{"report_id":"f4c09960-c9ea-4e52-9228-ac41b8dcd24e","version":6,"status":"done","tags":[],"date":"2026-02-05T01:17:08Z","url":{"schema":"http","addr":"wswhtsp.shop","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":0,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"wswhtsp.shop/safedetail.html","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"title":"WhatsApp 安全检测中心","dom":{"size":13523,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4370)","md5":"d95cf0dfced2b841419b0425fe01575e","sha1":"a7e7f0507289d674d07cb862508deddf6a099e74","sha256":"9e3d25ec2de1593992d0f3fd8b65d808ac8e7aad6d39ef28aed4732242274f25","sha512":"784338d6d02f8f004538fa82550abc56b3b627951e38bac13dd17bf6b8404d4e96e742580720154cbfb569a267d4e12572c8ec814b0e68b21ce2558e03444630","ssdeep":"192:kHA/3jbCJ2q8IIBrazyE5wJBc/epVXuqp6s1sGmnQ:kHQbG05r80BJDl1sbnQ","tlshash":"4c52a26466f8866d408bc2d5aa712a2f2f9af2b3d94b4124bb7c4be41f93d95dd03048","dom_hash":"domhashf6055d561de69625133854a848933f0e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"wswhtsp.shop","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":0,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-12T01:17:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"yingguo88.com","ip":{"addr":"143.92.57.169","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2025-12-30","domain_rank":0,"first_seen":"2026-01-06T09:15:41.055619Z","last_seen":"2026-02-05T00:22:26.717587Z","alert_count":0,"request_count":2,"received_data":636,"sent_data":970,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-02-01T22:46:30.991716Z","alert_count":0,"request_count":1,"received_data":90137,"sent_data":420,"comment":"","tags":null,"fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"wswhtsp.shop","ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-05T00:22:26.174203Z","last_seen":"2026-02-05T00:22:26.174203Z","alert_count":9,"request_count":9,"received_data":164621,"sent_data":4048,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"wswhtsp.shop/","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"60bf69c198625b103dfa6e53e8256a61","sha1":"85ee32fec12d373c5a355bececa14c6e29a6319c","sha256":"386b7d3c5f125addc39f00636a092629abfc76485b8d4ea2e54638ab1683d371","sha512":"7afd823a0f7f23d2de391bb622068fcfd6380e7813aa838ea7eba3e1e17be29a92777649d65ffeb98ab822ebed6f4a8013c9c9be0a884c68bf7a536712e03497","ssdeep":"192:vdaiUJHe0l5ywHaauAEcmK50lA+f/fAG6WnTAOcAKCOvdz6Am6O5T:vdKzAopUkM","tlshash":"84d1be0da13f271094f7a1b93fa32884d838e4372155fdb6bd4e9ac02f99704efa4665","size":6454,"data":"","first_seen":"2026-01-06T09:15:45.541091Z","last_seen":"2026-02-05T01:17:08.683038Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/js/jquery-3.4.1.min.js","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a6b6350ee94a3ea74595c065cbf58af0","sha1":"b15f7cfa79519756dff1ad22553fd0ed09024343","sha256":"412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb","sha512":"f5a9c6aee347c155e4dd796c51716b7447bc22ae44741fceb6bcfee02f955ad4063d38613f241108a3e1f3e1f540fcaed8d9848b9a0fb823c00955cf9a19efad","ssdeep":"1536:jTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPmt:jgZm0H5HO5+gCKWZyPmHQ47GKR","tlshash":"a08319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88147,"data":"","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-06-07T23:46:49.570432Z","times_seen":5119,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-06-08T01:13:48.210992Z","times_seen":479190,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/js/safedetail.js","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"099a72c5ad739808f660774d7d86dae6","sha1":"add3606244cf95886a0142b78b7d441f2e9333b1","sha256":"bc201891d4a107cc5153c44854f19ec661d2e3ea0a77c0c314217ca3dc9d9444","sha512":"991aade565943db716b17ea02719b1cb29ce42b27792a20d744acb1d1b7ffa91099436c303d4d618ee41aa5028f98c4ec97c12f60c6b4d823516638f3a99392d","ssdeep":"768:s0qDXYsz9/lebk8nUXFenMLNnZG1kVWdOboBsLZsBV5KDORhkoCw0pLToPTxiJNf:sAsh/wAjhihCw0pLToPTcJHPXlwymizd","tlshash":"7af25f15b27f1616d4b31051aa677480fdb4293b2612fef8bc5c2de02fd8788d23969a","size":36593,"data":"","first_seen":"2026-01-06T09:15:45.53747Z","last_seen":"2026-02-05T01:17:08.671334Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"wswhtsp.shop/","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-05T01:16:46.