b933f1c9608ed6ca5094fe006d5cef7e5a32d54b25fb4a418a3e2c3eb642bcafa0d6bebaacbeac21d","ssdeep":"1536:O/pPCitsufJthaK85kqzOAkRlojU6tU8r5MhkhGllpcXvH7WcWUKcOqylFE8BtOa:+JthJkOAkaRaaGl4fH7WcWUKcOqjtYD","tlshash":"2bc31849b35071e551e72256539ed601a3b66845b90ac0a831b2d8d7acbce8c03bfffd","first_seen":"2023-03-07T12:58:52Z","last_seen":"2026-06-27T10:04:55.095035Z","times_seen":2420,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/sm.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.243Z","timestamp":1782389639243,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/sm.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 928\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-3a0\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":928,"size_decoded":1166,"mime_type":"image/png","magic":"PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced","md5":"92de9d7fd3b292b55da04b88b55f9eab","sha1":"3bd80311b803859f45a2dd7b16848a3b8f6f6c84","sha256":"066216b71393162b557a0024f60ab6e3f85601080fbfe6fdecd2e3c25226ec3a","sha512":"d85b99351af9a552ef7506716264d1194dba12f0ecf43a84c3c2c0142e0c4ea175f13dc94c72f035d921090861c09e407e19a62af1f10c138e39ff1d21d898af","ssdeep":"","tlshash":"221184c2e008c3baf1da93f9a11cc3c4559e272167d6ca3c7a024a56b225a894956c86","first_seen":"2026-01-26T00:25:19.895595Z","last_seen":"2026-06-25T13:53:33.804874Z","times_seen":36,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/element-ui/2.15.14/theme-chalk/index.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.914Z","timestamp":1782389636914,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/element-ui/2.15.14/theme-chalk/index.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 28355\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Thu, 24 Aug 2023 16:36:19 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 170001\r\nexpires: Tue, 15 Jun 2027 12:13:56 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aiT9ndScEGThOXnl7Y5QDWIppN8X8ic8bRMHTdYecSv4LlJijRZI3jOJevIPs2HLkVL2zAewLp5HyaE4OWnh7DeEADnsMcTjSzjUAgejnFXcVp4gN6fLMBDRRzcseFxbGx%2BH5PA8\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39edbb60b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":240033,"size_decoded":29370,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"07ced7e527d781115b5a9f3f3f559884","sha1":"371b1a3e8d3453a2451e76320d9d7c0e301331b8","sha256":"dc86d4797565d05e88d63598128328e2ed6f02f7f6d950a36a1c4ca9eb9c8057","sha512":"a19dda2047af06da26cb446e5a9184fbb87ef5db209368305f4636d5bf28bd29442d05b556540359dc41198218092ce706bf1a7b765e18b3c481c2edd068e10e","ssdeep":"1536:c28Y7SrW3YeWXA1u9w4HCe/l4TEg5fqMEeje378OaiZkW1YO8eQM+yFffwbIcfGc:lvHjahfAG1U2VGDt","tlshash":"b234a7219b03216b612bde6cb6c0ba895f18c323d4725bbbfe95740dc7d34891267a4f","first_seen":"2023-08-28T11:31:40Z","last_seen":"2026-06-28T16:27:00.404848Z","times_seen":1472,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":4,"connect":17,"send":0,"wait":12,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/lib/mobiscroll/mobiscroll.custom-3.0.0-beta6.min.css","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.917Z","timestamp":1782389636917,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /lib/mobiscroll/mobiscroll.custom-3.0.0-beta6.min.css HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:56 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-3b4ee\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":242926,"size_decoded":34204,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"0005accf931955eec5ed86f897e0d360","sha1":"7ae89839cacb8637600a3b0067fe8611edae2f65","sha256":"277dccf22d817aecf00496f547b3704907d454570f579e5f9d147435de498557","sha512":"121b37b857ea680cc979ad6337a0ecd55bf08cd25db73f7252609c7eee616b62d68da9a906d1d7b692c28901db52af573ca473ea0ee321381a453c1dd46b7c10","ssdeep":"3072:AJW0UArN86OfTq6asxZSfXl3ydsO/NPaa:Dq6Loe","tlshash":"a23477a1a706114b743ac997bdc2e7454a18bee3d0224aedf11758d4f7cdaa42cb3f09","first_seen":"2023-04-06T21:01:20Z","last_seen":"2026-06-25T13:53:33.80547Z","times_seen":871,"resource_available":false,"data":null}},"time_used":358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":182,"receive":176,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/css/chunk-145c787c.23c46f76.css","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.998Z","timestamp":1782389638998,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/chunk-145c787c.23c46f76.css HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-109a\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4250,"size_decoded":1473,"mime_type":"text/css","magic":"ASCII text, with very long lines (4250), with no line terminators","md5":"b9cca78eac2416afda2ca110d33c7f1d","sha1":"4f6ad7f05d5dde70452e6c68f347d20096e89625","sha256":"0fd292747758f7391a9d814048cee4d539177187d4fa317b70faff32b37bc251","sha512":"7795a3ff5cc5c7a7d5ca0ccff9989718616c1fb399c3f159c73dc2f4d6edcb35d8a6c722084d53e5d1acefcfd95da133015c8842da83966deddbc1fa64c8d7b2","ssdeep":"48:D3W7LuQU5XroXIWIiwDwzhzdrSiFV5cPMnAe9it6gWAwGH52g2gRpi/6dqEfxqjq:D3W7SQFl3wYPv5cGH9it6ZATi/6kEfAO","tlshash":"d7913427681f2118a023de3082d4099e4339db37e12257fe5b4ae709dfc79d635b1a4b","first_seen":"2026-01-26T00:25:19.806753Z","last_seen":"2026-06-25T13:53:33.782241Z","times_seen":50,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/api/grabGoods/randomList","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.257Z","timestamp":1782389639257,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /api/grabGoods/randomList HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: id\r\nAccept-Encoding: gzip, deflate\r\nCache-Control: no-cache\r\nX-USER-TOKEN: undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6051,"size_decoded":2252,"mime_type":"application/json","magic":"JSON text data","md5":"ed0d9e2f9752737d5b23e0242d5341c8","sha1":"2126484754a3cf2493a8e660fdd3fc3f8b330525","sha256":"2895a1fe65cf6ae8f140176fbaa7174b6cc236f867b1891cbc18a28ec503f72b","sha512":"fa77af752c68c01a7c72b0623dd967b774a72d6201bc7079bfc65d03175885afac5dd5edf069b5f155044e9c8ccad4c939c8fb8a9f3851b3dca96c7173807fac","ssdeep":"96:eLK864qJr+wWUOLKQfVvFG9TmHWu0ZzPR751PMb4e8W5zwdXSJbuHg2eq3XImciE:eLK864qJr+wvcTfviiHWu0tPR751PMbz","tlshash":"a3c1118f8b94f89ca9c0c642516bb58d50d97f1e41a0c78e64c2de9cc5886fb36cc9e9","first_seen":"2026-06-25T12:14:32.6073Z","last_seen":"2026-06-25T12:14:32.6073Z","times_seen":1,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":137,"dns":0,"connect":0,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/kdc.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.657Z","timestamp":1782389639657,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/kdc.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 3948\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-f6c\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3948,"size_decoded":4187,"mime_type":"image/png","magic":"PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced","md5":"09f22e74318fad2e0dc54afab3952ea4","sha1":"2b83cb6e97788af88d88f91cf5f866915285d557","sha256":"d42062c77758a35a30a9a861eac9d68af3ebde5cc2bcaf37a58e00450345b25a","sha512":"2a6d46eeb286b6a4038c7872934798479ae2a7fd9a59d7506da2334375e95d08e5c804960e9d2bfe801f4848e9c0d7ab857394898f8617a19cce1b640cc422f8","ssdeep":"","tlshash":"8281293ab8da697f73f0f7877541d1560a605e49e1138cc20999cb2ba22374fb0db8b0","first_seen":"2026-01-26T00:25:19.830627Z","last_seen":"2026-06-25T13:53:33.798381Z","times_seen":36,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":91,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/js/app.8fa092f2.js","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.927Z","timestamp":1782389636927,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/app.8fa092f2.js HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-140d70\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1314160,"size_decoded":389202,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (54736), with no line terminators","md5":"41749035dd8b687ee244a53b297aa7a9","sha1":"6d4ba2cd3cd35a591425f71df04f4132aa7f7159","sha256":"1751a468cbaf1d6eaa711cb9454838b12812c4e22f9ff2751711b95225ae2f66","sha512":"ba55d1a1ec6aae6d22d0c5cd56ee023c0c08dcabeb1cf7038235714316298ace751cb79f39c8e660f7babac1a226516be6d8bd099f9d829c69ae154126a1e1f1","ssdeep":"12288:+AJufza6qFlDu2XKkd6lX8I82S11yo52ZQiKkQn1+paHilxaNpgD9ogO/xXIDxDk:5u2uaWEuAkzPa1","tlshash":"33356c8433ed76f60047e846500f3e3ca1660ebaf746d1c16c71a69c26edab14637e7a","first_seen":"2026-06-25T12:14:32.609199Z","last_seen":"2026-06-25T12:14:32.609199Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1234,"timings":{"blocked":-1,"dns":0,"connect":174,"send":0,"wait":183,"receive":873,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/js-cookie/2.2.1/js.cookie.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:56.953Z","timestamp":1782389636953,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/js-cookie/2.2.1/js.cookie.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Thu, 25 Jun 2026 12:13:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:11:49 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 5339\r\nexpires: Thu, 25 Jun 2026 16:13:56 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Aoo9NV1u0BA7mPXW%2FNbxZrqLS4MyboNeLmdkxjtNw7lNvsJxyXKvIkbvyRRpFCTA%2F6qlrBsdxmLnQFrg%2BHDAX0Kc4LKH1mnmww%2F0b9YwETRz1QesoOeTqXXluESrzlGACcaxM%2B%2BU\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a113e39efbd50b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3883,"size_decoded":2288,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"fa93e8894edb6245ab03883633b12b6e","sha1":"e3ba4c7d1a8876090756fd31715b4f6af6fd649e","sha256":"3fc8d8f8c09ee97d9c8cd4a6178ad0bd921a9cbe55c14513e0c06738c9dc8d15","sha512":"263612833aa8f4ad08798184b25311604f1a3bdb6aecacb71103661159007ba0a9d7803094930b3276f47e980492bdd8c49f208508ab88ebd9c0875166278621","ssdeep":"","tlshash":"0c8124b0bb8d35ab0e0e21145b1f60cd927ce43a085949f6ec9df1321468c2e977ad6e","first_seen":"2023-03-07T12:01:36Z","last_seen":"2026-06-27T07:56:40.424538Z","times_seen":3406,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/loading.png?2222","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:57.479Z","timestamp":1782389637479,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /loading.png?2222 HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/css/app.37de37b7.css\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:57 GMT\r\nContent-Type: text/html\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"697335ae-2a4e\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:1.11.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Vue.js:2.6.10","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"SockJS:1.3.0","description":"SockJS is a browser JavaScript library that provides a WebSocket-like object.","website":"https://sockjs.org","common_platform_enumeration":"","icon":"SockJS.png","categories":["Web frameworks","JavaScript libraries"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10830,"size_decoded":2632,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (5984)","md5":"b78c34f0ed48db5027c5942208d8a989","sha1":"73156d0616dd9e2389b4c52e4c9389411a923df8","sha256":"529268397cc769f6f0c655232c372f165dd45c535461c72dce5985361a0ba89e","sha512":"a2040a1fbefa217a724a971c32a9ce32e2d5acd5bcdf6cb6c3628015e3dfd8da17f011ee46b8e1a6e291e4bf341a632da3ed6e21cc16879952966ca1f9149bd7","ssdeep":"192:vsNZeKIC+LFGSFGmQnqQn7jFIJ8++MngiAQntyztM4/Z0tf+ahaOa0acaiaBaaaf:vOZUGEyQntyztM4/Z0tJ","tlshash":"7a22bc39da0195aea591dd9b9a29f72dc4eb8c3b2030e444b66d4d9fcf74fd4012a483","first_seen":"2026-01-26T00:25:19.739728Z","last_seen":"2026-06-25T13:53:33.769618Z","times_seen":53,"resource_available":true,"data":null}},"time_used":176,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"ws","addr":"ws://shopeevip.vip/api/websocket/server/057/44myjuwv/websocket","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:58.618Z","timestamp":1782389638618,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /api/websocket/server/057/44myjuwv/websocket HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-WebSocket-Version: 13\r\nOrigin: http://shopeevip.vip\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: dne5Mh5Qu06SUftZHZ8kzw==\r\nSec-GPC: 1\r\nConnection: Upgrade\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:58 GMT\r\nConnection: upgrade\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\nSec-WebSocket-Location: ws://shopeevip.vip//websocket/server/057/44myjuwv/websocket\r\nOrigin: http://shopeevip.vip\r\nUpgrade: WebSocket\r\nSec-WebSocket-Accept: 1QLUH2gktrRKnCNLzzPdzo0rt90=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":380,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T05:32:18.765025Z","times_seen":16815642,"resource_available":true,"data":null}},"time_used":355,"timings":{"blocked":0,"dns":0,"connect":177,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/icon/choice.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.259Z","timestamp":1782389639259,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/icon/choice.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 3783\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-ec7\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3783,"size_decoded":4022,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"9ee884074f9dd972499ff36d8a7e1ead","sha1":"16123611cfc227cf90e75fb7b133f2107446982a","sha256":"e002b62111932bfe9026c705fcbb398ffff043e16e3ed0d0cb025ed5e28382e3","sha512":"0045b3be9e443e8a88f0601549132bafa0626075aa83f7ae3236cfabc4cdf541c8bf84a21fabc955ee1fc3f02835e2c5033e9faf12e5e5238668bb35b41a7329","ssdeep":"","tlshash":"bd714c9972344d64f9ef377940991da5e02b1d759f3cb12b8b028c2ede2e28b1367d08","first_seen":"2026-01-26T00:25:19.886706Z","last_seen":"2026-06-25T13:53:33.76359Z","times_seen":36,"resource_available":false,"data":null}},"time_used":323,"timings":{"blocked":149,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"shopeevip.vip/static/tabbar/mall.png","fqdn":"shopeevip.vip","domain":"shopeevip.vip","tld":"vip"},"ip":{"addr":"148.66.3.116","port":80,"asn":45753,"as":"Netsec Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.266Z","timestamp":1782389639266,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /static/tabbar/mall.png HTTP/1.1\r\nHost: shopeevip.vip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/m/index\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Thu, 25 Jun 2026 12:13:59 GMT\r\nContent-Type: image/png\r\nContent-Length: 1975\r\nLast-Modified: Fri, 23 Jan 2026 08:47:42 GMT\r\nConnection: keep-alive\r\nETag: \"697335ae-7b7\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1975,"size_decoded":2214,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"836ce0b7a2d869189525b323fb667983","sha1":"7691e0edeec05d549b111ed3c13a93f9579fbb2b","sha256":"a4fa5817c547d64d1413d3fdb3a5ddd0036ce0ae195dfeebf86a72bd0e36f5bb","sha512":"fa64ea5b4de52fda87096ed0acfa9f05f1691510cff6eef4a1539c34dea0c7524d3a287aef50cafa36e20082335e299eae9761f58c5ceb504af108f9eaecfcd4","ssdeep":"","tlshash":"95410c94ed312826dc0c7e3650ea00a9806fd70b41613cd58e9223c7b067ecf2dab553","first_seen":"2026-01-26T00:25:19.769855Z","last_seen":"2026-06-25T13:53:33.797614Z","times_seen":36,"resource_available":false,"data":null}},"time_used":496,"timings":{"blocked":322,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-25","alert":"Phishing