{"report_id":"9a6ad242-12c5-4ccb-afd2-ee36442de74c","version":0,"status":"done","tags":[],"date":"2026-06-19T01:07:22Z","url":{"schema":"http","addr":"go-pedidosze-24h.shop","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":0,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"final":{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"title":"ZE Express | Bebidas geladas","dom":{"size":534798,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1005)","md5":"9be9e2ee9b7c0568326a18df67b84c80","sha1":"95e807d48714e60a53d4cc947b2ce98e542bd945","sha256":"6a6a842720fc4961c6cef375fcfa00479816606c20d907f389b60b79234f9b4f","sha512":"9881b4becc0267a568fba8c71eda61cf042a8d9adc2d9b847e6e8e25b9f09eb0b63637bebd34ba4e34ebec2f9fea8f8737540cdcec97c511de3ef8faf6d586dd","ssdeep":"3072:FasWlgkZkbbEQVTU3367CfbjsKDJ38RHE/NB6SP1B7GDnh4vA2Cv9Oe:Fau5CfbjsqP1B5A","tlshash":"51b485b0c5bed47a046e32549a860bc53a979303d3d71ffeb1de9aa08f55d8aad0305c","dom_hash":"domhash735714e82bb5003cd287b58b212072ee","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"go-pedidosze-24h.shop","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":0,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-24T01:07:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"go-pedidosze-24h.shop","ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-19T00:49:34.371366Z","last_seen":"2026-06-19T00:49:34.371366Z","alert_count":116,"request_count":29,"received_data":1042161,"sent_data":16621,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2026-04-24T23:19:27.81382Z","last_seen":"2026-06-14T01:52:14.100093Z","alert_count":0,"request_count":12,"received_data":62891,"sent_data":7711,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-14T22:22:05.140579Z","alert_count":0,"request_count":1,"received_data":15846,"sent_data":545,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"abacusai-apps-ed83689cde9c9d8bcbb18c98-us-west-2.s3.us-west-2.amazonaws.com","ip":{"addr":"3.5.76.176","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2026-06-14T01:52:13.428902Z","last_seen":"2026-06-14T01:52:13.428902Z","alert_count":0,"request_count":1,"received_data":99473,"sent_data":642,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-14T22:19:01.724334Z","alert_count":0,"request_count":6,"received_data":296064,"sent_data":3480,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ca9a6093efcb070ed18d5776674f0e9a","sha1":"4727628ddd74e960dbb7c96d84b6e1d7c4b04a3b","sha256":"b0399943f483618ccabbeb8a0f03325be2d281e74e444a75b49e5d1c4adf967f","sha512":"5c8776befc992166f4b0629b47b3a1b0c99c74fcd9b0bb8f43a625ffb1f9a25373fb16129a868ca0ae4ff69e3e89de5170d9431fb2316b1301a1352979efc0a9","ssdeep":"1536:cDJ38RHE/NB906CVme8IMkDfQooEJ6o40q9ingTi3Idnxcbe/G4tilntLLGP1B7P:cDJ38RHE/NB6SP1B7GDnh4vA2Cv9OP","tlshash":"9904b6c8cb2ed8b8596613212f4b0ecabd48021273a75effd7ced9b4495cf96261116c","size":178913,"data":"","first_seen":"2026-06-14T01:52:39.913666Z","last_seen":"2026-06-19T02:23:54.827772Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=85\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-85.jpg\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.506Z","timestamp":1781831214506,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=85\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-85.jpg\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/source/prod-85.jpg?v=1780433170\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=mansao-maromba-6\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-6.webp\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.531Z","timestamp":1781831214531,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=mansao-maromba-6\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-6.webp\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/mansao-maromba/mansao-maromba-6.webp?v=1780565978\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/source/prod-91.jpg?v=1780433170","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.695Z","timestamp":1781831214695,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/source/prod-91.jpg?v=1780433170 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 02 Jun 2026 20:46:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1f4112-d14\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3348,"size_decoded":3727,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3","md5":"4cdae9b2a268f8bbd4c0f6009aa4a39e","sha1":"7a14f3ba0bc31f58140b65e73ea70bad98a38fd7","sha256":"945cbfd7328ebe80a594e0e3ea93e50facb4d9f4aa94e85b88c636bf209336ca","sha512":"17253800c7811347d9cfc3ece95b2cd3e2c243b41bda9ab1341173ba3aa3364889b011879049a63dfeb742b4ad02f13176a6656e815cefd74aa43470327c50e3","ssdeep":"","tlshash":"f961290ab40be126e5d80a73217a677cbe97ca40a91686b74b14b060d48537fbb04dec","first_seen":"2026-06-14T01:52:20.014208Z","last_seen":"2026-06-19T02:23:54.825192Z","times_seen":49,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/source/prod-85.jpg?v=1780433170","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.697Z","timestamp":1781831214697,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/source/prod-85.jpg?v=1780433170 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 02 Jun 2026 20:46:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1f4112-c49\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3145,"size_decoded":3515,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3","md5":"7face49ab25bc2e0b00cc4395208b1ef","sha1":"aff27a74553a186d3ce4489853379721a110f29e","sha256":"41395250156c955b65a03e44090fc348663c523162925ba8bf8440c116ad4828","sha512":"5af59533e3fa64b890404ecc81b4d7d5a34eec90386d333865aebfe15e18ea9b2fe08b80a5163fc090c6e7c7c4db616299a6a65c2234de9cc02cad4dc72a70a6","ssdeep":"","tlshash":"2f515daa1b8b08d8cde134fad52387d8bb42b9531125644abb0d93b7a1651c63f1533c","first_seen":"2026-06-14T01:52:20.021587Z","last_seen":"2026-06-19T02:23:54.825703Z","times_seen":49,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/bhx2q1l8x6iqi7d0u81k.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.255Z","timestamp":1781831214255,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/bhx2q1l8x6iqi7d0u81k.