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:47 GMT\r\nContent-Type: text/html\r\nLast-Modified: Tue, 30 Dec 2025 15:46:24 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"6953f3d0-1cb8\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.4.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":7352,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"d1c3a0663c08d44c2ccae903ae48593d","sha1":"b6047454a6b32c99f2e2985d823d3ae832ad7226","sha256":"228d7b7d7f58a71abfdba7db803697ac4a45572539c174c45f98aec031fd4acf","sha512":"3e3a26cdc642c5f05349f5cc0edea87eaf12b3d66a83224d82bb345b0b90208c0314a0e8a8eaec8069fa48d2a0b9368b035d8f843d0e49503714f1aa9d22cbbd","ssdeep":"192:HwCJdaiUJHe0l5ywHaauAEcmK50lA+f/fAG6WnTAOcAKCOvdz6Am6O5a:HldKzAopUkF","tlshash":"09e1010da17e271190f7a1b43fa33884dc38e4372145fdb9bd4e9ac02f89b44eea5565","first_seen":"2026-01-06T09:15:45.538359Z","last_seen":"2026-02-05T01:17:08.655856Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1878,"timings":{"blocked":816,"dns":55,"connect":246,"send":0,"wait":247,"receive":0,"ssl":512},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/css/wechatindex.css","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wswhtsp.shop/","date":"2026-02-05T01:16:48.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /css/wechatindex.css HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:47 GMT\r\nContent-Type: text/css\r\nContent-Length: 688\r\nLast-Modified: Tue, 01 Apr 2025 02:39:00 GMT\r\nConnection: keep-alive\r\nETag: \"67eb51c4-2b0\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":688,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"7cc1b09ca8e608d6c8a93436d5ee63f3","sha1":"09a16a3e64538c81e9aad07a2a05c61507972f52","sha256":"1e945044e29e1f8a0d728dc9ca3684e2c831b2ec4a44fd3f394c7cf51c6a54c7","sha512":"d85c6b32e8f0e6bad349871a0ce4328245531fba579bd051bdd19f76e5ff751015e6a5c6e968c38fa7e34ace09873fcb935be7da5bddca11117510c80fa884c7","ssdeep":"","tlshash":"3f019994da2912066b33f8e03ff24e5162e9c481c78a42b57bf11009d2ca18adf75bdc","first_seen":"2025-06-19T04:40:40.67711Z","last_seen":"2026-02-05T01:17:08.659811Z","times_seen":7,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/img/logo.jpg","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wswhtsp.shop/","date":"2026-02-05T01:16:48.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /img/logo.jpg HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:48 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9674\r\nLast-Modified: Tue, 30 Sep 2025 04:24:58 GMT\r\nConnection: keep-alive\r\nETag: \"68db5b9a-25ca\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9674,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 475x463, components 3","md5":"319d8fd3f04b42dc848df5dc0ef2f65b","sha1":"4a6b2e1d1c85fa204653dde9a44990a742f0455c","sha256":"157ab5a5272ad9a02f6f6bc44e2cf52e1118be0d7f2c6673a573471854c88215","sha512":"18847885eee40d078178f20315454a2be60ad156737a60147dd7d265e83000c65c67c3a1c7e34b3b40768ee8fd68e7db9b91fdc63c1d3828b04ae0eeb35e04e3","ssdeep":"192:pxNVBxlEdV3VNMvczM+7Af07O+Eph0DqOAkEa/Qs:p4d1MczMnI/EpyVAkNf","tlshash":"ce129fd643c2c24fc9695974156e820b9389ae52e79403d352c4aee0deee1e63cd60e9","first_seen":"2025-10-17T00:27:13.494029Z","last_seen":"2026-02-05T01:17:08.66407Z","times_seen":6,"resource_available":false,"data":null}},"time_used":1766,"timings":{"blocked":758,"dns":0,"connect":246,"send":0,"wait":246,"receive":1,"ssl":510},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yingguo88.com/whatsapp/language","fqdn":"yingguo88.com","domain":"yingguo88.com","tld":"com"},"ip":{"addr":"143.92.57.169","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wswhtsp.shop/","date":"2026-02-05T01:16:48.