Report - www.benjamaspadungsong.shop/

Report Overview

Visited public
2025-06-20 11:42:13
Tags
scam
URL
www.benjamaspadungsong.shop/
Finishing URL
www.benjamaspadungsong.shop/
IP / ASN
104.21.40.10
#13335 CLOUDFLARENET
Title
Women's Phase Eight Designer Clothing | Dresses | Jumpsuits |
Scam - Fake e-Shop

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-06-18	1.7 kB	157 kB	142.250.178.67
www.benjamaspadungsong.shop	unknown	2024-11-14	2025-04-10	2025-06-16	46 kB	3.6 MB	104.21.40.10
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-06-18	535 B	8.0 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (46)

	URL	From	Size	First Seen	Last Seen
	www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/bootstrap.js?ver=1	ScriptElement	54 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/bootstrap.js?ver=1 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25 Last Seen2025-06-24 10:19 Times Seen354 Hash fd4050839637043f309325aa8962288d 889b8d35a1bec7b7d65e5239099ff05f74c80fb4 11f48fb49a71e6be4b3f8c038e89daab6a648321db3b6b7fc6e4c8e973fe8431 Loading...

	www.benjamaspadungsong.shop/	ScriptElement	96 B	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:26 Times Seen14519 Hash d8772bfb2ec7dec5262a932766aa1669 8440292e305868d90f6f15a3ea6975a3b9774f43 c19c2ee1fc048012374a6d75c822daf9b7c0d4ebef7ab8df1ab22b229a00d012 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6	ScriptElement	22 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-24 21:25 Times Seen9511 Hash d017e13d65b4c79d9a22a4ab9e6bcdf6 f766dedd77e0f910742439a102a23dbeade89299 2ef1fc50a9d78f044028f3ba7378c5bbec0188de74a5217491040f9ba435fca4 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.0.3	ScriptElement	18 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.0.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:21 Last Seen2025-06-24 21:25 Times Seen9550 Hash 3d4d4eab5c2ecf501484e45c46d2cc6e aa9024a11600daecfa9f7db24ee2a7191309a329 d6da22ca2b7058c87413a1927d90c13548535cfcb0959175fc0b32ac7417768b Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19	ScriptElement	387 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15 Last Seen2025-06-24 21:25 Times Seen9812 Hash 811c3da189b804d68fced85b9a191e1e bc4d1ec616ba622029414fbceb0bc8d9e903f3fc 3b0b8378134e79a3a7058080f4d617969ac9b159d448be7b15e595719e5c9518 Loading...

	www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	ScriptElement	90 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:45 Times Seen20324 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.benjamaspadungsong.shop/	ScriptElement	2.2 kB	2025-04-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 12:56 Last Seen2025-06-24 09:55 Times Seen29 Hash 44c526d793543b30e9007d36283a84c1 0b1dacc43173a97b810e135c687b19730c8300b4 3e82983a90daa9f9f523ad49df9ac51bfd0751c80baf7a0d372f5a230c3e3d3e Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.7.0	ScriptElement	992 B	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:17 Times Seen14861 Hash 787fe4f547a6cb7f4ce4934641085910 c2dee88d5bdfef214ce9c56f71a1df51cda0f328 654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=5.9.3	ScriptElement	50 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36 Last Seen2025-06-24 21:25 Times Seen9574 Hash 6e9cb4f7cf17f8cac3a17f6d90960eba ee7d45d8d250040c7aedea363c7b2b7e7bf65bcc 8c2230e1348d437f591bf23a319992999e4869ab9aef142861ae206b05ec1be4 Loading...

	www.benjamaspadungsong.shop/	ScriptElement	183 B	2025-04-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 12:56 Last Seen2025-06-24 09:55 Times Seen29 Hash 0dba92c69086a375128c3df492776e77 3c437278c74d619aeabf9e47b0a17effe5b222e8 f8c88aef0429949f5840b88b9a45101120570e77048a6102d7b3f165fe4bee1c Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0	ScriptElement	25 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-24 21:25 Times Seen9548 Hash 540be7a8259fbeaf4a732a344b267a7d ac51cc9bb5df51bd9568de8707b9b176f7d60254 a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485 Loading...

	www.benjamaspadungsong.shop/wp-includes/js/wp-emoji-release.min.js?ver=5.9.3	ScriptElement	18 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-includes/js/wp-emoji-release.min.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:45 Times Seen14163 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0	ScriptElement	1.8 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:17 Times Seen17352 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0	ScriptElement	2.9 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:08 Times Seen15119 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0	ScriptElement	3.0 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:17 Times Seen11917 Hash 8bc2109ef48cabf7a26b73d7c3536c5f 0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b 8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8 Loading...

	www.benjamaspadungsong.shop/	ScriptElement	131 B	2025-04-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 12:56 Last Seen2025-06-24 09:55 Times Seen29 Hash 4519c3ed54552500adadbd37eb945759 d6b9e4fdc3f9987ecdb4304502cf9cc5774c8ce4 df04eb0647107100e54a14dab7fe33f6239ec68a74a12742ac07c09c6b7e1fea Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=5.9.3	ScriptElement	71 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-06-25 01:24 Times Seen13008 Hash 0f64f3a3a0c620a6756d36abaff1b4a6 4738d7f9885db2cb9370766974c8f6b22e9ec29d 00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b Loading...

	www.benjamaspadungsong.shop/	ScriptElement	271 B	2025-04-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 12:56 Last Seen2025-06-24 09:55 Times Seen29 Hash 8098c8dbd3672a2a6df4595f768a5643 a1692d35627e68a29079d042e154864ca983d0e3 e1ffe02a370c784b7b1386d408af1ad19973fb13e96f0aca5086e4ab387b7d96 Loading...

	www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/navigation.js?ver=20201202	ScriptElement	4.3 kB	2023-03-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/navigation.js?ver=20201202 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:44 Last Seen2025-06-24 10:19 Times Seen353 Hash 91a850aed787f5b49abbe5bef15e07c7 4973041c464f3b320a0d347f0966d60de6a1ca79 d50b557a828460bbb61ee88f59770356669b23d7a1288ebf6bce94827c4286e1 Loading...

	www.benjamaspadungsong.shop/	ScriptElement	2.2 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 01:03 Times Seen10579 Hash cc6a0fa7152159e48d38e4d993f4c97d c9a88fa9cc00cedbc0d454a7875cb2503b7b9e24 5cad5dcc261bc6949e544662a54863753a9b7850c764e731da87e9845dbb0bbb Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=5.9.3	ScriptElement	3.2 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10 Last Seen2025-06-24 22:34 Times Seen9833 Hash b34ee54abcdda3f94566ea5e7312fdbc 4230cb168bd0bc6f831da5ac89517c865e0bda96 de4945bf8c32247c3570f1945b4af05f3efb440b46c93c18d2f428ae9162c8ea Loading...

	www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/skip-link-focus-fix.js?ver=20201201	ScriptElement	880 B	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/skip-link-focus-fix.js?ver=20201201 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11 Last Seen2025-06-24 23:15 Times Seen712 Hash 381a9581291af74e622863b9ae1436bd f35f2272e27f51dcfaa0a78f7595bce348b62b9c c9104efada1e3f4b091183121a645b8298608c10a5b16bc3b1cbcb409b4f2777 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0	ScriptElement	2.1 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:08 Times Seen17426 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	ScriptElement	6.5 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:43 Times Seen11025 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

	www.benjamaspadungsong.shop/	ScriptElement	332 B	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:44 Times Seen19380 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0	ScriptElement	9.5 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-24 21:46 Times Seen10564 Hash 87c54edf7dad7dfdfde015f6eee45ff1 96ec1a06ea3093c47e1e2fc4444ada7f4456135d ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da Loading...

	www.benjamaspadungsong.shop/	ScriptElement	152 B	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:44 Times Seen35308 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	www.benjamaspadungsong.shop/	ScriptElement	1.5 kB	2025-06-20	2025-06-20
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-20 11:42 Last Seen2025-06-20 11:42 Times Seen1 Hash 50fd2ba6c9cfd28704dee7ee80016427 fd7701640fb41943e7daf5f84b00e60faa250b0a fab03d1f521bb6c58b516117a440c96603c9a09582f907ae04f8cd697664f836 Loading...

	www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	ScriptElement	11 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:45 Times Seen28986 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	ScriptElement	19 kB	2023-04-05	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 15:05 Last Seen2025-06-25 02:43 Times Seen10982 Hash 60c88069166716db064d51e9d7eb9bc8 28e5067d2a3b688bb5828500fffc8783f3884443 bab8bc75e2e121a7b9d273f9f38c33881e07e29070704adeb351d8936d14a16f Loading...

	www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/jquery.matchHeight.js?ver=5.9.3	ScriptElement	12 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/jquery.matchHeight.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30 Last Seen2025-06-24 10:19 Times Seen455 Hash a4b580e5f6599aed3c62ffa1c146f63b 80435ee79890b5132b00325cf0a79da096a0032b 6ab454b01db552da83a2c237a00e6c0dedd462a48693a26d8354b4e0d9487ee4 Loading...

	www.benjamaspadungsong.shop/	ScriptElement	141 B	2025-04-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 12:56 Last Seen2025-06-24 09:55 Times Seen29 Hash 719392a5048bf50099f3178ce53ae283 8bb1f0757bcbd18c223c4e97c0b1ddeeb7b710bf 80cbe6ae716d561b42d6015cdccff06eb78b6db7af054ffb9ba41f3ee409d93b Loading...

	www.benjamaspadungsong.shop/	ScriptElement	135 B	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:40 Times Seen36400 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	www.benjamaspadungsong.shop/wp-content/uploads/customer_style/customer-style.js?ver=5.9.3	ScriptElement	2.7 kB	2023-11-01	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/uploads/customer_style/customer-style.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 15:20 Last Seen2025-06-24 10:16 Times Seen213 Hash 4ffefcdb286f4a51ae61de2bd55507f0 a60886abcd0af5a4b58c9c21adffabb33f9a532e 4271592985a0984727e2ec0942cb1c02b86b8fc0db804cf51b536b9781049c48 Loading...

	www.benjamaspadungsong.shop/wp-includes/js/hoverIntent.min.js?ver=1.10.2	ScriptElement	1.5 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-06-24 21:25 Times Seen9700 Hash 8767142f87d8ba86f0094540b29b6d97 754645c23f4faf070fd3460c5aed47ef99314790 491ee20092ce969e6785601ae4595748d4ac5ee4df19012b19b77de6c9dfd357 Loading...

	www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/custom.js?ver=20201203	ScriptElement	3.3 kB	2023-03-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/custom.js?ver=20201203 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:44 Last Seen2025-06-24 10:19 Times Seen353 Hash 8975e7d1e13018083cc0f866cc6b3efe f2bce4e476f933fbb772408d275d9666020a97f7 2900a0f086974d7b8c0bac162113131946a265154186fd4d68db320d054ab5bd Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18	ScriptElement	129 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-06-24 22:40 Times Seen10359 Hash 0ce245fda586eafae053aa341ccdd2c7 3f0e5d08540860f4e1c4ba0db2bd3decf481ea44 5c9203860ae657336596c738730f9d362e00bb9948a0f581fb074270c328e26b Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0	ScriptElement	20 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-25 01:03 Times Seen10844 Hash 596d6e5d8400fd1e913f9adc21071f93 fee2d7a4ac08d5a522c2298a5ad3ed30ac9e62ec 159faf7827be43b4c85a35fc941924a9de59a169d42d600b49161f60debf9dff Loading...

	www.benjamaspadungsong.shop/	ScriptElement	294 B	2025-04-10	2025-06-24
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 12:56 Last Seen2025-06-24 09:55 Times Seen29 Hash 1cadc8cc8114c10fbebd53ed46ceba19 3d477ccbfcc0ef20138880bcbfcde055e0d205ee 51e5d8e8cf68568cf66d475780e374ae5be4069fb3449f771786e51bb988003f Loading...