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: wy7nmheVhxyZFxiK0wRyCQgEUU5cvfZXja+mduAqu7hSEKCY2TD1xhElnNprhW5YGTPMfzOdLdU=\r\nx-amz-request-id: XMKGSD7TM1XNKFY2\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:22:39 GMT\r\nETag: \"e9c76670e5a93a42e8f7f05e7f815af1\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2842\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2842,"size_decoded":3238,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e9c76670e5a93a42e8f7f05e7f815af1","sha1":"cafd4dd275789e11dd66dcc1fdb6b256f4b9bf59","sha256":"9109b36abd1c82e6d8faa853c3ed1d3e068abf694d68c695eaaea79b650ed7e3","sha512":"551259b76257b702ee19b344c7b7a3d3fc14d967be1c2b3ad9ed5eabc7c74742b714dd96c4066bbe1007c3bd1dde94f5b2470841ecd194857365383bb02d7bf3","ssdeep":"","tlshash":"ed515b092f2c02c9a4f8bb782349006fd5a087cccb9f995322d74ae8d9a70b34df10d9","first_seen":"2026-04-24T23:19:37.685172Z","last_seen":"2026-06-19T02:23:54.818578Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5476,"timings":{"blocked":39,"dns":0,"connect":172,"send":0,"wait":195,"receive":0,"ssl":5066},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=78\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-78.jpg\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.512Z","timestamp":1781831214512,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=78\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-78.jpg\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/source/prod-78.jpg?v=1780433170\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=mansao-maromba-4\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-4.webp\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.527Z","timestamp":1781831214527,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=mansao-maromba-4\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-4.webp\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/mansao-maromba/mansao-maromba-4.webp?v=1780565978\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-6.webp?v=1780565978","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.812Z","timestamp":1781831214812,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-6.webp?v=1780565978 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 34778\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-87da\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":34778,"size_decoded":35218,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f39a38e69cb384f1cbbdfc9b32053a7b","sha1":"1e2ae0377587dbd540380a99b12187326af602b1","sha256":"8295b27a5abbb553b125cd91ffc2661fe1609e9c6e9c8cc2e23350ac0d8907ec","sha512":"38b300c2a3609463d1683f29d6fbbd5c374c215e014b915572235a3473921a0b6c35d4fea060bf8deecd515bf06dd354c1c64e315b156f5fd749a85b72958588","ssdeep":"768:+dLdWywHop5nH1BAnyulEadAeyDEoVW7x651pzj/H2sF605szOVMNldx:+d5WywHonnH1BJr1eroVW7oxzj/tH66e","tlshash":"eff2e11b5951dc20c1e59d9b6dc3e5a382590dfcf7ee8428640062bcb5e51b632e8fb2","first_seen":"2026-06-14T01:52:20.015078Z","last_seen":"2026-06-19T02:23:54.827237Z","times_seen":45,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-19T01:06:53.371Z","timestamp":1781831213371,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:53 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":534797,"size_decoded":53615,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1005)","md5":"6e970a00437d1916a1a60483bfe05b66","sha1":"0e07cd16a43d32d8137a50ee3952eb79875bf651","sha256":"0a7724c85b09f1d971a3ad4893a1af78fbf07d242e989d0cc10e5cda5c234edd","sha512":"08c6822d8e2323393ba008f7371f3141745ba783b1eacc7d287cbd0e2d82f7f8955f3efc0f57c1524f64619cc6065dfaa8bc9c50534443995e5b4565701fc341","ssdeep":"3072:gaksUFoZkYbEi2TUo36soM3js5DJ38RHE/NB6SP1B7GDnh4vA2Cv9O2:gakroM3jsbP1B5A","tlshash":"dfb474b0c5bed47a046e32549a860bc57a979303d3d71ffeb1ce9aa08f55d8aad0305c","first_seen":"2026-06-14T01:52:20.012874Z","last_seen":"2026-06-19T02:23:54.81184Z","times_seen":51,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":131,"connect":21,"send":0,"wait":70,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.214Z","timestamp":1781831214214,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700;800;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 19 Jun 2026 01:06:54 GMT\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15162,"size_decoded":1524,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"b8d3b4b9d4ee8cae44e2afcef48e7a93","sha1":"ea3c361f22fa31fb8612dd2ca30f1ac7ba03f75b","sha256":"7c966efd5a04f87920e8cef5c332c73b0d529b21c46fa312ff0020047d882c35","sha512":"7418cc24da4237fed57bbd3e92618985c30c29ab320908f146d0fe954c6a49e179007537480bfc7f2bf76e76a47da055c6cb6fb2744991e0c3a471c88fc06f08","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGfNx0NO3kCxHYNCbOO3L+:vXuM0p2+g7GQK","tlshash":"c2628892002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-11T12:17:30.699497Z","last_seen":"2026-06-19T06:32:20.063345Z","times_seen":2702,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":16,"send":0,"wait":36,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-ed83689cde9c9d8bcbb18c98-us-west-2.s3.us-west-2.amazonaws.com/48569/public/uploads/hvco7c7ba8jrwrl1q02e0q.jpg","fqdn":"abacusai-apps-ed83689cde9c9d8bcbb18c98-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-ed83689cde9c9d8bcbb18c98-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"3.5.76.176","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.229Z","timestamp":1781831214229,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /48569/public/uploads/hvco7c7ba8jrwrl1q02e0q.jpg HTTP/1.1\r\nHost: abacusai-apps-ed83689cde9c9d8bcbb18c98-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: p8D4ziRoQzdQjA4I9YYjV+oRHtbr/gHoFIMCIi+y85HQbNMGk6nlS4D6+V5bTWX19LmECz5b/zM/Ao8Mw+K07R6f63X1+/sU\r\nx-amz-request-id: H8RSZYJVR0JN2GDT\r\nDate: Fri, 19 Jun 2026 01:06:55 GMT\r\nLast-Modified: Sun, 31 May 2026 22:38:40 GMT\r\nETag: \"1d653dbe8dd493154afe8c16c71ecdf6\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/jpeg\r\nContent-Length: 99056\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":99056,"size_decoded":99473,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", progressive, precision 8, 800x800, components 