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yingguo88.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 04:45:34 GMT","end":"Mon, 30 Mar 2026 04:45:33 GMT"},"fingerprint":{"sha1":"AE:0A:08:2D:DC:DC:6B:7B:32:67:CB:F8:18:B1:19:19:AE:DB:57:47","sha256":"1F:81:D5:AC:B0:B2:37:09:13:3F:F2:8C:AA:80:9C:18:41:39:53:88:6D:E0:FA:73:87:F3:C8:39:F6:B0:CF:06"}}},"request":{"raw":"GET /whatsapp/language HTTP/1.1\r\nHost: yingguo88.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://wswhtsp.shop\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 01:16:49 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: *\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6fe7582aa50060ed222953a46c625f97","sha1":"e50b47a2debc9fdef101b2a8f2d725ccab27267e","sha256":"1842332ad9ed9b1b76f500e9dba3c30e3362ae79daeec56ba3f78589fba4fd74","sha512":"5f86e8f114e4b3208e1a9565728d3e2bd2f5fb216d3a140a90b9badb8f85a64b9dc6c8fcfd0fdac2179f7c3fc79dd348d6bbef1cf34f6567aafe9b0834563bbe","ssdeep":"","tlshash":"0770003038288002a80200c0200800008a2a22000e2000220c808fb0800002020208a0","first_seen":"2026-01-06T09:15:45.533544Z","last_seen":"2026-02-05T01:17:08.666823Z","times_seen":6,"resource_available":false,"data":null}},"time_used":1717,"timings":{"blocked":701,"dns":70,"connect":312,"send":0,"wait":315,"receive":0,"ssl":317},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wswhtsp.shop/safedetail.html","date":"2026-02-05T01:16:51.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.6.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15d9d\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Thu, 05 Feb 2026 01:16:52 GMT\r\nage: 1316319\r\nx-served-by: cache-lga21931-LGA, cache-hel1410025-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 71, 490310\r\nx-timer: S1770254212.053751,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30875\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-06-08T01:13:48.210992Z","times_seen":479190,"resource_available":true,"data":null}},"time_used":173,"timings":{"blocked":68,"dns":3,"connect":27,"send":0,"wait":27,"receive":8,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/js/safedetail.js","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wswhtsp.shop/safedetail.html","date":"2026-02-05T01:16:51.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /js/safedetail.js HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/safedetail.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:51 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 30 Dec 2025 15:37:23 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"6953f1b3-8f4f\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":36687,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (525)","md5":"099a72c5ad739808f660774d7d86dae6","sha1":"add3606244cf95886a0142b78b7d441f2e9333b1","sha256":"bc201891d4a107cc5153c44854f19ec661d2e3ea0a77c0c314217ca3dc9d9444","sha512":"991aade565943db716b17ea02719b1cb29ce42b27792a20d744acb1d1b7ffa91099436c303d4d618ee41aa5028f98c4ec97c12f60c6b4d823516638f3a99392d","ssdeep":"768:s0qDXYsz9/lebk8nUXFenMLNnZG1kVWdOboBsLZsBV5KDORhkoCw0pLToPTxiJNf:sAsh/wAjhihCw0pLToPTcJHPXlwymizd","tlshash":"7af25f15b27f1616d4b31051aa677480fdb4293b2612fef8bc5c2de02fd8788d23969a","first_seen":"2026-01-06T09:15:45.53747Z","last_seen":"2026-02-05T01:17:08.671334Z","times_seen":6,"resource_available":true,"data":null}},"time_used":248,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/favicon.ico","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wswhtsp.shop/safedetail.html","date":"2026-02-05T01:16:52.252Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/safedetail.