	www.benjamaspadungsong.shop/	ScriptElement	341 B	2025-06-20	2025-06-20
Pretty URL www.benjamaspadungsong.shop/ IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-20 11:42 Last Seen2025-06-20 11:42 Times Seen1 Hash 8c36ba0ef0f4907bd404efc362e68469 537d440978e2daf7cf999cd181388567d3044509 1e32e13ce54efbe2895798466661a143ef3796aee3f45a72eefc37e003f1f0da Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=5.9.3	ScriptElement	1.2 kB	2023-03-13	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:00 Last Seen2025-06-24 21:25 Times Seen11074 Hash ae0a0a22ffec7989b87b813b626cda4a a5648556090a1310db15a5348ec4d62085c99052 c9c140eeebc4a3eb26325e247df563b2e6433c19bae11e0bdf21280c3482c0b0 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=5.9.3	ScriptElement	890 B	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=5.9.3 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23 Last Seen2025-06-24 10:17 Times Seen629 Hash 3a7b373af67acb42960573e8102cea01 ace16912963355e393d455bc45742528a09aeb7c 9c01fb1b898505d38fd4bbf6060fd263bac9e0cb0cbeb0b4e1567618afb01f20 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.7.0	ScriptElement	31 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.7.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-06-24 21:25 Times Seen9655 Hash 3f5389289396a324e7795d0995259ae9 9f77d2801ce315d937b30a157e53c691d6082928 23cf1b7e88d0a1380682288aa82eb327f78221b2097868f45e11620b3c7a9b60 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1	ScriptElement	22 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-06-24 14:01 Times Seen548 Hash e7334b0f16895605c1234c69ad86fd4a 6da3372e63cabe2d3c6b0dfecc70770c2f69921b e89d7526092c671c0a01bd02152a595271fb97f87bbd3ba379b5e8b1071f6b2d Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0	ScriptElement	15 kB	2023-03-07	2025-06-25
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 02:17 Times Seen12410 Hash 157f18464a93eab7fb62a7f3e618ac2c f47727e80d529d6e4941fea32f2e8a8ee5008b8a 9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306 Loading...

	www.benjamaspadungsong.shop/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.7	ScriptElement	30 kB	2023-03-07	2025-06-24
Pretty URL www.benjamaspadungsong.shop/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.7 IP 104.21.40.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26 Last Seen2025-06-24 21:25 Times Seen9745 Hash e1d6533906ba8cce9da6157ec25c0dd5 050b3341c7d1497494334ab17a78c04ddc61dc1f 9aafa38d431075d0f6c738a2633785fd32fada0e14408bd662d95e608ddb4daf Loading...

HTTP Transactions (78)

URL IP Response Size

GET www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

104.21.40.10

200 OK

19 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (19110)
Size
19 kB (19261 bytes)
Hash
60c88069166716db064d51e9d7eb9bc8
28e5067d2a3b688bb5828500fffc8783f3884443
bab8bc75e2e121a7b9d273f9f38c33881e07e29070704adeb351d8936d14a16f

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tT5xyLdnRAbDcO5d3u6Qy0fWwShUlcwdC6sof9GyVzHiHzMSRZpJoKmO60cKMuOjK1B3Hq15QYnUazMyMSQF3%2B%2FM5sYOe0w5UQuk32a4aZFJCovpMuKulqi7eSJ4RuYkrsNp%2FzWzD9XoOUzrIXk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-4b3d"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb4e5eb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=984&min_rtt=0&rtt_var=411&sent=458&recv=279&lost=0&retrans=0&sent_bytes=359248&recv_bytes=31270&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=952&inflight_dur=231&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/customer_style/customer-style.css?ver=5.9.3

104.21.40.10

200 OK

7.7 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/customer_style/customer-style.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text
Size
7.7 kB (7722 bytes)
Hash
90c9050c640e475ada27ac94395909d8
9d9d02c78ac9b475c1dacf4998c3709d55e1de79
af2157367eafc19a71365ebc63d326082275f4dbfda4f22733426f0f80290a90

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/customer_style/customer-style.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Uq%2BY5lfn0OnVDhVPkTS9vTCwV8ujeFjow4mIj83TjdcuyOno0KxeIPPE%2Fisha%2BpLGFR%2FXTSmGD42jCmM6sIv772w66Zfg0PV2teRXRUFwjYqf0UrlvEnT434r22Y3%2BDtPqtO1nQkz9RGjWB1Y8%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:54 GMT
cf-ray: 952affeb3e56b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1018&min_rtt=0&rtt_var=569&sent=444&recv=275&lost=0&retrans=0&sent_bytes=347765&recv_bytes=31084&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=947&inflight_dur=225&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19

104.21.40.10

200 OK

59 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
59 kB (59154 bytes)
Hash
aa4c7e30d0f121bf25a7f892dc618ea9
09dc35a42918427d0943cdf6c96805aeeed1664c
9435c8c132bbfd387d4b14f9e07d60c0ba7fb5a1eca2b49882f62b2ef113eee8

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R54fDG7sHN65x8Dj51YRu5UWi1IlN3VABUULZ5ivtd5EEO84woCtJ2b7Bax8A4gTDKNzP12JlifQmC70xJ4GPgqhglbE35%2B0sDLrsT7nPwAC4ewu%2BupfqpJOQvxS%2B2%2B4SmHqIhsjIytD90FYpXw%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:54 GMT
cf-ray: 952affeb3e57b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1062&min_rtt=0&rtt_var=641&sent=421&recv=274&lost=0&retrans=0&sent_bytes=321873&recv_bytes=31038&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=944&inflight_dur=223&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.7

104.21.40.10

200 OK

30 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.7
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (315)
Size
30 kB (30529 bytes)
Hash
e1d6533906ba8cce9da6157ec25c0dd5
050b3341c7d1497494334ab17a78c04ddc61dc1f
9aafa38d431075d0f6c738a2633785fd32fada0e14408bd662d95e608ddb4daf

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.7 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RvGKcGnFWPf7DXvYFECxDcZwALJWVyqVlJCA8Xs00pdlUQvoQoeHsHsWNUBQ%2FgWtAemXLwXNesrhj0XA7e%2BbmbXuI6CeystDiXh9eoeVq6J1ijDiHFcElh8LynUNHpO0ekYfeYEBCz3DYhICmNo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:34 GMT
vary: Accept-Encoding
etag: "64899652-7741"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebce6bb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1021&min_rtt=0&rtt_var=323&sent=662&recv=316&lost=0&retrans=0&sent_bytes=584708&recv_bytes=33104&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1028&inflight_dur=281&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.7.0

104.21.40.10

200 OK

31 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (30459)
Size
31 kB (30678 bytes)
Hash
3f5389289396a324e7795d0995259ae9
9f77d2801ce315d937b30a157e53c691d6082928
23cf1b7e88d0a1380682288aa82eb327f78221b2097868f45e11620b3c7a9b60

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aj7gJU3rWqOGBIVYQL3R0U%2BVM9ZN03c04Op0pwYIr4wTFCGtjlJPwS0VhKgto1WlNK7T%2F9hmJxCBBxNuE%2BYJuCc7kg0dOov3nhF0HEi2%2BuAWbXrXck7n%2FEzQ1kiomGnR%2B722B6EYcacMZm1QXpQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:34 GMT
vary: Accept-Encoding
etag: "64899652-77d6"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebce6db512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=794&min_rtt=0&rtt_var=177&sent=385&recv=266&lost=0&retrans=0&sent_bytes=285256&recv_bytes=30672&delivery_rate=7019432&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=19872&unsent_bytes=0&cid=95617bd4385e5291&ts=905&inflight_dur=196&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=5.9.3

104.21.40.10

200 OK

1.2 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text
Size
1.2 kB (1215 bytes)
Hash
819be97c3bb3de9978da74b3f2a14cfd
a901fcccb749f3797d4700afdb6bbec19b0b2199
12ad57a8f41b41e94cab57ccc2c0e711f7b910ecd14b242e5394e4190ddbd190

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/fma-product-custom-options/front/css/fmepco_front_style.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=a%2BtZmVcvTqAXbTcBGewMhnZm%2BSGyc5kSE5LoG6BGdZUHpMPeK%2FDvC%2FONorcXic3Srf1WPHwtuKrotH56BukXekyk6jmPwfgjkvgfKs4T70f0Gf4tSRdX76s%3D"}]}
cf-ray: 952affe968590b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0

104.21.40.10

200 OK

486 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (65358)
Size
486 kB (485496 bytes)
Hash
447df0b82fca972d090f4b55835b9289
58eaaa51c8ddc2eb3a46e7e93b9c1da5946ee23c
184158b86609c0805441583af03684e5d2e349b481bc5e0b405eef4f63d0f25f

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WVL0GoNv3McEjXjvNw51ikUAiYhRGojIOGdQqa2dhxdeyoWYhQrInbf35elgoJ0lR%2FohtfJ1uGMN3bIXiDTEBpSm0vti4v3Vr9ZlXECwK1%2FqpL9r88mMYPK4eedHehwOe7LAp9ovCnj4Y2CGgTQ%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe9ce3eb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1461&min_rtt=0&rtt_var=2083&sent=161&recv=195&lost=0&retrans=0&sent_bytes=39444&recv_bytes=23325&delivery_rate=1699119&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=14872&unsent_bytes=0&cid=95617bd4385e5291&ts=713&inflight_dur=66&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=5.9.3

104.21.40.10

200 OK

890 B

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text
Size
890 B (890 bytes)
Hash
3a7b373af67acb42960573e8102cea01
ace16912963355e393d455bc45742528a09aeb7c
9c01fb1b898505d38fd4bbf6060fd263bac9e0cb0cbeb0b4e1567618afb01f20

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mUwazhCpvkCVkesfrdAOiXWJG%2FZPDWEh2G7WJMw%2BV4CKDGmWVyTTbszkQe%2BYN6jwmhZet%2BTqog9F88ob46dTysWTbAnl5Ww1%2FrtQkbRNv6tCH4cS4v%2FCO7F3W21mC8JprE8Xp3qBG9HSMbLH%2Bvg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:41 GMT
etag: W/"64899659-37a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
content-encoding: br
cf-ray: 952affe9de40b512-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=688&min_rtt=0&rtt_var=650&sent=185&recv=207&lost=0&retrans=0&sent_bytes=64650&recv_bytes=24560&delivery_rate=2629772&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=20164&unsent_bytes=0&cid=95617bd4385e5291&ts=724&inflight_dur=76&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/352103025_1495214994348534_7517040173802143425_n.jpg

104.21.40.10

200 OK

319 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/352103025_1495214994348534_7517040173802143425_n.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1400x700, components 3
Size
319 kB (318685 bytes)
Hash
c0e30fd751e125d7876f71ac3a49a02d
ef263d61c980e1e6666e0bc95a511ce003ab208d
e8bb3d0725e2430d9b276783afcc464fe94ea115b5145f95bffcb3cd92a760f8

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/352103025_1495214994348534_7517040173802143425_n.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UYRVRni%2BPMd5slAcaKF3JZmeXuOTbv%2F%2BVF5KjmCes6UEeYD6jdHiSXmXSrzBUpI5ggVIsPWDLIhIBm2Mokb%2Fry2AuBXpOw%2BN3XBte4OczpetRxkMJfS%2BS62V0OUX52TwjiowNlXrAqmpgfRTuKg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:30:14 GMT
vary: Accept-Encoding
etag: "64a8bc26-4dcdd"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff29e94b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1778&min_rtt=0&rtt_var=1484&sent=871&recv=350&lost=0&retrans=0&sent_bytes=808954&recv_bytes=39855&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=31209&unsent_bytes=0&cid=95617bd4385e5291&ts=2119&inflight_dur=364&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=5.9.3