3","md5":"1d653dbe8dd493154afe8c16c71ecdf6","sha1":"801901add8cba7f14cbbf615bcf6247d14540ffc","sha256":"e483de627b1066209e4d2697cac719bc9eeb30330e5975ac3e264f3a40894845","sha512":"2d0597a2ecaaf8a4f46dc7153567bacd951ab75469e7e30c39f935637e39bd33c94f69399f438d17e06176587b58072ea23d3294d03aa67556f386ba48cbf860","ssdeep":"3072:tA91HM4WMBNKnMQ4AcDe+5iVw8Ec+vd2dEJRENg:A1HTTC4xWVec+IErENg","tlshash":"58a302961570dfa4e632373a5dd66e5964e2ae09686c406bdcdcc3039c9de30ab23df0","first_seen":"2026-06-14T01:52:20.00754Z","last_seen":"2026-06-19T02:23:54.812577Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1234,"timings":{"blocked":43,"dns":0,"connect":171,"send":0,"wait":193,"receive":481,"ssl":345},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/vuvw4oal0ief935zw5ett.jpg","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.244Z","timestamp":1781831214244,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/vuvw4oal0ief935zw5ett.jpg HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Nk7WW9PcYk1sJaruduTKsMLS9SqpJyGik+3hsQ/wKOGf+LA9JfvdZYsioo529rNIFV0R2qdaVO8=\r\nx-amz-request-id: XMKP09ECS4FF76PQ\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:21:40 GMT\r\nETag: \"d5c803d4a0f53d1c436a58f477530414\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/jpeg\r\nContent-Length: 9031\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":9031,"size_decoded":9427,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3","md5":"d5c803d4a0f53d1c436a58f477530414","sha1":"de01d44fe4974aff85b3231ced24830e22bff0ea","sha256":"a0b3f2d5b7508f90204f055cc98b0ce2ad6043a94b4e8db7c512a2fb44e9ac24","sha512":"a6f9d4d6e50c11b3db10fc512e08347d4f0f26d8d287c31ccdee188a04ed541d2937497d04ce8dfe187d5f2e34da9e9ace8a6a58f634c616ec29999de75b11f0","ssdeep":"192:0fOEEiXeOKw7Xu7L/Vr0z2Dtis54eleDMFBiP+0T70oq2h/W:kOEEueOXiHt0zbeleon0HvtW","tlshash":"3e128efceaa4502ee40af33d8eaf056bd41075d4eab2d58f56501ed0cdff2011a99892","first_seen":"2026-04-24T23:19:37.604601Z","last_seen":"2026-06-19T02:23:54.814014Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5902,"timings":{"blocked":5541,"dns":0,"connect":0,"send":0,"wait":192,"receive":169,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-5.webp?v=1780565978","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.810Z","timestamp":1781831214810,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-5.webp?v=1780565978 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 33698\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-83a2\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33698,"size_decoded":34138,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f54142213a1716bdfe47454fdc6bc568","sha1":"f6f0a1d728111cb5d738d5d4e122ac5445919c2e","sha256":"35687ebcd1c8a2ab415b17cd32d6fb3d7cefd6feca0e3750b44b05cae65d51bc","sha512":"e945bb66d5d4128fb6ee10e630d3cd27ed0b6168fea2f414412f49165f440d82d316097a427198740dae5fe8c5ce02b063a92acc5f03791bd0eeaa06baa6f408","ssdeep":"768:ns2ioKCWu+jMBUtjmPQxttHfQr4Z7MUUW4oZf5lqqTmsX/:sztL/jRzZMRvqqqThX/","tlshash":"3be2f20679663317ec40663c80abec2f9a04017b72b18d5690b1917d839763f9bb29fb","first_seen":"2026-06-14T01:52:20.029461Z","last_seen":"2026-06-19T02:23:54.817158Z","times_seen":45,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/favicon.ico","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:56.699Z","timestamp":1781831216699,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:56 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\netag: W/\"6a31a471-e3b8\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58296,"size_decoded":44116,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (56756)","md5":"cbb42513032d6c09e496731ac16c20a9","sha1":"c92f38a701aad58408451d24dd4c47b05f158cf0","sha256":"d189695b2f3bb92369881f2428fa861dca9d9a94c638d9bdc4e2fa747d6f315b","sha512":"3d76f1018afceaba7cbb4083f4a5b5758966ec2aa5d5c6b07d72361782809f7ed4bd34ed9e0c4154d01a2db7192155de8251e5a834dd90b8d9823d916e1b7285","ssdeep":"768:cHJYDDQHVZHIs91TXESJBjgBSp00yCqJ3Z+IYM3WiesRQiULO0bpD9tcNQEfdom2:cmDD6oeFUycwpk06hWp1b99c7VM","tlshash":"8443021803de40a2cd8978d9426f2f3d842a1863da1c94bd1f5b6df4ca0d8a4767f1e9","first_seen":"2024-11-25T13:26:01.204756Z","last_seen":"2026-06-19T06:10:07.372034Z","times_seen":12429,"resource_available":true,"data":null}},"time_used":48,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-1.webp","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.231Z","timestamp":1781831214231,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-1.webp HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16890\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-41fa\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16890,"size_decoded":17330,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"909998ab12e73928bd3723ffbe271398","sha1":"433c3c90e7705b41d9d28ef192d326b5f2b9d4b2","sha256":"a73fab118034b2d9d6cbb09f2a51503b167ebbe630fd51d691b569cd1caab12c","sha512":"a6507650630d47dad8c9af956d43a4c78ffd124944ea24b129c0d127cf90d7f77a26cc497b0c61d9138ceb251fb7292b849a3efa67bc8e03e7b1576c10028b12","ssdeep":"384:A4DvpWulZjt45TDhs9tTqZZOssrISBW/EXHTX6oWQ3nxGSm/p:XvpWiZAs9zss+/EXHDd3nkSip","tlshash":"9772cfcf5b62becb3f89784edf2000990c59e5b22c11123f42cb639b6a3579d43d6559","first_seen":"2026-06-14T01:52:20.011704Z","last_seen":"2026-06-19T02:23:54.820064Z","times_seen":51,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/zzjnmc3ug2qr3zpow31oph.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.253Z","timestamp":1781831214253,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/zzjnmc3ug2qr3zpow31oph.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Io68GdZJxq/rTcr/M1J7QFKznyVGrmWsNvyaTibgx/YaSVhwQB+bP65KwosX6lOX3uYfWtQxfq0=\r\nx-amz-request-id: XMKRHRBA34N5MEWY\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:22:22 GMT\r\nETag: \"aa40d3c36b7e93a1250c149aa10c28dc\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2728\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2728,"size_decoded":3124,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"aa40d3c36b7e93a1250c149aa10c28dc","sha1":"f3ed48e17c10d97b08bb02f5019f6b9d712a0cdf","sha256":"9d7f29e3e3f54169e3694dbe29c89c073706e50418a0bb6edc20040d021e911d","sha512":"5ddc10620e65cc8ae987c38c14e6cfc46bdf1c5bf00bac25324600821aca5c9072e35ef134f062c524b0fb9722e60a139f2b65119562513f83ffa1b1498fd9aa","ssdeep":"","tlshash":"7d515e5d8164bc41e3632b74d2035b5597c00c8aa0e37e9146616b3fcde9a4129c2e33","first_seen":"2026-04-24T23:19:37.541477Z","last_seen":"2026-06-19T02:23:54.818129Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5732,"timings":{"blocked":5542,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/3n5ixrx6mvohh2foxzubq.