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:51 GMT\r\nContent-Type: text/html\r\nContent-Length: 149\r\nConnection: keep-alive\r\nETag: \"6956936e-95\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":149,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"072b53f1225664624bbc650a1d989157","sha1":"410bdc01a54c052267a829f0c27772a8b6e001c2","sha256":"b91edd68807f90417064cda18a801c34746354709580d3f33e25b812b6317c18","sha512":"a42918e7916fe52f41e610629a13840cd86ed22bf4c66d3365d903c49a9623528c5d22d363f56694bb124c1e9e6baec5acfd460424ad4745595995581d49e986","ssdeep":"","tlshash":"6bc02b2c35232b488513203113e33290c087833f787e852104008033f2cb399eec33d6","first_seen":"2025-08-14T15:59:58.728241Z","last_seen":"2026-06-07T22:54:28.987842Z","times_seen":895,"resource_available":true,"data":null}},"time_used":247,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yingguo88.com/whatsapp/language","fqdn":"yingguo88.com","domain":"yingguo88.com","tld":"com"},"ip":{"addr":"143.92.57.169","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://wswhtsp.shop/safedetail.html","date":"2026-02-05T01:16:52.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yingguo88.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Dec 2025 04:45:34 GMT","end":"Mon, 30 Mar 2026 04:45:33 GMT"},"fingerprint":{"sha1":"AE:0A:08:2D:DC:DC:6B:7B:32:67:CB:F8:18:B1:19:19:AE:DB:57:47","sha256":"1F:81:D5:AC:B0:B2:37:09:13:3F:F2:8C:AA:80:9C:18:41:39:53:88:6D:E0:FA:73:87:F3:C8:39:F6:B0:CF:06"}}},"request":{"raw":"GET /whatsapp/language HTTP/1.1\r\nHost: yingguo88.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://wswhtsp.shop\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 01:16:52 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: *\r\ncache-control: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6fe7582aa50060ed222953a46c625f97","sha1":"e50b47a2debc9fdef101b2a8f2d725ccab27267e","sha256":"1842332ad9ed9b1b76f500e9dba3c30e3362ae79daeec56ba3f78589fba4fd74","sha512":"5f86e8f114e4b3208e1a9565728d3e2bd2f5fb216d3a140a90b9badb8f85a64b9dc6c8fcfd0fdac2179f7c3fc79dd348d6bbef1cf34f6567aafe9b0834563bbe","ssdeep":"","tlshash":"0770003038288002a80200c0200800008a2a22000e2000220c808fb0800002020208a0","first_seen":"2026-01-06T09:15:45.533544Z","last_seen":"2026-02-05T01:17:08.666823Z","times_seen":6,"resource_available":false,"data":null}},"time_used":315,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":315,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/js/jquery-3.4.1.min.js","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://wswhtsp.shop/","date":"2026-02-05T01:16:48.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /js/jquery-3.4.1.min.js HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:47 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 01 Apr 2025 06:49:48 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"67eb8c8c-15853\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":88147,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators","md5":"a6b6350ee94a3ea74595c065cbf58af0","sha1":"b15f7cfa79519756dff1ad22553fd0ed09024343","sha256":"412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb","sha512":"f5a9c6aee347c155e4dd796c51716b7447bc22ae44741fceb6bcfee02f955ad4063d38613f241108a3e1f3e1f540fcaed8d9848b9a0fb823c00955cf9a19efad","ssdeep":"1536:jTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPmt:jgZm0H5HO5+gCKWZyPmHQ47GKR","tlshash":"a08319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-06-07T23:46:49.570432Z","times_seen":5119,"resource_available":true,"data":null}},"time_used":738,"timings":{"blocked":242,"dns":0,"connect":0,"send":0,"wait":249,"receive":247,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/favicon.ico","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://wswhtsp.shop/","date":"2026-02-05T01:16:49.