Block","trigger":"shopeevip.vip","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"shopeevip.vip","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/7d71792592f0f2f7dc2c7f3a4753d56e","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.679Z","timestamp":1782389639679,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/7d71792592f0f2f7dc2c7f3a4753d56e HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"7d71792592f0f2f7dc2c7f3a4753d56e\"\r\nserver: SGW\r\ncontent-type: image/jpeg\r\nx-mms-request-id: 490a1adc67aa494cab5136e7b1b1704c-6a1d53f2\r\ncache-control: max-age=15552000\r\nage: 2082710\r\ncontent-length: 354838\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 17682752752326220771\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":354838,"size_decoded":355242,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 800x800, components 3","md5":"7d71792592f0f2f7dc2c7f3a4753d56e","sha1":"fe16f6885387a73e23db08ea890c9d779ae25812","sha256":"0c98407512a6dd42c2e0d0a91883b753c5772bda01f54f07ea3294633d0b22cc","sha512":"eea9a683c3fb5ab1b0e84ddec840276640bc512dd871398852452657dc65a25c41d1329d6b22f16d550524f02631438e5e18d2cf167961823d4d5f92498cc83a","ssdeep":"6144:DHkPICNfMKQLsnN6pvOmPYCVEuXJWMg82FPl2vLMbkgRiulmeG1swdIxFz:DdkMKOEN6JcglXJdF2F8CnoubWswyx5","tlshash":"ba74125290283025be4c9317c6e6a94f21d26f6829efed4d93750f94f2cd390ead0c5d","first_seen":"2026-03-15T12:21:09.618992Z","last_seen":"2026-06-25T12:14:32.611939Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2906,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1553,"receive":396,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"down-sg.img.susercontent.com/file/sg-11134207-7qvem-li9t6nmng5xi71","fqdn":"down-sg.img.susercontent.com","domain":"susercontent.com","tld":"com"},"ip":{"addr":"43.174.53.56","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://shopeevip.vip/","date":"2026-06-25T12:13:59.684Z","timestamp":1782389639684,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.img.susercontent.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2025","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 May 2026 11:16:29 GMT","end":"Fri, 27 Nov 2026 11:16:29 GMT"},"fingerprint":{"sha1":"F7:B9:B3:8A:57:9E:0B:28:0D:21:F0:AB:19:4A:02:79:57:DC:E0:32","sha256":"E2:92:F7:B9:C9:B9:A4:A9:49:3D:48:1B:25:FD:25:A0:01:ED:F8:77:D6:B7:67:72:F3:CE:22:08:CE:3C:73:8F"}}},"request":{"raw":"GET /file/sg-11134207-7qvem-li9t6nmng5xi71 HTTP/1.1\r\nHost: down-sg.img.susercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://shopeevip.vip/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\netag: \"8513db07c9de4d4b8f08d7b64405b4ca\"\r\nserver: SGW\r\ncontent-type: image/jpeg;charset=UTF-8\r\nx-mms-request-id: 14e2e842c9e84d7fb74cef5348feccb7-6a02e01f\r\ncache-control: max-age=15552000\r\nage: 3816297\r\ncontent-length: 418731\r\naccept-ranges: bytes\r\nx-cdn: tencent\r\naccess-control-allow-origin: *\r\ndate: Thu, 25 Jun 2026 12:14:00 GMT\r\neo-log-uuid: 2489863078378559603\r\nx-cache: HIT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":418731,"size_decoded":419148,"mime_type":"image/jpeg; charset=UTF-8","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3","md5":"8513db07c9de4d4b8f08d7b64405b4ca","sha1":"c53eca1018b55a1aac6d9f07168a415170785c08","sha256":"bb3a8cbce559a8652152865111c5f31d8607547775fe07bcf902ea2ce20721c3","sha512":"404055673c4107954c2d364fee43dd4017093c4886b7920122f4fc69d255261828b35694b6760a14d986823daad2417c187fd85b9c3f7a4976e76739c22234bf","ssdeep":"12288:ZtMp2xoeRVWRdT4fqbjdysOytubdiceZKn:ZtK2hSKfqvdysOSubFn","tlshash":"7494f0fe8180ff7dbfe45792345cef3e2d6024347c6dc92e0a65185ea286901468ee67","first_seen":"2026-06-25T12:14:32.612958Z","last_seen":"2026-06-25T12:14:32.612958Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2937,"timings":{"blocked":957,"dns":0,"connect":0,"send":0,"wait":1592,"receive":388,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}