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.259Z","timestamp":1781831214259,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/3n5ixrx6mvohh2foxzubq.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 8pr0mGjn4UcoSEYLICQnLdHPv+NG/eaDj0caaO60F99fGPHaSxVjRY5ka9NrtcIznWtoaHxHW+s=\r\nx-amz-request-id: XMKTTY7PDQYTFCBZ\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:20:39 GMT\r\nETag: \"f2d6d0297c5e7df59237e1c12723c81b\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2870\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2870,"size_decoded":3266,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f2d6d0297c5e7df59237e1c12723c81b","sha1":"0b42dd469072ad76fb7979b8172a95c12d14b557","sha256":"be50a405d22b6517d73da0889847fcfbc17a4c302c7ace13e5ebedce791774e6","sha512":"f0d72b490605d410b8df5ad8acbabadcbf0b9c66c41f0928dde1031aa998b59114fdbe8bf31c3eb1a86af89c779facb8f0cd35cc9dd482d477a964c6a71c9917","ssdeep":"","tlshash":"5e516b31333e5b10a20ad8f562ca1e8d120a0259e3b6b028aa8261fd33248dc31da103","first_seen":"2026-04-24T23:19:37.637391Z","last_seen":"2026-06-19T02:23:54.822558Z","times_seen":50,"resource_available":false,"data":null}},"time_used":4964,"timings":{"blocked":39,"dns":0,"connect":169,"send":0,"wait":196,"receive":0,"ssl":4560},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=91\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-91.jpg\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.504Z","timestamp":1781831214504,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=91\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-91.jpg\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/source/prod-91.jpg?v=1780433170\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=mansao-maromba-5\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-5.webp\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.529Z","timestamp":1781831214529,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=mansao-maromba-5\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-5.webp\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/mansao-maromba/mansao-maromba-5.webp?v=1780565978\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/churrasco/picanha-perdigao-na-brasa-exata.jpg?v=1780566286","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.699Z","timestamp":1781831214699,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/churrasco/picanha-perdigao-na-brasa-exata.jpg?v=1780566286 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 04 Jun 2026 09:44:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a21490e-e789\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59273,"size_decoded":51701,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1000x1000, components 3","md5":"72cd404d74ea83d5154a4eee0eb21d90","sha1":"2f4dcfa406130c8d2b436b351f5adbe14e0095eb","sha256":"fef9664fba2f59348b6b9355e36199ffe2fe5295ca353857df9c42db9577d4db","sha512":"992758e9a6d0109bd3b6e9e2da21025de7519d31ffc26106e19f85a4c68d6a8590d1b3a6acfedabbd8dbc3504e32a4f9848fbd3f44f690b2c9bde3803deecaef","ssdeep":"1536:N7w3nPDejw3hMsAYqueeD03fRiG/MuAdxswV:A7ejw3hMsA5neAJz/UdiK","tlshash":"d343f2df7bc73844cfaed8743a470dda58240d59d9f4e56d2e89244c8be6bc1ee20910","first_seen":"2026-06-14T01:52:20.01765Z","last_seen":"2026-06-19T02:23:54.819035Z","times_seen":48,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/source/prod-49.jpg?v=1780433169","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.799Z","timestamp":1781831214799,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/source/prod-49.jpg?v=1780433169 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 02 Jun 2026 20:46:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1f4111-17b0\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6064,"size_decoded":6557,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3","md5":"c44ec2e866a13740f8782a84473aa0d6","sha1":"dba6c0d15e570811be7179ca6b1dfb8b124f1ee6","sha256":"8759894ebe9da85b458c86cf254854aaa365ed978bb7a260236bd075dfee305a","sha512":"2851c049ef9e4c41a89d8c3a2bbd36ddf904571685cff6d20e62f3fa9d9f264d57f93fe8a5c76f21cc0866f22ca9724238528675098e75587bcbda30894d7447","ssdeep":"96:fbd5+/v1WZCRyvl4npBGkG+Q4t+xEoijG3n5M4Dxamk6SYpy:E1wHGpBU+QaYJijS+4Dxamk6/py","tlshash":"0cc19d9621f8623b92c030fd332f23928285e515fda0aa4647129276896dfe7133964f","first_seen":"2026-01-23T13:15:53.965347Z","last_seen":"2026-06-19T02:23:54.815583Z","times_seen":49,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-4.webp?v=1780565978","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.807Z","timestamp":1781831214807,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-4.webp?v=1780565978 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 23720\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-5ca8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":23720,"size_decoded":24160,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"8f7d9953bc84426484adc6f745db56a2","sha1":"4b2eb7a41ac3ecb8458cb9a90a1e29f5ca6a0b38","sha256":"8de648b32007211b4d6bbce27f2fcc7dbe6c7aeb89b60a7d3bd229f496e74c59","sha512":"6c1dcd7f98fc9fae2903774b6bc81a5524c32aa0dbbf07189be3586fbd9ad1670755cd19bc3da79bbe50b624703aa8e78f830cbdb600e0ec8fc400be669b1c8c","ssdeep":"384:4FAFri5FozKgFR9Xa1jwvXFNsDh8WhzcAP+FT92vuXtIOlcivNxrXz52LYMMQWn:4MreFa01jwvXFNXAoAmFT92YeOmivNNJ","tlshash":"20b2f18ca17f23741c53945db2f57f851d4af63a8d05c03eb9d998c1a6444cb16ecf4a","first_seen":"2026-06-14T01:52:20.028131Z","last_seen":"2026-06-19T02:23:54.816617Z","times_seen":45,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/x9leqty9x08h0g63f86yhj.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.246Z","timestamp":1781831214246,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/x9leqty9x08h0g63f86yhj.