104.21.40.10

200 OK

3.2 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (3019)
Size
3.2 kB (3151 bytes)
Hash
b34ee54abcdda3f94566ea5e7312fdbc
4230cb168bd0bc6f831da5ac89517c865e0bda96
de4945bf8c32247c3570f1945b4af05f3efb440b46c93c18d2f428ae9162c8ea

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/fma-product-custom-options/front/js/accounting.min.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mREmEcasG%2F2kerqmew4SR8SM3txFnh7c6FkbcZBXESIwrIsvi3jvkprJPD9OyJ0wzC6S46NSl81TQSDyE%2FL734YNt7lXcR9Hk0ePdH1MX0ikRoIUYC%2FdLeXu0wvuNHVxkn2K%2FZI85UWNMrguDb4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:32 GMT
vary: Accept-Encoding
etag: "64899650-c4f"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affe9ce3fb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1651&min_rtt=0&rtt_var=2269&sent=153&recv=194&lost=0&retrans=0&sent_bytes=29844&recv_bytes=23281&delivery_rate=1359294&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=15258&unsent_bytes=0&cid=95617bd4385e5291&ts=707&inflight_dur=60&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0

104.21.40.10

200 OK

7.0 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (7043), with no line terminators
Size
7.0 kB (7043 bytes)
Hash
456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tdtTazxfjrWbwWM7I6lPvwZ%2Fq8cXwaPsGeG5u4G1w7hDchDCziBTOk%2BT4%2Bpb9vg%2FZKdFzA07BQTAQ3Dhz%2BGaG4yozlc4%2FAydPWC5ffrVc%2BzLJs%2FlVpFNq%2BSh%2FEaHDz7IO6RueZFErJJZS3D9468%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:54 GMT
cf-ray: 952afff02e82b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2181&min_rtt=0&rtt_var=2564&sent=689&recv=326&lost=0&retrans=0&sent_bytes=607038&recv_bytes=35711&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1605&inflight_dur=304&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/fonts/fontawesome-webfont.woff2?v=4.7.0

104.21.40.10

200 OK

77 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/css/font-awesome.css?ver=5.9.3
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: font/woff2
content-length: 77160
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I6CUK%2F1q%2BDtQwObuyfj90jISYLpTS0qanbhlL2Z1%2BGHKxa%2B%2Bu4M3PKBbrXQfLaYNQ2AE5MfB95hEw1NLXpDkzGrRL8wQ9ztXN9zgqaoZUpYBkJcU7qM8PbydyB7bM5ccIvQ1k2cc2172BMYlyIA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
etag: "64899654-12d68"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff08e85b512-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2685&min_rtt=0&rtt_var=1706&sent=717&recv=330&lost=0&retrans=0&sent_bytes=639153&recv_bytes=35895&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1799&inflight_dur=317&x=44"

GET www.benjamaspadungsong.shop/wp-includes/css/dist/block-library/style.min.css?ver=5.9.3

104.21.40.10

200 OK

83 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/css/dist/block-library/style.min.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (39791)
Size
83 kB (83419 bytes)
Hash
7e7a1a9e3712cd16dade7c6e811ba28b
45e216af145ea7c3f30099c869482785ad921bc2
cdbdaa122823601390c7dcbdd1afde33c2f1a432b8c5ff025c6137ee99ba541a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dRm2KoPbxUIm0%2Bi2Avu%2B7UTRh9QXcV1n2Ye4QTQzEko0T35v9Rph8F%2FpNz4tGiVWFtsbBr1Uf%2BtkO0v553%2BKUrsvZXpWw%2Bwe%2BZgShKQlBsVBxgjQS%2Fbqt4A%3D"}]}
cf-ray: 952affe9785f0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

104.21.40.10

200 OK

6.5 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (6494), with no line terminators
Size
6.5 kB (6494 bytes)
Hash
64e89b93b02055fb75ea0913089ded0b
9ccf854a6acedb27496725fa7570a670fd7bd572
a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zyp5BD4Hu1ko7HpwUIIGeqECn%2F11yWQnVkYOl9EPFJ%2BvKGzdbm5s4NQhIQvcYfP9vrR266jU7fbR8x3DvcEUGFg%2BqA8ZaB5lVLFBr6L5%2FJwzctkJL8tOgawG5AH5d2vyTWa0pQ%2FkqYwVf5DhC%2FE%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-195e"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb3e5cb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1062&min_rtt=0&rtt_var=641&sent=439&recv=274&lost=0&retrans=0&sent_bytes=343117&recv_bytes=31038&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=946&inflight_dur=224&x=44"

POST www.benjamaspadungsong.shop/?wc-ajax=get_refreshed_fragments

104.21.40.10

200 OK

538 B

URL POST
www.benjamaspadungsong.shop/?wc-ajax=get_refreshed_fragments
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JSON text data
Size
538 B (538 bytes)
Hash
cb43e775eede61e6d34a01e996968d48
74d1aaee558c6fc8de05596fdf5e8843ce3e8510
79ca4377e16ebd3b2b85d1b1aba230a3cd2f20ff16b0498442e23954e805ed25

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.benjamaspadungsong.shop
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:57 GMT
content-type: application/json; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3HFRbUXfJU1Ofo3tI49goWGl7RfnilZhQjCqUMFskT1mCBqf2g2FVfLpdOUM1ujTOi9fiaFudM3ZrEAVySyYOg8OcKd3VnY289amRCP9k7N71hAV%2BS6xWs6w79cxQFU3emJPYpWHGmYIyFG91WM%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
pragma: no-cache
set-cookie: ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151; expires=Fri, 20-Jun-2025 12:11:51 GMT; Max-Age=1794; path=/
access-control-allow-origin: https://www.benjamaspadungsong.shop
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
cf-cache-status: DYNAMIC
cf-ray: 952afff52eacb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1862&min_rtt=0&rtt_var=673&sent=1445&recv=419&lost=0&retrans=0&sent_bytes=1468853&recv_bytes=44935&delivery_rate=14064959&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=41087&unsent_bytes=0&cid=95617bd4385e5291&ts=4662&inflight_dur=491&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0

104.21.40.10

200 OK

1.8 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (1668)
Size
1.8 kB (1834 bytes)
Hash
d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7QBHtctl%2BUhCptpCLABSt%2FFEyWnU635%2FlfrppfFSQPWBA6AUtkycphDKAZxa%2F3Q30SktbqkAg%2BjsMgCAhum4Fsi5tnavW3LoHi87FLDPtW5OCW2QjiKuyYVr79wUbNa3KGIpP1lmBGVtIadcfvM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-72a"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb6e62b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=953&min_rtt=0&rtt_var=475&sent=553&recv=292&lost=0&retrans=0&sent_bytes=469692&recv_bytes=31903&delivery_rate=10265974&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=25769&unsent_bytes=0&cid=95617bd4385e5291&ts=972&inflight_dur=248&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.0.3

104.21.40.10

200 OK

18 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.0.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (18465), with no line terminators
Size
18 kB (18465 bytes)
Hash
3d4d4eab5c2ecf501484e45c46d2cc6e
aa9024a11600daecfa9f7db24ee2a7191309a329
d6da22ca2b7058c87413a1927d90c13548535cfcb0959175fc0b32ac7417768b

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.0.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOtZTftGhbMedmVf%2BqvQFGVLmcYlCf9AiLtC8lVsAJTiV6cJnxHz8ApyEqvoRxG3vzidzkWLqtBwzkInToe4hB67Jua7v0d5LIXyHIPcuaFA6PA5blvOpchp1Oj6JPDddkd%2BAGFwc30dzUo%2FYeA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-4821"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb8e65b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1082&min_rtt=0&rtt_var=868&sent=649&recv=311&lost=0&retrans=0&sent_bytes=571897&recv_bytes=32880&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1001&inflight_dur=273&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/women-jackets-phase-eight-mabel-puff-sleeve-jacket-candy-pink-300x420.jpg

104.21.40.10

200 OK

18 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/women-jackets-phase-eight-mabel-puff-sleeve-jacket-candy-pink-300x420.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x420, components 3
Size
18 kB (18188 bytes)
Hash
75b7882369917f0b6b6a4e313514d138
678b78241c0cd6edd4dde7c563fe7babace4e530
a10922eb3e1042b20984210a586d524bc314f248402b6778f91dafe68d9b2dd7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/women-jackets-phase-eight-mabel-puff-sleeve-jacket-candy-pink-300x420.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KGmYO6lA4M%2BP0n2aRLq1RKa2wMj00QdloSdjsB75KdWz9ZfckCc8iqNXgYLztJ9FHIsryEqK2rZyhdLO49yUh2VZTiIZkNnVYC%2FGmMNFwpAB%2FEzG1kZvIelpPhXToSow7wutSbLwPKEItPkPpKA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 15 Jun 2023 10:52:59 GMT
vary: Accept-Encoding
etag: W/"648aed8b-470c"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 952afff29e97b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1544&min_rtt=0&rtt_var=1248&sent=896&recv=352&lost=0&retrans=0&sent_bytes=837758&recv_bytes=39953&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=33987&unsent_bytes=0&cid=95617bd4385e5291&ts=2120&inflight_dur=367&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0

104.21.40.10

200 OK

2.6 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (2630), with no line terminators
Size
2.6 kB (2630 bytes)
Hash
eade318fbed91c096467dffa56406638
69d306a2097e792f99c80a5e0bb8863260399cad
d589803f3ab380582ab137b22493c2bacaa92424fa88cee212e80288cac11fbb

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/jquery.selectBox.css?ver=1.2.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=B1thwsOl6ukONcw0RyBRHPBYNTW2MSRIcai8uyWYxJSbeSXamLcTBxzobgleGuQ%2FkDqzXsmirc2B%2B%2BhP7QZw23WMewYAa%2BabvU3ac9Qn9nSuhXT%2FCC49tEg%3D"}]}
cf-ray: 952affe9786d0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1

104.21.40.10

200 OK

2.7 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7%2Fjgciv8GTKfhbOU6eHfYDbVJaGfyfqcYmhqG6K9buRH1jY%2F4tMm6mxt6WCHThqzqIm3Hilar2B6NtGfzci%2FAbQIzr4GzdCxvnCb6u3rAVfsdi6Ebi%2BN1dA3%2FpGDEzHIahuEfLpF8sLmi5tHHlE%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe98e34b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3773&min_rtt=639&rtt_var=2775&sent=137&recv=185&lost=0&retrans=0&sent_bytes=12802&recv_bytes=22181&delivery_rate=421494&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=95617bd4385e5291&ts=692&inflight_dur=45&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/css/font-awesome.css?ver=5.9.3

104.21.40.10

200 OK

37 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/css/font-awesome.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (372)
Size
37 kB (37414 bytes)
Hash
c495654869785bc3df60216616814ad1
0140952c64e3f2b74ef64e050f2fe86eab6624c8
36e0a7e08bee65774168528938072c536437669c1b7458ac77976ec788e4439c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/css/font-awesome.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G9k7qMICzsuKilYw8R2NIoeZ%2FaQ%2FSj%2Bu5mQ5wJc5OcEnpxsXx2JkTpOTuYzpRnpYBUiHXXHKGHg1f8C%2FNOq3MTt5SvdxblOk2Rf4NuGkKQjYAiU3EbWs5%2BSHEhEzeKh32A2X151QPptOqr1Lah4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe9ae3ab512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3773&min_rtt=639&rtt_var=2775&sent=137&recv=185&lost=0&retrans=0&sent_bytes=12802&recv_bytes=22181&delivery_rate=421494&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=95617bd4385e5291&ts=694&inflight_dur=45&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/images/arrow.png