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:49 GMT\r\nContent-Type: text/html\r\nContent-Length: 149\r\nConnection: keep-alive\r\nETag: \"6956936e-95\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":149,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"072b53f1225664624bbc650a1d989157","sha1":"410bdc01a54c052267a829f0c27772a8b6e001c2","sha256":"b91edd68807f90417064cda18a801c34746354709580d3f33e25b812b6317c18","sha512":"a42918e7916fe52f41e610629a13840cd86ed22bf4c66d3365d903c49a9623528c5d22d363f56694bb124c1e9e6baec5acfd460424ad4745595995581d49e986","ssdeep":"","tlshash":"6bc02b2c35232b488513203113e33290c087833f787e852104008033f2cb399eec33d6","first_seen":"2025-08-14T15:59:58.728241Z","last_seen":"2026-06-07T22:54:28.987842Z","times_seen":895,"resource_available":true,"data":null}},"time_used":246,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":246,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/safedetail.html","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-05T01:16:51.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /safedetail.html HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:51 GMT\r\nContent-Type: text/html\r\nLast-Modified: Tue, 30 Dec 2025 09:16:00 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"69539850-3654\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":13908,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4198)","md5":"164691c4a6682858e62919ab3ab9a28c","sha1":"c72bdc54f928f2f1ee40d00388dabe7dd316babd","sha256":"3992bad5d50a35a43fe400c1ff46bd6e686b81201956dfd1dd4a3116aff79ef5","sha512":"d7748f174156d1a3285f22584aac9699a8da11e74bba016be95a22889fe3012eee1559aae5e10b0d26a393130a30362386ce127875c4dc2978246f82a59c4270","ssdeep":"192:z93jbCJ2q8IIBrazyE5wJBJ/M3EvNvmZ4:BbG05r80BH1uZ4","tlshash":"6f526460a6fc55e9408fc6d2be217a2b2f5af577d64b4108bbbc4ba40f83d96dd03058","first_seen":"2026-01-06T09:15:45.53977Z","last_seen":"2026-02-05T01:17:08.678213Z","times_seen":6,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":247,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wswhtsp.shop/css/safedetail.css","fqdn":"wswhtsp.shop","domain":"wswhtsp.shop","tld":"shop"},"ip":{"addr":"192.163.167.170","port":443,"asn":395954,"as":"LEASEWEB-USA-LAX","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://wswhtsp.shop/safedetail.html","date":"2026-02-05T01:16:51.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"wswhtsp.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 10:44:50 GMT","end":"Tue, 05 May 2026 10:44:49 GMT"},"fingerprint":{"sha1":"05:2A:7E:C8:96:F2:86:A5:6A:58:10:02:31:FD:DB:82:0A:44:FD:50","sha256":"3E:3D:7C:2C:54:71:36:A8:DC:2E:C6:D1:89:03:1C:1F:2B:1B:56:52:C2:5A:4C:53:48:64:0C:14:51:A8:FA:BA"}}},"request":{"raw":"GET /css/safedetail.css HTTP/1.1\r\nHost: wswhtsp.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://wswhtsp.shop/safedetail.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 05 Feb 2026 01:16:51 GMT\r\nContent-Type: text/css\r\nLast-Modified: Tue, 01 Apr 2025 03:41:54 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"67eb6082-164d\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5709,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"d88de9daf238b535e34775c9e6d693ac","sha1":"3e02f3e6db270d909ec8e03220d9e4ddfa9f5a47","sha256":"9451b1d09b0561bdd1500ecc76e60739196ff18e64306709fe17cb4390e85987","sha512":"4bb64a2202696993eb369a27d99fcafdecae4285c13239d230921e46fdd84b600262f1e5c843f0889cde203d84a184058a602f116df949f79201217643a857a4","ssdeep":"96:ZBO/mhsKZdOOLzbK8uXD2FTSK4v/aD8b4QWIY6b74duOA:bO/my4jODpv/C6b+A","tlshash":"b9c1fd88db195006b277d9b8bbe15ea667a440a2cb06437ebff03049e2c857c5935fdc","first_seen":"2025-06-19T04:40:40.683405Z","last_seen":"2026-02-05T01:17:08.681281Z","times_seen":9,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-05","alert":"Phishing Block","trigger":"wswhtsp.shop","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}