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 4Eglv3Xkxp0y9OSpoHIIAno7qsa9r0XwR+Mql1/lz8ZKTyyVi1mrZqUyo+T32isW44DgkQ496J8=\r\nx-amz-request-id: XMKPXZY4ET8BKCQA\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:22:13 GMT\r\nETag: \"aa40d3c36b7e93a1250c149aa10c28dc\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2728\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2728,"size_decoded":3124,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"aa40d3c36b7e93a1250c149aa10c28dc","sha1":"f3ed48e17c10d97b08bb02f5019f6b9d712a0cdf","sha256":"9d7f29e3e3f54169e3694dbe29c89c073706e50418a0bb6edc20040d021e911d","sha512":"5ddc10620e65cc8ae987c38c14e6cfc46bdf1c5bf00bac25324600821aca5c9072e35ef134f062c524b0fb9722e60a139f2b65119562513f83ffa1b1498fd9aa","ssdeep":"","tlshash":"7d515e5d8164bc41e3632b74d2035b5597c00c8aa0e37e9146616b3fcde9a4129c2e33","first_seen":"2026-04-24T23:19:37.541477Z","last_seen":"2026-06-19T02:23:54.818129Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5540,"timings":{"blocked":42,"dns":0,"connect":169,"send":0,"wait":195,"receive":0,"ssl":5133},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/wyppudkahroaonsec0pj26.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.248Z","timestamp":1781831214248,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/wyppudkahroaonsec0pj26.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: wPxZmizIyYnAGS4LPaD8OCnRd3gWjj419+lVmluaBmCYt5c53W8Ucb8o0qHzufqMiubXJ+OIUXI=\r\nx-amz-request-id: XMKK3SBVKE231GS8\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:22:55 GMT\r\nETag: \"252dad9866507a12883fd0a94fef06d0\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 24748\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":24748,"size_decoded":25145,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"252dad9866507a12883fd0a94fef06d0","sha1":"78f69e78a108898d420a812d2bc9d7b5cae06e97","sha256":"54c3e4aae936f2f2656a330d92f5eb1bb29a5d4d762a98d63a988438fb632603","sha512":"a1fd89f397d210d0958dfa6b8083199697939835438b179d1237466a03ad691de44035b03c18ee1acd1efd124ee9c4972c0c7891093b7fa4a99da730ba8319f7","ssdeep":"384:f4tmwx7ZFLec3xP87lxObbiCBmyBXQBMYRDg+inNR1qdYtYciEaxiuB4dgMG3u:f+rRemznHhQBxIntPY4dgMG3u","tlshash":"19b2e07337f58eb15d10e2bbbd61b7948c91c824d28cc256862b86f427c1d31ba39e32","first_seen":"2026-04-24T23:19:37.566984Z","last_seen":"2026-06-19T02:23:54.823146Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5933,"timings":{"blocked":41,"dns":0,"connect":170,"send":0,"wait":194,"receive":509,"ssl":5014},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.482Z","timestamp":1781831214482,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://go-pedidosze-24h.shop\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 83941\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49344,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-19T07:20:28.228657Z","times_seen":213866,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":23,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.489Z","timestamp":1781831214489,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://go-pedidosze-24h.shop\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 83941\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49344,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-19T07:20:28.228657Z","times_seen":213866,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":34,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=44\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-44.jpg\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.515Z","timestamp":1781831214515,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=44\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-44.jpg\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/source/prod-44.jpg?v=1780433169\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=mansao-maromba-3\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-3.webp\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.525Z","timestamp":1781831214525,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=mansao-maromba-3\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-3.webp\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/mansao-maromba/mansao-maromba-3.webp?v=1780565978\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-3.webp?v=1780565978","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.804Z","timestamp":1781831214804,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-3.webp?v=1780565978 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 27002\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-697a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27002,"size_decoded":27442,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"818b1346ef7b1e979cf203e66dcf325b","sha1":"9c13e254c41d7e73f8113f30ac8d58a086907cfe","sha256":"857a0a37f96c3adc2e442233cf5b5ca8b9fe4f6692920d1f2c74aa1a57c1fbff","sha512":"944ffe6726b138c2f6e41148dd64851df66a29ee2139896933f0c9f4faa15d647f3ab56bb78a46359116f58908f4020d9b0e9dacfd96ed5e62841d3df2baf746","ssdeep":"768:QcgNxM5/5JovSDloRMbrHBHbYL4zi6GgvAffu8x:QciqmvihbrHBHbY426Gg3i","tlshash":"bcc2e19762e4080817f55e1a8d7b3d7d3b65cd823af22311a58323c643b6e2e4679f26","first_seen":"2026-06-14T01:52:20.022542Z","last_seen":"2026-06-19T02:23:54.826714Z","times_seen":46,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-2.webp?v=1780565978","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.809Z","timestamp":1781831214809,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-2.webp?v=1780565978 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 32646\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-7f86\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32646,"size_decoded":33086,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9ab37fb6d2b38464c2e373e8aa6f27fc","sha1":"9780e9eabfc0a69fd11944d98799001c21e1cd12","sha256":"79b40c5b5d627ccc99b8bb768f41fba3f23646b8f5f1605503de53809e4d5a6a","sha512":"8acf822924dc8ff8e00d81b469fade07cf3aac469d35cd0a291d922a5b77f787068e333fa3f23495547b7a1443d4acf6ddf03485fc63107576ce90ae4fe840a6","ssdeep":"768:+NjEa8Bj0rRRrK5QTXSmI+37jgYODXxladgULH1QcNFWVRUR:+NjkSG5oDI+3AYobTKVQcNyOR","tlshash":"35e2e12da0e6d8adc7a19d471fc8a86e0ee476c90e8b3551366035547c4b07a6b3399c","first_seen":"2026-06-14T01:52:20.037751Z","last_seen":"2026-06-19T02:23:54.826198Z","times_seen":46,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/v10oppivf4pu3beauykp4e.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.232Z","timestamp":1781831214232,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/v10oppivf4pu3beauykp4e.