104.21.40.10

200 OK

30 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/images/arrow.png
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
PNG image data, 13 x 7, 8-bit/color RGBA, non-interlaced
Size
30 kB (29539 bytes)
Hash
e3dd35fc80821dab690968e6828d3f4a
cc50ca6a794ffd8ed4a60c2586800178d9a44260
c73981759ac2c243c463ad2bc5c3ee39200b91adfeea07f760965cc0159d9c86

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/images/arrow.png HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/style.css?ver=5.9.3
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tA7C6I1x21wqMfWvIwrGjF0Y%2FEHVRI8sFG9oFMvtR7hmkZrlNEVMBTyxTfdJp77Na8QH0FeQ886Nc4t2VF%2FeedoGtkfHtkP%2Bbkk8kjFTBV7zgX%2BGcurmPc%2BbQmp0EfLmNMQhZ%2B%2BRiU6MZdotXRU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-7363"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff07e84b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2216&min_rtt=0&rtt_var=1992&sent=691&recv=327&lost=0&retrans=0&sent_bytes=609072&recv_bytes=35755&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1654&inflight_dur=307&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/fonts/flexslider-icon.woff

104.21.40.10

200 OK

1.3 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/fonts/flexslider-icon.woff
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
Web Open Font Format, TrueType, length 1268, version 1.0
Size
1.3 kB (1268 bytes)
Hash
f8b92f66539473eea649c8514eb836a0
9876bce2a7b39125bd7a406c445e46e704d7b37e
333fe8266952f16c8b686f3edd78293da28e6eaef314dca86bc4eeaa23f290e8

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/flexslider/fonts/flexslider-icon.woff HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.7.0
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: font/woff
content-length: 1268
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dQmMdb8uwXjxB4ao7fQTUZk5j%2FrgpbvcSiwbNGpvPuoco3Cm%2FJlOL4%2B78PrMJLdlUzCq5vms2BFp%2Fakp0JCzlJ7Mrux1WQlJsfqd1pCYW4dacQ%2B9KPXiFsVRLP7fYrDnwPxyHijXTs4bvYQTb54%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:34 GMT
etag: "64899652-4f4"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff55eb2b512-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1895&min_rtt=0&rtt_var=360&sent=1437&recv=413&lost=0&retrans=0&sent_bytes=1463867&recv_bytes=43947&delivery_rate=14064959&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=41087&unsent_bytes=0&cid=95617bd4385e5291&ts=2429&inflight_dur=441&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0

104.21.40.10

200 OK

31 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (30441)
Size
31 kB (30603 bytes)
Hash
d3ec229e04c8634c88cc4cb3f2934c11
785cb4beecaad98329fff0a54f9a5536cda200ab
73835f9dd494931cd0562ab2d4db8aaf3d54dca375abade1794ad1a12ae0d97c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/font-awesome.css?ver=4.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=AcHWQu1Bf%2FpbUl%2Bnr8YGXKx0yKix0sUWaeJCOCRba3AlwwSbX8JTmTouE2THgakSmZvk8XjKSVLkNPzUxJlX1IgLAwtz%2FG%2BCjmc3NAnfpO7OXDo4YbfGgYY%3D"}]}
cf-ray: 952affe978700b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/css/bootstrap.css?ver=5.9.3

104.21.40.10

200 OK

57 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/css/bootstrap.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (386), with CRLF line terminators
Size
57 kB (57449 bytes)
Hash
a2e8a58ca8977bd1df5410c7897d6fb5
a74743c580126c78f841b47f5eb782aa33792af8
9fcb3051178ad6973074ec612f8e95c36cb1026b492218837bfdb65246e8e95a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/css/bootstrap.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c0CFfPfXYFyFuTtYhzjORwPZPvmQCT4c%2FV%2FYfmUfw4MqSn2GFay1tOG1W3sH0qqFttp913EuL4v%2B3UkunMJqC1L3UuoepaMcJPrd1qDbpK8mwWU9kJglUIAA4%2BDAYG8ZYBMbgDX5q0Nv8frvaC4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe9ae3bb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3051&min_rtt=0&rtt_var=2862&sent=139&recv=188&lost=0&retrans=0&sent_bytes=14538&recv_bytes=22660&delivery_rate=830489&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=14496&unsent_bytes=0&cid=95617bd4385e5291&ts=697&inflight_dur=50&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/style.css?ver=5.9.3

104.21.40.10

200 OK

121 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/style.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
Unicode text, UTF-8 text, with very long lines (604), with CRLF line terminators
Size
121 kB (121330 bytes)
Hash
12eb68cb35771607a7e0bac680109bd2
d21674804c8c8f563a0f2a441f9d6465e0e50edb
4fcb9c6f4b1f91ee535902f76e0ad4b759dd0a7d6d6b9746d623e6ad13111c12

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/style.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dIDPKdEbI%2B%2FqENZQif%2FhTlhMgqKvFmI0PfEmTP9Jm8rwxPImv0EMRpRhBJumwJwwQ2UXQspdp3bSFCqOpKFnOllvRRJwrztZmhcDlQqNF9UlXW2WDp3Jdrz1gmKxxmcliqMZsDNP0a7Ccm8b43c%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe9ce3cb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1461&min_rtt=0&rtt_var=2083&sent=161&recv=195&lost=0&retrans=0&sent_bytes=39444&recv_bytes=23325&delivery_rate=1699119&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=14872&unsent_bytes=0&cid=95617bd4385e5291&ts=713&inflight_dur=66&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0

104.21.40.10

200 OK

20 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (19905)
Size
20 kB (20124 bytes)
Hash
596d6e5d8400fd1e913f9adc21071f93
fee2d7a4ac08d5a522c2298a5ad3ed30ac9e62ec
159faf7827be43b4c85a35fc941924a9de59a169d42d600b49161f60debf9dff

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pgbmChjub3T%2FrSRY1Y2F%2BNiNwntL5eJyGvk7GFVqlXt7s7F1uEAqyWqIPtdIQJ1uEo3f1jV75S4L%2BJXXZBxgClYyxY9kOTBG%2BxPusakXR6irQox%2BpIHW5lWMMZXb7cHXaGj44m1Zy6VMjh58gz8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:34 GMT
vary: Accept-Encoding
etag: "64899652-4e9c"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebce6cb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1021&min_rtt=0&rtt_var=323&sent=668&recv=316&lost=0&retrans=0&sent_bytes=591444&recv_bytes=33104&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1029&inflight_dur=281&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/jquery.matchHeight.js?ver=5.9.3

104.21.40.10

200 OK

12 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/jquery.matchHeight.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text
Size
12 kB (11776 bytes)
Hash
a4b580e5f6599aed3c62ffa1c146f63b
80435ee79890b5132b00325cf0a79da096a0032b
6ab454b01db552da83a2c237a00e6c0dedd462a48693a26d8354b4e0d9487ee4

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/js/jquery.matchHeight.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sHE5sAoOGdWk1k6EKGPx6QcJFvKDnL2CziXCInZ2bYpNKonzKUnoOdVSGoYwjb7WMcMPCe56E6iLK8sr0cxEVpsr1uXz3cN11%2BI%2BTJLI6FHcomMtlOFN8u1ES8DylgT%2BeoFtEMfFo3B3t%2Borpqw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-2e00"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebae68b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1062&min_rtt=0&rtt_var=448&sent=656&recv=314&lost=0&retrans=0&sent_bytes=579009&recv_bytes=33013&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1022&inflight_dur=278&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3

104.21.40.10

200 OK

210 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
210 kB (209885 bytes)
Hash
375cb90c5332267d20d6043a63444e6d
c9e3491ce137aa644109765ff590e0d30da35e72
9e4f92eb422eb08e7fdb89083b71ade65040e339149d2c901f957dc7f202055f

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gUdZHlo9fmCSu1EYgeCD7iPOFUtv5zBAmlhmmRjoBQBfX3fan3LKFzEJlrzfjhwUJaPLJrnCACL5yaW6PPgqTXbjZl7AZ0ygRwu1Fv0dAT0GIAQMe0oQIMI%3D"}]}
cf-ray: 952affe9786c0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css?family=Roboto+Condensed%3A400%2C600%2C700%7CGoogle+SansMuli%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext

142.250.74.10

200 OK

7.3 kB

URL GET
fonts.googleapis.com/css?family=Roboto+Condensed%3A400%2C600%2C700%7CGoogle+SansMuli%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
ASCII text
Size
7.3 kB (7332 bytes)
Hash
cef623f8b22c2993d489bbdfc772686a
84a1c33d286625d46ec0a628c75044395ec9b157
fd8e2add91ccdf1a6e234fc2ef135c83a5787e7a3b926003066b03f0bbe862b0

HTTP Headers

GET /css?family=Roboto+Condensed%3A400%2C600%2C700%7CGoogle+SansMuli%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 20 Jun 2025 11:41:54 GMT
date: Fri, 20 Jun 2025 11:41:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1

104.21.40.10

200 OK

22 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (21904), with no line terminators
Size
22 kB (21904 bytes)
Hash
e7334b0f16895605c1234c69ad86fd4a
6da3372e63cabe2d3c6b0dfecc70770c2f69921b
e89d7526092c671c0a01bd02152a595271fb97f87bbd3ba379b5e8b1071f6b2d

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v5RMDI4fMPPSd%2BSDdnA4hgRoXbnk%2FFSoUugefLWgxdQqlx02CVZq%2Bn5b1vZPyDMzYDrGQGQkpMx1ykSP7NKarejMcBE48el3jHuZgWzapK9bOGaNN4KMEX%2F4EcOzPE%2FYna4DtPxYYs78vIysHXo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:32 GMT
vary: Accept-Encoding
etag: "64899650-5590"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb4e5fb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=955&min_rtt=0&rtt_var=304&sent=496&recv=283&lost=0&retrans=0&sent_bytes=403440&recv_bytes=31454&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=961&inflight_dur=237&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/newsletter/style.css?ver=7.5.1

104.21.40.10

200 OK

6.3 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/newsletter/style.css?ver=7.5.1
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text
Size
6.3 kB (6282 bytes)
Hash
e82f7c1bf34a75131708b4d9028fd6f1
587555f2d28fd2b15d470116a6e3c322a06e7cc1
ff7cbd7d791c0f01f1b7db211981bb0506701f663e9e41422586b9e625753ba3

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/newsletter/style.css?ver=7.5.1 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wbmovSFsldztvkchV8DVqgaQ7eQxvLW6WTuYzSdISqW%2FyUndRA6be6XxZmTBQ2BC0XJpeGfFaq%2Fobv2FFNsqeXZysLVLYm297623Mhg2Eg5MIG6CjSEVb60DITmn1VQl2aDCBPSe7O69d81qtNc%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe9ce3db512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1461&min_rtt=0&rtt_var=2083&sent=155&recv=195&lost=0&retrans=0&sent_bytes=32244&recv_bytes=23325&delivery_rate=1699119&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=14872&unsent_bytes=0&cid=95617bd4385e5291&ts=710&inflight_dur=62&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/navigation.js?ver=20201202

104.21.40.10

200 OK

4.3 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/navigation.js?ver=20201202
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text
Size
4.3 kB (4283 bytes)
Hash
91a850aed787f5b49abbe5bef15e07c7
4973041c464f3b320a0d347f0966d60de6a1ca79
d50b557a828460bbb61ee88f59770356669b23d7a1288ebf6bce94827c4286e1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/js/navigation.js?ver=20201202 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=057vMfdZQ1M7FEC5PsTlSSlBuCPgaoUJYP9Wd4PAYnK%2BC5rviEoonIJGoWC0botff%2BDa4Ocqvjr95BKLvSpnRH0T21pKFIR0Ub6ZYb4abPxbrY9ZSu2wksn1iRDmrP5idXTFgxG2%2BUnSCdjpXB0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-10bb"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebae67b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=767&min_rtt=0&rtt_var=236&sent=381&recv=264&lost=0&retrans=0&sent_bytes=281944&recv_bytes=30579&delivery_rate=7019432&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=19872&unsent_bytes=0&cid=95617bd4385e5291&ts=883&inflight_dur=173&x=44"