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: WzwG07tHjZLrLsOviS5sCLdeZ7am3JVMtDIvw6qPoANFVlBHzOsSH5vhMW86Nzs7REc9D7Mk6VI=\r\nx-amz-request-id: XMKQGF4WMXN5NQEJ\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:20:05 GMT\r\nETag: \"d1d59ec95819c44c45f8ed1062023e98\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2628\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2628,"size_decoded":3024,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d1d59ec95819c44c45f8ed1062023e98","sha1":"2d9b8b7391b1b62e0a65878a74b3dcdaf3bb7997","sha256":"64251a1881d34f75115b7f32af8ddb8d19b9e1e7f1c24f91859a6475562d3c08","sha512":"926424449a0b77c3f7146fc6b7017a2674b2d757adedca593155731bcc199a3830803750b38db7e8e8a8131d4d9d3acf5f74c7f270e973d13966c146b8802103","ssdeep":"","tlshash":"b2510b40ad8795c2cfd20c7ad9062c85f2534fc53eb488a64fbdb55bdb0e22481f6e1a","first_seen":"2026-04-24T23:19:37.693503Z","last_seen":"2026-06-19T02:23:54.821566Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5157,"timings":{"blocked":4968,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.493Z","timestamp":1781831214493,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://go-pedidosze-24h.shop\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 83941\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49344,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-19T07:20:28.228657Z","times_seen":213866,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":46,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=mansao-maromba-1\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-1.webp\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.521Z","timestamp":1781831214521,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=mansao-maromba-1\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-1.webp\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/mansao-maromba/mansao-maromba-1.webp?v=1780565978\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/018sany1r2ielbmt6xozxfeu.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.233Z","timestamp":1781831214233,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/018sany1r2ielbmt6xozxfeu.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: PpTt7CbTGGsYAPPKgC606cPm6PiAwKLGqaPmWawQ1rbgT869f+XM4oTSx77+KcIvt2sAROSy5No=\r\nx-amz-request-id: XMKJSBWS6SHFC2B6\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:21:00 GMT\r\nETag: \"8a87aabb1ff17aeb4820d07b4124a2d5\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 3154\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":3154,"size_decoded":3550,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"8a87aabb1ff17aeb4820d07b4124a2d5","sha1":"f7f5b26b2fc73950ff3b94ce07227e567db7060b","sha256":"7689ff94f7a588bfec6b20a0d220637fcb83743c7c9a6e328aef679bcd2dfc9c","sha512":"c69df00d712e5969ad9e1d1c9c7cf5c8b40cb5e19a15b3e49c24d87003bbb511a87a9b900fe894c032e0d963f4dda8a9aca23006c581ffd262f48961eeeb84dc","ssdeep":"","tlshash":"ba515d9fdecf86b83b4128385568826c8792c5252ef925333532c8e2b9a456d8cf2013","first_seen":"2026-04-24T23:19:37.622561Z","last_seen":"2026-06-19T02:23:54.822053Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5347,"timings":{"blocked":5157,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/2ual2g4ytelnkt94labih.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.250Z","timestamp":1781831214250,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/2ual2g4ytelnkt94labih.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: YHwEhDxKGRImpir53MidtObLklq6pL825/yvFNPnOZpI0Zep8ixK0jRsdAPfQBsCgQeTP0YXRK8=\r\nx-amz-request-id: XMKSYW56X1A3MKR4\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:23:10 GMT\r\nETag: \"9037785a55bedd9636d347ce8f5f2b9d\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2258\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2258,"size_decoded":2654,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"9037785a55bedd9636d347ce8f5f2b9d","sha1":"37d57a70eea494285c76f23da8d5dcacdf5e6502","sha256":"583d2d6447423f4168eae20285b50ab3d32a2d86f0c6e39d1e05e3e05fba02b4","sha512":"474612b7b078eef9973821f0cebfc948a15e3e479b5dada8f80596703c85a64c6d336fd22c52b8a025c9eb608c64e44d40edc1a6a2dff9043dcebea7731f4e50","ssdeep":"","tlshash":"7b414b2421450f5363382c6c43780f57e8ae9262aae98c031d9e6d4d2fef1b03c91e2c","first_seen":"2026-04-24T23:19:37.539569Z","last_seen":"2026-06-19T02:23:54.823687Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5548,"timings":{"blocked":41,"dns":0,"connect":170,"send":0,"wait":196,"receive":0,"ssl":5138},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/pix-solid-ref.png","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.260Z","timestamp":1781831214260,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/pix-solid-ref.png HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 02 Jun 2026 07:17:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1e837c-4ed4\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20180,"size_decoded":20055,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"e6b8bbaf8b9a5b9446c98bcf7b41ce3a","sha1":"6796fa4c73b87fafaec381d53834a3b4158fb3df","sha256":"454bb89569af036099504cadef906c2518d33b3f15cd6057713792fea15753fd","sha512":"8daf9ce895a23a4c0533dcc6ac13d0b44f27d7032ca4e72a76c9bfbd4db5735b8835ecf6626461d4287b561a3471a68a72724d7b8b6f7ece0f3f01ced97b6605","ssdeep":"384:xztiOMrv4op1Q0hm0a575wE3EBE4ax9fHcRu0WGB8ENlQd4AQVD:xztK4oHm067v3EmhPku0W8NlQYD","tlshash":"8a92df2f7cbfee69c3125fa02149d3948e431217c8511290d8cebb17152fb113ee2b15","first_seen":"2025-02-10T02:00:59.404802Z","last_seen":"2026-06-19T02:23:54.824244Z","times_seen":54,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/ze-banner.jpg","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.400Z","timestamp":1781831214400,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/ze-banner.jpg HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 02 Jun 2026 07:16:55 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1e8367-2514d\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":151885,"size_decoded":152345,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3","md5":"f39cb992e48ca3406a5b61fcf455e100","sha1":"0a59387ba5c565af08d25c7d3cb8caffe94e7c1e","sha256":"87793d738835a059eba96059fe863cf01047ef22aa58ada1eff38e19461c404b","sha512":"296c1574b75867614775d3be14863396f6b13e33eeb1c3595bbd865ef67caac277f55173e895970a014aabf5b915e2045f710aa530be3605a3ea70be28e625d3","ssdeep":"3072:NZan7dCJsPBGUqFWOJcCT18yuesBHJ4lMV18U/oaO49+n:uxcoqF3T2yPMf15/r9C","tlshash":"9ee312bb38fcfdc1432d5be6a19918d004f98d2ca760b1b505d8c5269ea6cbfc138729","first_seen":"2026-04-24T23:19:37.619908Z","last_seen":"2026-06-19T02:23:54.824736Z","times_seen":48,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.487Z","timestamp":1781831214487,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://go-pedidosze-24h.shop\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 83941\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49344,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-19T07:20:28.228657Z","times_seen":213866,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":28,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=478\u0026fallback=assets%2Fproducts%2Fchurrasco%2Fpicanha-perdigao-na-brasa-exata.jpg\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.508Z","timestamp":1781831214508,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=478\u0026fallback=assets%2Fproducts%2Fchurrasco%2Fpicanha-perdigao-na-brasa-exata.jpg\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/churrasco/picanha-perdigao-na-brasa-exata.jpg?v=1780566286\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=49\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-49.jpg\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.519Z","timestamp":1781831214519,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=49\u0026fallback=assets%2Fproducts%2Fsource%2Fprod-49.jpg\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/source/prod-49.jpg?v=1780433169\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/image.php?id=mansao-maromba-2\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-2.webp\u0026v=4","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.523Z","timestamp":1781831214523,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /image.php?id=mansao-maromba-2\u0026fallback=assets%2Fproducts%2Fmansao-maromba%2Fmansao-maromba-2.webp\u0026v=4 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: assets/products/mansao-maromba/mansao-maromba-2.webp?v=1780565978\r\ncache-control: no-store, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/webp","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T07:20:25.16546Z","times_seen":16538323,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.478Z","timestamp":1781831214478,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://go-pedidosze-24h.shop\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 83941\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49344,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-19T07:20:28.228657Z","times_seen":213866,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":33,"send":0,"wait":19,"receive":49,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.491Z","timestamp":1781831214491,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://go-pedidosze-24h.shop\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 83941\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49344,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-19T07:20:28.228657Z","times_seen":213866,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":24,"dns":0,"connect":0,"send":0,"wait":42,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/source/prod-78.jpg?v=1780433170","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.718Z","timestamp":1781831214718,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/source/prod-78.jpg?v=1780433170 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 02 Jun 2026 20:46:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1f4112-9c5\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2501,"size_decoded":2802,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3","md5":"c12612382bc214d45ec100930379314a","sha1":"d528bc54648644b06ba266dd148b96b02e97ebd0","sha256":"22107a42dc15661c520f20ef55051df94ef73b4a95301b1201e109687dfdbad2","sha512":"909cf0bbf0c82f0d99711fce0e656414b44951db9baf0fb31ae9a1fc2658fc0bb7da3e318361136f792351c4063405d193a656d1683a0c1b839e6f8d4425677d","ssdeep":"","tlshash":"84512ce59deae272fc2f90b7ad5f13108b00c978bd0c5506f41dd72115988545b14862","first_seen":"2026-06-14T01:52:20.023539Z","last_seen":"2026-06-19T02:23:54.815052Z","times_seen":46,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/source/prod-44.jpg?v=1780433169","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.720Z","timestamp":1781831214720,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/source/prod-44.jpg?v=1780433169 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 02 Jun 2026 20:46:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a1f4111-f4e\"\r\nexpires: Sun, 19 Jul 2026 01:06:54 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3918,"size_decoded":3805,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3","md5":"391a2fe3653ef5abc83807cde5166946","sha1":"5190e14c42d92fba0e195bbc4d9cd367463d9102","sha256":"e37eac2d60e106c8c562463b69fc6ed9b75c341e01b85d5fff89f0cc8f2b311d","sha512":"7ed499badca2e8de099aa9a77a220019cc9b6e781094977421a631bd8ecbb5bcb277a08db44df24e1b173e6dc437446a3147abb08494db5e8b644ab0f1ab0cae","ssdeep":"","tlshash":"41814ab4bb5a9176d80a533188053b99fb492b216a1309f5c48c047e8bc3d9c2fce15e","first_seen":"2026-06-14T01:52:20.03875Z","last_seen":"2026-06-19T02:23:54.817619Z","times_seen":46,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"go-pedidosze-24h.shop/assets/products/mansao-maromba/mansao-maromba-1.webp?v=1780565978","fqdn":"go-pedidosze-24h.shop","domain":"go-pedidosze-24h.shop","tld":"shop"},"ip":{"addr":"88.80.17.179","port":443,"asn":33837,"as":"Fredrik Holmqvist","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.802Z","timestamp":1781831214802,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"go-pedidosze-24h.shop","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Jun 2026 18:53:53 GMT","end":"Mon, 14 Sep 2026 18:53:52 GMT"},"fingerprint":{"sha1":"A4:23:2A:F7:53:20:C0:83:03:83:DA:BB:78:59:AF:54:4B:63:DF:A5","sha256":"CE:87:BC:3A:C0:EE:86:6A:C8:5D:2B:78:8E:44:79:5A:4C:10:A4:3F:25:6C:5B:9B:CD:01:15:CB:91:41:05:39"}}},"request":{"raw":"GET /assets/products/mansao-maromba/mansao-maromba-1.webp?v=1780565978 HTTP/1.1\r\nHost: go-pedidosze-24h.