GET www.benjamaspadungsong.shop/wp-includes/js/hoverIntent.min.js?ver=1.10.2

104.21.40.10

200 OK

1.5 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (1465)
Size
1.5 kB (1500 bytes)
Hash
8767142f87d8ba86f0094540b29b6d97
754645c23f4faf070fd3460c5aed47ef99314790
491ee20092ce969e6785601ae4595748d4ac5ee4df19012b19b77de6c9dfd357

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zxRphPcb2vJsF4wU8s9EL1GfYbZf5qq05Mp1evXjcUHAZQ4HjQvJSL7pSZsktHiLXSDfeDmlXSnjhwlIm4%2FzySNB7qPxLr7q%2BPHx0qXTlw0syf5k80ZRH4kQ3G24UMJY3Jzrgg0ujt7A665LMTw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-5dc"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebbe6ab512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1062&min_rtt=0&rtt_var=448&sent=660&recv=314&lost=0&retrans=0&sent_bytes=583272&recv_bytes=33013&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1024&inflight_dur=278&x=44"

POST www.benjamaspadungsong.shop/wp-admin/admin-ajax.php

104.21.40.10

200 OK

1 B

URL POST
www.benjamaspadungsong.shop/wp-admin/admin-ajax.php
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 248
Origin: https://www.benjamaspadungsong.shop
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:56 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8QdusVNq4WdRXanBvPVqDD1KUWaEf1q0tVcBtRHtT%2BOmWZdwcPohF3Xdec%2FkL1jPdgjQCa5V7NtHKjRpUaa3AquOANMsL%2BJcSMg6VAVOIXOmSyWSBnDwbUnI9yhkKQVvrKxmebg4QW%2FKYbiDnNQ%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
pragma: no-cache
set-cookie: ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151; expires=Fri, 20-Jun-2025 12:11:51 GMT; Max-Age=1796; path=/
access-control-allow-origin: https://www.benjamaspadungsong.shop
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 952afff02e83b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1989&min_rtt=0&rtt_var=561&sent=1443&recv=418&lost=0&retrans=0&sent_bytes=1467879&recv_bytes=44890&delivery_rate=14064959&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=41087&unsent_bytes=0&cid=95617bd4385e5291&ts=3695&inflight_dur=489&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10006-gigapixel.jpg

104.21.40.10

200 OK

89 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10006-gigapixel.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=72, yresolution=72], baseline, precision 8, 400x560, components 3
Size
89 kB (89363 bytes)
Hash
84ab3795a9b891a1479c2f19d86e1d37
971d7b27f2738049dd29678bfc52c5ff1acc8ab1
45a50f17369aee679f1c5bb2985f70ea0384aa546bc4777f658217a9cde7bb9f

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/10006-gigapixel.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=83epLsJLBZUIDqVQGV0DHSbL5Tuzg0Jvt779wYxzzb7O4v%2FqNz5lBkcmeW3A%2BUtpxyt%2F7cQHyppPIm7Eg%2BnRogurIj9ULzAmzFzzsNkgmUG%2Fsdgzjo3KCZdSNYnilm0yLR0%2FT8SE1ATK%2FXWYflk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:42:36 GMT
vary: Accept-Encoding
etag: "64a8bf0c-15d13"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff29e9bb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=969&min_rtt=0&rtt_var=549&sent=965&recv=360&lost=0&retrans=0&sent_bytes=916244&recv_bytes=40354&delivery_rate=16142695&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=26983&unsent_bytes=0&cid=95617bd4385e5291&ts=2127&inflight_dur=372&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0

104.21.40.10

200 OK

9.5 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (9139)
Size
9.5 kB (9533 bytes)
Hash
87c54edf7dad7dfdfde015f6eee45ff1
96ec1a06ea3093c47e1e2fc4444ada7f4456135d
ef22199864042b8ceeee3729f3254c140df7217364045737ca3aadf8434fb3da

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JUx7aeD8bjaGLRzud5pq8ee7gBz9J6vhttDpPLgCwqBnAqaoptdcN%2Fgb8IkszJFhcmTypZF7f7v%2Bg3xP6ObkcN0rnJXZkuipcuwEa6yLCqP1ddqNAtZd7TJ4FIzN%2BHO8KS%2FosdDtFrh7JKaDE%2BQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-253d"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affea3e47b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1039&min_rtt=0&rtt_var=564&sent=276&recv=235&lost=0&retrans=0&sent_bytes=162951&recv_bytes=29237&delivery_rate=4175580&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=16580&unsent_bytes=0&cid=95617bd4385e5291&ts=782&inflight_dur=113&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=5.9.3

104.21.40.10

200 OK

50 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (31759)
Size
50 kB (50544 bytes)
Hash
6e9cb4f7cf17f8cac3a17f6d90960eba
ee7d45d8d250040c7aedea363c7b2b7e7bf65bcc
8c2230e1348d437f591bf23a319992999e4869ab9aef142861ae206b05ec1be4

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cEaYIm3rxEa2K1OPZxmJOG%2BF450JYWeeKBR3Vpwjepw3xS3OKu2zwxZldEffIGSXS0r%2BdMfXkSoSrr%2B62v%2BTZe88eww7qvHT%2BzXBAxi2%2F2NrQCdp3oaOuKeE9MDttrAmhbxAYVOZKq973psj%2Fes%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-c570"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeaae4cb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1148&min_rtt=0&rtt_var=1034&sent=343&recv=252&lost=0&retrans=0&sent_bytes=238395&recv_bytes=30038&delivery_rate=5219479&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=19609&unsent_bytes=0&cid=95617bd4385e5291&ts=850&inflight_dur=164&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/custom.js?ver=20201203

104.21.40.10

200 OK

3.3 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/custom.js?ver=20201203
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text
Size
3.3 kB (3262 bytes)
Hash
8975e7d1e13018083cc0f866cc6b3efe
f2bce4e476f933fbb772408d275d9666020a97f7
2900a0f086974d7b8c0bac162113131946a265154186fd4d68db320d054ab5bd

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/js/custom.js?ver=20201203 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8bf1HmKMEXZdT147es9ms3LbMow0RYamDmgToaHsex%2FfV8l%2Bc2l5%2BqOCk2lukS88tgpog3Hhrsj9eyXDMr0tcWq7Su1ceGzJCCRvUOEGOzFeUReh4XJ0yjBUomXjJVcp4K2hr4B%2Bby%2B1XcKPsOo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-cbe"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebae69b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1054&min_rtt=0&rtt_var=575&sent=654&recv=313&lost=0&retrans=0&sent_bytes=577315&recv_bytes=32969&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1013&inflight_dur=277&x=44"

GET www.benjamaspadungsong.shop/wp-includes/js/wp-emoji-release.min.js?ver=5.9.3

104.21.40.10

200 OK

18 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/js/wp-emoji-release.min.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (15224)
Size
18 kB (18181 bytes)
Hash
116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6B32gIbeQARI1IzuvpH4m0DTmAkVVz6D4kdPoWY96g0T5mopcNzpFc0uzwEvNKhsZPP%2BBufGi3tKeZq9u65wmy3%2BY1yrVTbtKJQlTDKlc9rnk1LTCkmecqFCRG5wpjisYJsQl54z5XSofr7XWwE%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-4705"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affefce7fb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=997&min_rtt=0&rtt_var=261&sent=683&recv=325&lost=0&retrans=0&sent_bytes=600680&recv_bytes=35666&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1544&inflight_dur=287&x=44"

GET fonts.gstatic.com/s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 51412, version 1.0
Size
51 kB (51412 bytes)
Hash
9e5e97447fcc00eca79e97de3b337831
efafc4ef0f1ac7fefb6e22be4ea9c681a53d415a
8d230115e58faa2ed303bee567b91d1a792e0c958a0118998b53648b2ab7c057

HTTP Headers

GET /s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.benjamaspadungsong.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 17:13:23 GMT
expires: Fri, 19 Jun 2026 17:13:23 GMT
cache-control: public, max-age=31536000
age: 66512
last-modified: Wed, 28 May 2025 16:58:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10004-gigapixel.jpg

104.21.40.10

200 OK

198 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10004-gigapixel.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, xresolution=72, yresolution=72], baseline, precision 8, 400x560, components 3
Size
198 kB (197538 bytes)
Hash
6f7a41811f8fcfc4514b98f48a7cb756
cda1c97598761f12048e284e93f7075e1ec9e9a5
acd6da7555369b02f96a71f4d63db38334f8e81c0fcbe8ceab3c605087529ff1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/10004-gigapixel.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JOdNMwf6cAlXSqRBsoWgh%2BcSppGQG6ID4VA24v694uG85M%2FqZ9vaFZghs5UucDYNYLobBNPN0SJsSPRVfLlqo7gTYT1L8moF45acsQx%2FC8ir9K8pQxaatSdqZq1IUXJLu7agIwwxpQcO3UES9Zk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:41:27 GMT
vary: Accept-Encoding
etag: "64a8bec7-303a2"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff29e99b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=877&min_rtt=0&rtt_var=181&sent=1079&recv=374&lost=0&retrans=0&sent_bytes=1050280&recv_bytes=41014&delivery_rate=16443433&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=37547&unsent_bytes=0&cid=95617bd4385e5291&ts=2137&inflight_dur=384&x=44"

GET www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

104.21.40.10

200 OK

11 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UesIkI873b1oWnHzv5k4zsMmWI7hmGoYn%2BIoX5%2FAK3RTYigS27iRMgdSd4lzUrMhIFUh6ixxDzpZ3mak7sKnaeAoCUUFx%2BKsCHD2tKNQMZ4E2oy6PvBEZ%2BkjFLHWBuZPSdH2pUaCRTeoYQf%2FOjY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-2bd8"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affe9fe42b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=608&min_rtt=0&rtt_var=136&sent=234&recv=220&lost=0&retrans=0&sent_bytes=120298&recv_bytes=25828&delivery_rate=3924274&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=20516&unsent_bytes=0&cid=95617bd4385e5291&ts=740&inflight_dur=90&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=5.9.3

104.21.40.10

200 OK

71 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64131)
Size
71 kB (70851 bytes)
Hash
0f64f3a3a0c620a6756d36abaff1b4a6
4738d7f9885db2cb9370766974c8f6b22e9ec29d
00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kGSGsiz56sJO7vjABARStGXZJemSSDvXJpbGzGQzv2B%2BW%2FVRl%2FG2wfIEmYJjKsQv8NduN37PQ17UN4F%2FXgWRBxK5o5Ah9WRrAzEgLwO1jsFHe90G%2FqqNhQezqLW48Wk0HDYqhiARohQNAtHZFP0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-114c3"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeabe4db512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=801&min_rtt=0&rtt_var=524&sent=360&recv=259&lost=0&retrans=0&sent_bytes=257658&recv_bytes=30357&delivery_rate=5615537&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=26966&unsent_bytes=0&cid=95617bd4385e5291&ts=859&inflight_dur=169&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0

104.21.40.10

200 OK

2.1 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (2139), with no line terminators
Size
2.1 kB (2139 bytes)
Hash
b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9JGESo6YMXxiCWqpC4M%2B8MzmpgQwQE4JJI10L4cHt3aSl8sdaYFzmNm%2B44DN6m%2FHMKhrioTAEnRmHDrasUPWAir%2B%2BsYr7LdPZWbhWh3UrvW2sB7sfN4DX%2BhlWpj0oY5tDWrFJ93RTfyoxoyIa6s%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-85b"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb8e63b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=735&min_rtt=0&rtt_var=233&sent=643&recv=310&lost=0&retrans=0&sent_bytes=569115&recv_bytes=32836&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=994&inflight_dur=269&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10001.png

104.21.40.10

200 OK

4.2 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10001.png
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
PNG image data, 180 x 60, 8-bit colormap, non-interlaced
Size
4.2 kB (4153 bytes)
Hash
799a163c8c4ff17f73091fd96fa1214c
8452cb563090e5622d59f9359945f968b68bc05b
6f847206b8de4a249671240c2e5bb61182ea068b27a3a3b6de7e767160776c91

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/10001.png HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N7%2B%2Fb6XDqzPkKOwmXLdTDBLCsnk%2BbhaJDHhUBc0cJjd5%2FhL3Q%2Byskn8P46bXpPP4fNpeb8qA3MSqIFqjv8rXZjZYPWfVN%2Bb0WUccrzYALvBVWLbjIn3g7Wght0zk%2BfK2PRL2EcFuTpqUss9z1QY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:21:03 GMT
vary: Accept-Encoding
etag: "64a8b9ff-1039"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb1e53b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=725&min_rtt=0&rtt_var=153&sent=408&recv=271&lost=0&retrans=0&sent_bytes=310425&recv_bytes=30902&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=923&inflight_dur=200&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/skip-link-focus-fix.js?ver=20201201

104.21.40.10

200 OK

880 B

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/skip-link-focus-fix.js?ver=20201201
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text
Size
880 B (880 bytes)
Hash
381a9581291af74e622863b9ae1436bd
f35f2272e27f51dcfaa0a78f7595bce348b62b9c
c9104efada1e3f4b091183121a645b8298608c10a5b16bc3b1cbcb409b4f2777

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/js/skip-link-focus-fix.js?ver=20201201 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jx4pA%2FlpFPhHDxUceu1jrThjD26VQyotoq56903dHNX2Lh%2FZ%2FVql7vM5pt2fB78%2BI%2BdMDHHfIDzivR4QOCxA2h3nUvUF%2FCf5Qqf5JJ0wjzZweJzOr2bsy6Zw5WlLAZTpeOZOg9af%2FoVmAS2kmhI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
etag: W/"64899654-370"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
content-encoding: br
cf-ray: 952affeb9e66b512-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=735&min_rtt=0&rtt_var=233&sent=646&recv=310&lost=0&retrans=0&sent_bytes=570702&recv_bytes=32836&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=999&inflight_dur=269&x=44"

GET fonts.gstatic.com/s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 51412, version 1.0
Size
51 kB (51412 bytes)
Hash
9e5e97447fcc00eca79e97de3b337831
efafc4ef0f1ac7fefb6e22be4ea9c681a53d415a
8d230115e58faa2ed303bee567b91d1a792e0c958a0118998b53648b2ab7c057

HTTP Headers

GET /s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.benjamaspadungsong.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 17:13:23 GMT
expires: Fri, 19 Jun 2026 17:13:23 GMT
cache-control: public, max-age=31536000
age: 66511
last-modified: Wed, 28 May 2025 16:58:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10002.jpg

104.21.40.10

200 OK

61 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/10002.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1400x700, components 3
Size
61 kB (60973 bytes)
Hash
c5333929539e84aadc74a516030f6070
6e67553b2b8158c90089b56983e8c4a080168cd1
a8bda4415beda42fc049a64c3c01f07880e99f22fe0ae18962a9ad08861d3bc3

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/10002.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bz3N56hogA0glUJWDRA2uANsE2GBDewtuHgeil2yJw%2BKSsrNeSE1S%2B%2Bkoy1d6Tmru1bJvN7%2FPtgJb7Z%2BkSfUaVuN4xuUHVoJbGYmnrxCL9BRKfXJWRt1tiuwl1OjOf16w7wufLSfvW1VAh1nP%2FY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:30:08 GMT
vary: Accept-Encoding
etag: "64a8bc20-ee2d"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff28e93b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2137&min_rtt=0&rtt_var=1530&sent=829&recv=348&lost=0&retrans=0&sent_bytes=759097&recv_bytes=39761&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=25857&unsent_bytes=0&cid=95617bd4385e5291&ts=2115&inflight_dur=362&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/favicon-16x16-1.png

104.21.40.10

200 OK

274 B

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/favicon-16x16-1.png
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
PNG image data, 16 x 16, 8-bit grayscale, non-interlaced
Size
274 B (274 bytes)
Hash
7e687e5107468c9d40a120a07d10b6f6
bce8d0d6e22424d2b1b6a1e7ac135662c21f5925
2d4588069016b3fdc7ea3e0e92fab9f238f4424188b7814e34111833ee2c966e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/favicon-16x16-1.png HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:56 GMT
content-type: image/png
content-length: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kvG08R4vNY2PWKzvIUZuaAUB7bQU2wljpC%2FoDGjkm34Hcp5tIVQgkJctb5nGQZG449WTAP6Cvz33WWSen320ah492JlLdhdgTukJ9EYyMpq2cc3WHOe0E4jFdq9%2Fid3yE0m2SMk0eNPYXlr%2FUnE%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:21:07 GMT
etag: "64a8ba03-112"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff7bf25b512-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1827&min_rtt=0&rtt_var=316&sent=1442&recv=417&lost=0&retrans=0&sent_bytes=1466906&recv_bytes=44845&delivery_rate=14064959&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=41087&unsent_bytes=0&cid=95617bd4385e5291&ts=3061&inflight_dur=466&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.12.0

104.21.40.10

200 OK

29 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.12.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (29337), with no line terminators
Size
29 kB (29337 bytes)
Hash
4de6dfc6ff180e33262861a679d40546
8de11c7f99e413282baa349d11657ccd2c468d4f
3e61990964ebd31443be4e6598163ebd71b73b139c42d52547b8a290f7d059ca

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/css/style.css?ver=3.12.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BThIWXu5JLsfUryl%2FNkolrnYISVw4ZbhtJRfs1fY%2BOyD2zaNvmBDaLA8DQNdCVfBfz97qsptiZzugpQWoThMH66Umvgpn0Z3rxFZSGCcM3Y0bJ2llAXlgSA%3D"}]}
cf-ray: 952affe988730b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=5.9.3

104.21.40.10

200 OK

15 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (14965), with no line terminators
Size
15 kB (14965 bytes)
Hash
bc523f920a653b0baf7e325592052fe1
310a1dbec5d49fb39b18ab28eba63dac5cb95176
044efea78208376302aad3808aaabdf3c2f7bdd80ba9d55c9e0e4d3baa7a3908

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0WGAx3iik2xEmsjeG1tEiZxj1fj5iZKEocfFS9DBLeCzjJJ7tbTuH1YGAtwBxS309ogojS8I9egOv1FMtAsk8JADfXl4zmTq%2FRp7x3V7miEaDN%2Bc7bVMMWvjfYzLj%2FrDO9TgjIquzz%2BhEjcZbKU%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe99e38b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3773&min_rtt=639&rtt_var=2775&sent=134&recv=185&lost=0&retrans=0&sent_bytes=9642&recv_bytes=22181&delivery_rate=421494&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=95617bd4385e5291&ts=690&inflight_dur=45&x=44"

GET www.benjamaspadungsong.shop/wp-includes/css/dashicons.min.css?ver=5.9.3

104.21.40.10

200 OK

59 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/css/dashicons.min.css?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (58981)
Size
59 kB (59016 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a8Aj7252B3lTlpKFQUGyCWHsEyWapnR7jZ7Avn%2BBhJkzdurblY1vRqBxfSVW9c%2FJrts%2BMNrS6zP6X01y7nwvvXd9wgSXOmT6BuyQOAoUSj3%2Fp%2F%2BozXG%2FYlxioiQRcK16sFkusZPbouWkpxqNxKU%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe99e39b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3051&min_rtt=0&rtt_var=2862&sent=141&recv=188&lost=0&retrans=0&sent_bytes=16938&recv_bytes=22660&delivery_rate=830489&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=14496&unsent_bytes=0&cid=95617bd4385e5291&ts=697&inflight_dur=50&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/06/women-knitwear-phase-eight-claudette-colourblock-jumper-greypink-300x420.jpg

104.21.40.10

200 OK

13 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/06/women-knitwear-phase-eight-claudette-colourblock-jumper-greypink-300x420.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x420, components 3
Size
13 kB (13061 bytes)
Hash
f8344316dd4c5aa6c65eefa56765619f
853a0c290eabab0c8d849290f54477b2454603bb
7cd46f424a353b706dee9b792836101f9c67d89aa9ff29949b6ca7e9328d17c5

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/06/women-knitwear-phase-eight-claudette-colourblock-jumper-greypink-300x420.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FFQjlelgn9jz4wTMkyKUFkO0%2FKmRsQFhyFNIwhOhXMmGEAUNm3wuwk5R8%2Fqw9grEr9k9vrfZrDwe6sfXQc0b89IMu3tO6U0p2Rj61OoxebTF8HxUvLujfmMqbluBUHylnhN%2Bb3BKT2RDobqH%2BzQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 15 Jun 2023 23:26:19 GMT
vary: Accept-Encoding
etag: W/"648b9e1b-3305"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 952afff29e96b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1980&min_rtt=0&rtt_var=1098&sent=793&recv=342&lost=0&retrans=0&sent_bytes=719254&recv_bytes=39485&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1995&inflight_dur=351&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6

104.21.40.10

200 OK

9.3 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (9281), with no line terminators
Size
9.3 kB (9281 bytes)
Hash
57a347480fbe0b3d235993f4f1ec3b2c
ec01673e887c236765156496c7d00111238554d8
9097a2c579616889e829be95554ebf90ec5900045f4d2282cce31d5a999acc03

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/prettyPhoto.css?ver=3.1.6 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=V%2FPlmajdNTpkDYhGQVUTBpo%2BD2LLHDGjOe4iZr1Cixkz2ZP0Pk2aPQunoyyXVBS745bwBMTaL4gcMXJ%2BEr1E14BW%2FL4Eg5L7QU%2Fq8YaQN7rE9aconRbuvh8%3D"}]}
cf-ray: 952affe988720b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6

104.21.40.10

200 OK

22 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
HTML document, ASCII text, with very long lines (21538), with no line terminators
Size
22 kB (21538 bytes)
Hash
d017e13d65b4c79d9a22a4ab9e6bcdf6
f766dedd77e0f910742439a102a23dbeade89299
2ef1fc50a9d78f044028f3ba7378c5bbec0188de74a5217491040f9ba435fca4

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/prettyPhoto/jquery.prettyPhoto.min.js?ver=3.1.6 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D7QtE58zGx%2BFwEyyaQshZK%2Fb%2FczxU0Y9qHfJdK4tPzaDpG6AEb1JhW6PiBZweu6dRIuSnx1aLRa0PKhnlLhmm5zqJcmNarUefkcs5aUttX5DXDNOaGT48or20oinaul7zrAcEl6rD%2Fof6oNBknM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-5422"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb3e5ab512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1062&min_rtt=0&rtt_var=641&sent=431&recv=274&lost=0&retrans=0&sent_bytes=333692&recv_bytes=31038&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=945&inflight_dur=223&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/customer_style/customer-style.js?ver=5.9.3

104.21.40.10

200 OK

2.7 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/customer_style/customer-style.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text
Size
2.7 kB (2657 bytes)
Hash
4ffefcdb286f4a51ae61de2bd55507f0
a60886abcd0af5a4b58c9c21adffabb33f9a532e
4271592985a0984727e2ec0942cb1c02b86b8fc0db804cf51b536b9781049c48