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Fri, 19 Jun 2026 01:06:54 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16890\r\nlast-modified: Thu, 04 Jun 2026 09:39:38 GMT\r\netag: \"6a2147da-41fa\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16890,"size_decoded":17330,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"909998ab12e73928bd3723ffbe271398","sha1":"433c3c90e7705b41d9d28ef192d326b5f2b9d4b2","sha256":"a73fab118034b2d9d6cbb09f2a51503b167ebbe630fd51d691b569cd1caab12c","sha512":"a6507650630d47dad8c9af956d43a4c78ffd124944ea24b129c0d127cf90d7f77a26cc497b0c61d9138ceb251fb7292b849a3efa67bc8e03e7b1576c10028b12","ssdeep":"384:A4DvpWulZjt45TDhs9tTqZZOssrISBW/EXHTX6oWQ3nxGSm/p:XvpWiZAs9zss+/EXHDd3nkSip","tlshash":"9772cfcf5b62becb3f89784edf2000990c59e5b22c11123f42cb639b6a3579d43d6559","first_seen":"2026-06-14T01:52:20.011704Z","last_seen":"2026-06-19T02:23:54.820064Z","times_seen":51,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-06-19","alert":"Sinkholed","trigger":"go-pedidosze-24h.shop","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-19","alert":"Phishing Block","trigger":"go-pedidosze-24h.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/46hzrzhtayt0pshmmx2ydua.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.239Z","timestamp":1781831214239,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/46hzrzhtayt0pshmmx2ydua.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: zguYT1ElW5rZ50jgj4rRhIMrDycKCnimPBBjsZ2egibTN07efjiBRl5gV8/mxZAduj0sGIqslho=\r\nx-amz-request-id: XMKK3AFZSS452VVD\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:22:48 GMT\r\nETag: \"b176022bd68ad5e2b9cf7eee56c324b5\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 900\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":900,"size_decoded":1295,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 96x96, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"b176022bd68ad5e2b9cf7eee56c324b5","sha1":"653bd13d52d1a54205b0f2e2ec8a24bd4fa8d0a3","sha256":"ea10ec2b925750cbdfcc54b423f1a52055eb4e127db86b1ae1b1771b77f0a226","sha512":"97eb5197af98e1e1addde7351e7643e998c73d1623229324307eb77c7f69d22d13f26ce582dc95dd676d5d90d6cdb171e2a87084ca505feeb0680c0b2eea647f","ssdeep":"","tlshash":"b511b71185f27f8ec78af3bcbf93975e51a2124f1812545a416ae61622225c3f948132","first_seen":"2026-04-24T23:19:37.561845Z","last_seen":"2026-06-19T02:23:54.813103Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5544,"timings":{"blocked":5348,"dns":0,"connect":0,"send":0,"wait":196,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/5lde8qtzl0m9jn1y99f9pu.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.241Z","timestamp":1781831214241,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/5lde8qtzl0m9jn1y99f9pu.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: v09141AQPErg+W47spiUbhBkkYJj4kUSYeJ+Vo6wWT+XFRFDDHHZSwy8iBtTdYoIYgEaGHCXyxI=\r\nx-amz-request-id: XMKS3C9DXP2BM02F\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:21:08 GMT\r\nETag: \"65a25ffe2d2a22a23bc8c1f09eca66b6\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 2660\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2660,"size_decoded":3056,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"65a25ffe2d2a22a23bc8c1f09eca66b6","sha1":"101e4265352be6951b48a74a72681ee509f8e6fc","sha256":"ddde6746bc23e2ef7002efda5699b5a235b261c8dbbcf1a6e6fe8b4dae42e368","sha512":"1f0116cac84d7fe46792ce3fa1593ce87ed4e99f982d795dad1f906758265d90f857a8b816275a02f8aaa5a9ab1039b2146c75afd4301854a874b346ae2ab407","ssdeep":"","tlshash":"2351380c7d2032f2fd5c0cba7c79bbaa2ae0e5d1e0ad4d180cc01208052a0782ec8a3e","first_seen":"2026-04-24T23:19:37.602725Z","last_seen":"2026-06-19T02:23:54.813545Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5671,"timings":{"blocked":5479,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com/29198/public/uploads/jj1a5e8bk2oro3d51zob.webp","fqdn":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","domain":"abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com","tld":"s3.us-west-2.amazonaws.com"},"ip":{"addr":"52.92.188.58","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://go-pedidosze-24h.shop/","date":"2026-06-19T01:06:54.257Z","timestamp":1781831214257,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_CHACHA20_POLY1305_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-us-west-2.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 18 Nov 2025 00:00:00 GMT","end":"Fri, 30 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F8:A8:05:2C:6A:4D:1B:65:BB:E8:A2:51:59:D0:59:B8:41:84:CB:1E","sha256":"02:A5:70:13:85:29:96:D8:DB:48:40:13:C1:FC:73:3A:17:F2:35:58:E7:05:F5:96:C7:DE:D1:96:FE:E0:F7:65"}}},"request":{"raw":"GET /29198/public/uploads/jj1a5e8bk2oro3d51zob.webp HTTP/1.1\r\nHost: abacusai-apps-7ef611aab06acb393db5c9dc-us-west-2.s3.us-west-2.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://go-pedidosze-24h.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: L5VVOcILDvQo3vKu1W2pMXFhs1SaUGx9To7zN8urp8k+Jq2SSt0pHPD1h+bHcgMUIrmSqSgUfas=\r\nx-amz-request-id: XMKZAVVS1CQ8NNXN\r\nDate: Fri, 19 Jun 2026 01:07:00 GMT\r\nLast-Modified: Tue, 10 Mar 2026 12:20:30 GMT\r\nETag: \"3e35d96bf6454282dc6b1cc206075d88\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 1592\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1592,"size_decoded":1988,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"3e35d96bf6454282dc6b1cc206075d88","sha1":"5445439fd17edb561a797aa2c1e333fa27bda6f2","sha256":"9ac1642673e9a3e4a8474822fc96d9f711a450ca23fc62a874e5a323268412f3","sha512":"7cc614f672a3ab9a79a544b69347c712bb1aba611482c4e0518a14117ed3d4dd1118b33dfbb10c29516615eb69d5e7a18d8bfccc041e9b14732c213787140e30","ssdeep":"","tlshash":"06310a3cd841a2c87747c99d1165bf89a0def3cf40328325801a5893fe29e29921d0c4","first_seen":"2026-04-24T23:19:37.635798Z","last_seen":"2026-06-19T02:23:54.819525Z","times_seen":50,"resource_available":false,"data":null}},"time_used":5668,"timings":{"blocked":39,"dns":0,"connect":170,"send":0,"wait":200,"receive":0,"ssl":5257},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}