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/customer_style/customer-style.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BpV2rp3OUucuy7dq9C%2BSks%2BGS79Ttz6ETFS2dZ5qWzG6hI2HY%2BJtemAWK2yg073CpXfRrWKg9mWzcXQvSdSguunuqYZ41AXt5sr5%2BPx2LE%2BhS2%2FUEiemWz35dPAxoFy%2Fz4tZ3iacdR%2Buoum5qdU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-a61"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affebce6eb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=987&min_rtt=0&rtt_var=240&sent=674&recv=318&lost=0&retrans=0&sent_bytes=598495&recv_bytes=33196&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1037&inflight_dur=284&x=44"

GET fonts.gstatic.com/s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 51412, version 1.0
Size
51 kB (51412 bytes)
Hash
9e5e97447fcc00eca79e97de3b337831
efafc4ef0f1ac7fefb6e22be4ea9c681a53d415a
8d230115e58faa2ed303bee567b91d1a792e0c958a0118998b53648b2ab7c057

HTTP Headers

GET /s/robotocondensed/v30/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.benjamaspadungsong.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 17:13:23 GMT
expires: Fri, 19 Jun 2026 17:13:23 GMT
cache-control: public, max-age=31536000
age: 66512
last-modified: Wed, 28 May 2025 16:58:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/06/women-dresses-phase-eight-martina-shirt-dress-navy-300x420.jpg

104.21.40.10

200 OK

14 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/06/women-dresses-phase-eight-martina-shirt-dress-navy-300x420.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x420, components 3
Size
14 kB (14502 bytes)
Hash
4a641077f253f301667d4624094e57f9
58a766675d8b21b6e3ce38884a5385a04af42f36
c1d2900f4384d1a1a7bf51ae5671f64d11b416ab5e6331ef2c0e4dbda48fc8fe

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/06/women-dresses-phase-eight-martina-shirt-dress-navy-300x420.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OIozyQsNr0miU2neKQf5TCuIFgP0uM5eLfqJB%2FVhHwNscFHQOYlW9qL5elckO2OdQufpystAIROJBrVk2Izx%2FZjaEPSk%2FdND0t2RCpDLaOBezoQF1nkzCWpZ1KTN3rNnwHdTReq1lA8OgaTCGCg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 15 Jun 2023 20:09:41 GMT
vary: Accept-Encoding
etag: W/"648b7005-38a6"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 952afff29e9ab512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1852&min_rtt=0&rtt_var=1080&sent=806&recv=343&lost=0&retrans=0&sent_bytes=733203&recv_bytes=39529&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=23007&unsent_bytes=0&cid=95617bd4385e5291&ts=1997&inflight_dur=353&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0

104.21.40.10

200 OK

63 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Size
63 kB (62755 bytes)
Hash
979b8b56e801469d95453055366ef54c
cb8a0bb5f00fee130a289ea4dfafc00fa53e1c04
d3322ccb3912f7a9485eb1d75971fd5e1eb49c6575ff5ad985fb5496333e8c8b

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RZZbTblfOkp2cgKjV19%2Fv5IzwPZZU58RfCd7OGUTsEGPEnZETykAwnVkzDjotDfKOpDng0694q%2Fr3a%2BxqkwIck4gYJNqN6zq9i7Hp2KsK%2B1Q5M%2B2OOIjNNktjfK1m4PbUAcjn4gXMyknp6yBgFA%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe99e36b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3487&min_rtt=639&rtt_var=2653&sent=139&recv=186&lost=0&retrans=0&sent_bytes=14538&recv_bytes=22226&delivery_rate=773064&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=95617bd4385e5291&ts=694&inflight_dur=48&x=44"

GET www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

104.21.40.10

200 OK

90 kB

URL GET
www.benjamaspadungsong.shop/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89521 bytes)
Hash
02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gxByLXDNehqDWokiE2Ek9rakMIxkXTzooUUPYOg3ndzsMJKRGT8HAXy95bfyPucPPgcuWbR1dliw4bLd0vLf63jhvg7FB3Wp8dnSty4mVASqA%2FyZfjL3wc%2Fuk0glQutM%2F7l8F%2F59CqxsdTE5Soo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-15db1"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affe9ee41b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=608&min_rtt=0&rtt_var=136&sent=223&recv=220&lost=0&retrans=0&sent_bytes=108736&recv_bytes=25828&delivery_rate=3924274&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=20516&unsent_bytes=0&cid=95617bd4385e5291&ts=735&inflight_dur=87&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.7.0

104.21.40.10

200 OK

4.4 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (4420), with no line terminators
Size
4.4 kB (4420 bytes)
Hash
3a58bc351485cd8093c3413eef7c22cc
207dda1ceebaeabdec24bf030daf253d9d7868a3
be55069a1e835065f0f020c894b14093d45bc764b333f2ffb3d7cc3219db56d6

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bh9LvPqs2bw4v7NB6EcOKyJ9A1RXQ%2B8auO2fmR7WXM0Gb8%2BWy%2BvDUmoF%2FdZs71jxB4Ue7YbMlfNwsbPF58Md5MTD431GPjiDX1FQNq%2BX6CD0AiVvY78ZHC1yfIRTpXGgCYcZ1IQ5%2BCvjekQfOZw%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:54 GMT
cf-ray: 952affeb3e55b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1089&min_rtt=0&rtt_var=840&sent=413&recv=272&lost=0&retrans=0&sent_bytes=314665&recv_bytes=30950&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=936&inflight_dur=219&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0

104.21.40.10

200 OK

3.0 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (3037), with no line terminators
Size
3.0 kB (3037 bytes)
Hash
8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V2fKUr9CZXKRrAQLD6uQN%2FKFfkP7mVOnWt%2FUOzI6PWv2Ngue%2Bx9lvk2Ycwcs328QVaaRkHi68TMINKYieDkBllDZ%2Ble%2Fzc8il4IPGG18K2zkPWIbq7jFW1JzGTb9FeyC4meF5YZnVrqLjY6JmaQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-bdd"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affea5e48b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1884&min_rtt=0&rtt_var=2244&sent=282&recv=237&lost=0&retrans=0&sent_bytes=168670&recv_bytes=29327&delivery_rate=4175580&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=16580&unsent_bytes=0&cid=95617bd4385e5291&ts=807&inflight_dur=145&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19

104.21.40.10

200 OK

387 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (64288)
Size
387 kB (386778 bytes)
Hash
811c3da189b804d68fced85b9a191e1e
bc4d1ec616ba622029414fbceb0bc8d9e903f3fc
3b0b8378134e79a3a7058080f4d617969ac9b159d448be7b15e595719e5c9518

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mEAvorC0BN%2B5PJ4Bz8nA4JP%2F%2BCiffFT7XEVDb62LZmnL0OZ3wqRTgPQKXm2mi1mNCH887yxfm7oDQ%2BaA42765iwrlbbYo7uPF3ZQ27ozvun6E71a2GTI3ohVzCx5hksdWcoxMbrUur0I8DQSyTs%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-5e6da"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb5e61b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=955&min_rtt=0&rtt_var=304&sent=496&recv=283&lost=0&retrans=0&sent_bytes=403440&recv_bytes=31454&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=961&inflight_dur=237&x=44"

GET www.benjamaspadungsong.shop/

104.21.40.10

200 OK

187 kB

URL User Request GET
www.benjamaspadungsong.shop/
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
HTML document, ASCII text, with very long lines (8303), with CRLF, LF line terminators
Size
187 kB (187196 bytes)
Hash
a07e1e1924daf4604031c7a75fb75c39
04b092d5a306015f4f4dc512e4d1ea93f6bb1ee0
6cf610c10de13aa2236dd9d0e9a1209796e17d34b413e83b8b786370de6511ee

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET / HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:52 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store
link: <http://www.benjamaspadungsong.shop/wp-json/>; rel="https://api.w.org/", <http://www.benjamaspadungsong.shop/wp-json/wp/v2/pages/319>; rel="alternate"; type="application/json", <http://www.benjamaspadungsong.shop/>; rel=shortlink
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=LWdBVZN88wugk0s%2Bi3zT%2F63XA9x7hmzewv7m34nLzXflgiWKqssDbnhfrkppNDre0R1KFStG9AvWtkrWplqikRnIjZFadG3mKCBZy7EXiVXxMWRTBCA8Irc%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; Path=/
ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151; Path=/; Max-Age=1800; Expires=Fri, 20 Jun 2025 12:11:51 GMT
cf-ray: 952affd609280b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0

104.21.40.10

200 OK

18 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (17809), with no line terminators
Size
18 kB (17809 bytes)
Hash
1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9I6DVXk%2B%2FT8LhyB2g535NlEZ7YG58%2FKW0%2FZMO36T5rcCgat38F9GccWjlSo89voSi7vkZFs%2FM41jln5uDromC3vB%2BawpzMa%2BHwb%2Fq1mLOsJ44px9IFiq97ksAoKMJhfMD3bPxVRNc8SAg4aIObQ%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe98e33b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3773&min_rtt=639&rtt_var=2775&sent=137&recv=185&lost=0&retrans=0&sent_bytes=12802&recv_bytes=22181&delivery_rate=421494&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=95617bd4385e5291&ts=692&inflight_dur=45&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=4.0.3

104.21.40.10

200 OK

100 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=4.0.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (99671 bytes)
Hash
056f4766ba0439624d22d8aa7d84c359
52df4d1bee0edbf2319c318cbdb46c8a16287849
19395a31eba590812aa5b60221b9ae0f2afff2a89bffcd05efdb5e0001a4bf8d

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=4.0.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n8w0scQrw2acNukqmHAkp0qm9MH%2BbpL5F5a0AWa8tpVq0m0X2DhfrdX52ju86m6Np4%2BYbkVFaIb5aD4SWQILuC26ks%2Fhw1ErK615w4%2FeWHLCQOalVCmpFnLsDybF2rvdtmW6KVJZetGhpkrd9V8%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe99e35b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2705&min_rtt=0&rtt_var=2837&sent=143&recv=189&lost=0&retrans=0&sent_bytes=18302&recv_bytes=22704&delivery_rate=1038112&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=14669&unsent_bytes=0&cid=95617bd4385e5291&ts=699&inflight_dur=52&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18

104.21.40.10

200 OK

129 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (45108), with CRLF line terminators
Size
129 kB (128805 bytes)
Hash
0ce245fda586eafae053aa341ccdd2c7
3f0e5d08540860f4e1c4ba0db2bd3decf481ea44
5c9203860ae657336596c738730f9d362e00bb9948a0f581fb074270c328e26b

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KdJvQqTsxuEa7Iz5Qf0PW%2BXJKua26ZLWm%2BysWi75OwBQ1%2FDcZwR2u%2BygW%2BMQInMMXrVLA4XFuzCoHiHv1rrDseudwM6ken4rUUqdsVRBMiHfoE3xoh15GXP8nGvfTsw2cWXprUem4R4ryk7OQnw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-1f725"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb4e60b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1036&min_rtt=0&rtt_var=410&sent=466&recv=280&lost=0&retrans=0&sent_bytes=367796&recv_bytes=31316&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=956&inflight_dur=233&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0

104.21.40.10

200 OK

2.9 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (2938), with no line terminators
Size
2.9 kB (2938 bytes)
Hash
0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kvgjRVHjhqEnhI0o0ieOHBkgTPw%2F0Zi1U3KuPyxcpmIgjq53EqdxTTABA775kthvebzPK0xKt8gxagJ4sOIPF1n9gwR0DistjHe0Fjy6SRMQygbCWZS38MIRyVbzvEn5pCeu1nM7QU7y21ToUtI%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-b7a"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb8e64b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=761&min_rtt=0&rtt_var=446&sent=633&recv=307&lost=0&retrans=0&sent_bytes=560684&recv_bytes=32693&delivery_rate=13095809&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=15213&unsent_bytes=0&cid=95617bd4385e5291&ts=989&inflight_dur=265&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/06/women-jumpsuits-phase-eight-margot-city-suit-jumpsuit-black-300x420.jpg

104.21.40.10

200 OK

10 kB

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/06/women-jumpsuits-phase-eight-margot-city-suit-jumpsuit-black-300x420.jpg
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x420, components 3
Size
10 kB (10011 bytes)
Hash
8dfa3f3c787ac3556f6455fba569a2b3
5780ca7d7ff6305a7ba113e6d71f432e56e5a717
68ba44edc5f507072e04274a9b8ab86536196ed6632eb4b66b88cde182ca9ce1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/06/women-jumpsuits-phase-eight-margot-city-suit-jumpsuit-black-300x420.jpg HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/jpeg
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8H6G2j0hwc5X%2FsqXj9NebQxF%2Bdlgg2NPtoOrvP9Hd67vstwgVKCZ2hyhDeNiuWYlf6xctrCKzefGhwte%2BT0AueYAU3CQs58hhg0l1G8lXXQ8a%2BVjRCUDKNp9SIBoIRvuWX%2FwGSgkU0l9RUWNPR8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 16 Jun 2023 03:25:53 GMT
vary: Accept-Encoding
etag: W/"648bd641-271b"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 952afff29e98b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1755&min_rtt=0&rtt_var=662&sent=819&recv=346&lost=0&retrans=0&sent_bytes=748437&recv_bytes=39667&delivery_rate=14806461&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=25857&unsent_bytes=0&cid=95617bd4385e5291&ts=2002&inflight_dur=356&x=44"

GET www.benjamaspadungsong.shop/wp-content/uploads/2023/07/favicon-16x16-1.png

104.21.40.10

200 OK

274 B

URL GET
www.benjamaspadungsong.shop/wp-content/uploads/2023/07/favicon-16x16-1.png
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
PNG image data, 16 x 16, 8-bit grayscale, non-interlaced
Size
274 B (274 bytes)
Hash
7e687e5107468c9d40a120a07d10b6f6
bce8d0d6e22424d2b1b6a1e7ac135662c21f5925
2d4588069016b3fdc7ea3e0e92fab9f238f4424188b7814e34111833ee2c966e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/uploads/2023/07/favicon-16x16-1.png HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:55 GMT
content-type: image/png
content-length: 274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wl%2FQh6vRj0gjgVxhesJXcncTWY3yI6nVOoVWQSBL2eIF5%2FBjJm9oBdGtSVmDNpwGU%2B26d%2BZADknFJTXbUz0iteKcaQ3zbPr01JcwgCYqk4d3AuDjsWbJAY9OeZ%2Bv0fFwp6O%2F5I75xqf2WpfTaJ0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 08 Jul 2023 01:21:07 GMT
etag: "64a8ba03-112"
accept-ranges: bytes
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952afff7af24b512-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1851&min_rtt=0&rtt_var=356&sent=1441&recv=416&lost=0&retrans=0&sent_bytes=1465929&recv_bytes=44800&delivery_rate=14064959&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=41087&unsent_bytes=0&cid=95617bd4385e5291&ts=2805&inflight_dur=445&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=4.0.3

104.21.40.10

200 OK

14 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=4.0.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (13825), with no line terminators
Size
14 kB (13825 bytes)
Hash
91dae79d84791e79dfc8b84e2c7f15e5
ede13453fb61b42ccd04784933f6c67b74aa9a34
3668f6d335416599574fb1f336cbd2b9bb2f8fcff63e63a9ca3b68df4d0c6165

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=4.0.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dmS9wNbBy%2Byzna3GA1YucgonjTlhBjr8xKNQqDEm5Xxy23HBSlkCVtstHwZQvNYz9iyofRkwKlbqB0Q3%2B3dttAPhiFLDDwPR5u1mGOw%2Fjw0Pqzo%2FaJFGLaD5kyxiOmbT33EkV49r1dv9OiLuSAA%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
cf-ray: 952affe99e37b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3773&min_rtt=639&rtt_var=2775&sent=137&recv=185&lost=0&retrans=0&sent_bytes=12802&recv_bytes=22181&delivery_rate=421494&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=95617bd4385e5291&ts=693&inflight_dur=45&x=44"

GET www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/bootstrap.js?ver=1

104.21.40.10

200 OK

54 kB

URL GET
www.benjamaspadungsong.shop/wp-content/themes/ecommerce-plus/js/bootstrap.js?ver=1
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (550)
Size
54 kB (54311 bytes)
Hash
fd4050839637043f309325aa8962288d
889b8d35a1bec7b7d65e5239099ff05f74c80fb4
11f48fb49a71e6be4b3f8c038e89daab6a648321db3b6b7fc6e4c8e973fe8431

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/themes/ecommerce-plus/js/bootstrap.js?ver=1 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T7dXRflXox3ypMaEC%2FK5sAYazQxgvQTrQwdiP8o2G3TPg9nrpStGUc%2BW3eeI6znxW40fNx26u56MGH6dOzD9GlOlMqobl7B0o1ShPgjMdwk0pCPCxiD8q1HuwXF3%2BhdGrwr%2BRy0N5GbD7Qs0Zz4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-d427"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeafe52b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=794&min_rtt=0&rtt_var=177&sent=394&recv=266&lost=0&retrans=0&sent_bytes=294628&recv_bytes=30672&delivery_rate=7019432&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=19872&unsent_bytes=0&cid=95617bd4385e5291&ts=906&inflight_dur=196&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0

104.21.40.10

200 OK

25 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with very long lines (24951), with no line terminators
Size
25 kB (24951 bytes)
Hash
540be7a8259fbeaf4a732a344b267a7d
ac51cc9bb5df51bd9568de8707b9b176f7d60254
a692f16cca3d27ae6772b85e05c46d117ca45678783d5ee010df7d67e8f12485

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.yith-wcwl.min.js?ver=3.12.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f07vpzoKDNzKWoAgH2bv6YyxQZalMij7v6pgpO7W9smJz5MZ1RlKunvVhWHG2C7Bg62H8dLROl7KAkxJ5MIkDw7dgP%2BMy27SJVZi%2BKqnJl%2FJXqlYnl8HKXQStXzRe2EUJhPrlGRWNgcDRuX797k%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-6177"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb3e5bb512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1018&min_rtt=0&rtt_var=569&sent=447&recv=275&lost=0&retrans=0&sent_bytes=350704&recv_bytes=31084&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=947&inflight_dur=226&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0

104.21.40.10

200 OK

15 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (14924), with no line terminators
Size
15 kB (14927 bytes)
Hash
157f18464a93eab7fb62a7f3e618ac2c
f47727e80d529d6e4941fea32f2e8a8ee5008b8a
9ed8f2a0e573467348e64fb1945eeac1698f32af9e9c723153eb7142d6a43306

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/yith-woocommerce-wishlist/assets/js/jquery.selectBox.min.js?ver=1.2.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ERrw5%2FCCN0c6lvwKoj%2BH9sAgKYzwX9OgkOIatjiQedVdkhgZ44zi4ZFpOrPeitm7JiChLDtLRgU2EXtFTlWCa4vpWeRv4Qu9JhWfpelS6HQNtDoo9SCvhD%2Bud1sCFztNkWluWiVOnY4BhLUSUZo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:36 GMT
vary: Accept-Encoding
etag: "64899654-3a4f"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affeb3e59b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1121&min_rtt=0&rtt_var=696&sent=416&recv=273&lost=0&retrans=0&sent_bytes=316775&recv_bytes=30994&delivery_rate=8212736&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=21244&unsent_bytes=0&cid=95617bd4385e5291&ts=941&inflight_dur=221&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3

104.21.40.10

200 OK

4.9 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
ASCII text, with very long lines (4933), with no line terminators
Size
4.9 kB (4933 bytes)
Hash
e372df47bd19e1563b557d7bdb817188
4efdf4050a78bdbd88aa255955b7423105895dd0
4b7693154069c53a16468d09d89c9eba5da6c0dfc69cf4d7eb675e32ba663361

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Fri, 20 Jun 2025 11:41:53 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tAXJeIveJOmpjxngLvh6jZEdxjxDHs%2FGuo7TPOtmX0HjO2nf4Uggb8sXgn4FP0Dd7FTxnSfWRAdIesgPidg6EX3puTSsXbpwXCVZoePxXiksXot7livBa1c%3D"}]}
cf-ray: 952affe978610b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.benjamaspadungsong.shop/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=5.9.3

104.21.40.10

200 OK

1.2 kB

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=5.9.3
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
1.2 kB (1179 bytes)
Hash
ae0a0a22ffec7989b87b813b626cda4a
a5648556090a1310db15a5348ec4d62085c99052
c9c140eeebc4a3eb26325e247df563b2e6433c19bae11e0bdf21280c3482c0b0

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/woo-exchange-rate/assets/js/woo-exchange-rate.js?ver=5.9.3 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:53 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e3OMNXHZLYIJFMd4FiqO0NCVDIuKuRIclGkeLBVNCc2rG6ajCauSDyCEJ7z%2FV500FpVF4zb24F3TzwjFtK9fooxqGhRKlSIc65K2fkcaxgjSOQUGyjum7thiW9XCgNc9sS9Gly%2FyhoN1H9OC4WA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:35 GMT
vary: Accept-Encoding
etag: "64899653-49b"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 952affea2e44b512-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=971&min_rtt=0&rtt_var=558&sent=280&recv=236&lost=0&retrans=0&sent_bytes=167431&recv_bytes=29282&delivery_rate=4175580&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=16580&unsent_bytes=0&cid=95617bd4385e5291&ts=792&inflight_dur=136&x=44"

GET www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.7.0

104.21.40.10

200 OK

992 B

URL GET
www.benjamaspadungsong.shop/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.7.0
IP
104.21.40.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.benjamaspadungsong.shop/
Certificate
IssuerGoogle Trust Services
Subjectbenjamaspadungsong.shop
Fingerprint03:6D:24:4C:4E:CE:44:DD:81:A9:A1:29:FA:66:EE:A9:0B:27:93:12
ValiditySat, 10 May 2025 01:15:43 GMT - Fri, 08 Aug 2025 02:14:02 GMT

File type
JavaScript source, ASCII text
Size
992 B (992 bytes)
Hash
787fe4f547a6cb7f4ce4934641085910
c2dee88d5bdfef214ce9c56f71a1df51cda0f328
654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake e-Shop

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.7.0 HTTP/1.1
Host: www.benjamaspadungsong.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.benjamaspadungsong.shop/
Cookie: PHPSESSID=nou7cqao8n424not66s4mdrqih; ppwp_wp_session=c1ec57b2c8ba000a2f0d99ac3bddd1c3%7C%7C1750421511%7C%7C1750421151
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 20 Jun 2025 11:41:54 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OIae3LuBHKkB6%2Frw1Mu3j5b8JEOHRP8hnupBoCT0E6jjjO4XLVJfV166CpimHN1lx6WrWYGIERYFHxZr4M5bLUUoq8NTAsmq1AOyh%2B%2BWTqTCqZ2ML6q2RMdh6kGiv2gDOHbAQYlNdByBFxSyqLk%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 14 Jun 2023 10:28:34 GMT
etag: W/"64899652-3e0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
content-encoding: br
cf-ray: 952affeade4fb512-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=784&min_rtt=0&rtt_var=212&sent=383&recv=265&lost=0&retrans=0&sent_bytes=284170&recv_bytes=30626&delivery_rate=7019432&ss_exit_cwnd=14942&ss_exit_reason=2&cwnd=19872&unsent_bytes=0&cid=95617bd4385e5291&ts=892&inflight_dur=195&x=44"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML