{"report_id":"008985fe-4bb0-4e7d-8514-4bd7555bf012","version":6,"status":"done","tags":[],"date":"2026-05-04T13:22:31Z","url":{"schema":"http","addr":"jp-ibgroup.com","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"104.21.39.117","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"title":"EXAI TRADE","dom":{"size":183701,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (340)","md5":"ba4b0a004c4e6a40669cf67d6f429418","sha1":"76ecd8254fde73f738bed4bcc27aeaa3a900f3b0","sha256":"70e8ecbf031bce0e8530a889cd2eff5a61fc01fd2d9bb58594faa39ee463b9e6","sha512":"a4ec8c23517d219e500d3220ecb54a5a4c78f6271e543ccaaaf92fe73043ec44b3f4630672975ecf332d3ef9bfee945caef6ea48da4e60aeceb43d9adf3c0f2f","ssdeep":"1536:POSvhqhGxs2juHjHcJ0uLygeO+oSnacfkXyts9pO8hBhBkGXgjV:NhsRbcJ0uLypoNcfkZpjhBhSGwjV","tlshash":"6704b5249bda053b302340c666656f977eb58833d11a86643bbe0a90ffc7e54a5733ec","dom_hash":"domhash59a67901395349bd3a9b6c95a0655850","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"jp-ibgroup.com","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"104.21.39.117","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-08T13:22:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"jp-ibgroup.com","ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":33,"request_count":33,"received_data":2893865,"sent_data":18330,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"ThinkPHP","description":"ThinkPHP is an open-source PHP framework with MVC structure developed and maintained by Shanghai Topthink Company.","website":"https://www.thinkphp.cn","common_platform_enumeration":"cpe:2.3:a:thinkphp:thinkphp:*:*:*:*:*:*:*:*","icon":"ThinkPHP.png","categories":["Web frameworks"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Bootstrap:5","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"marketing.etorostatic.com","ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"domain_registered":"2015-02-12","domain_rank":1439677,"first_seen":"2015-08-11T01:55:33Z","last_seen":"2026-05-04T06:54:40.529769Z","alert_count":0,"request_count":14,"received_data":674155,"sent_data":6892,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-03T22:20:33.622142Z","alert_count":0,"request_count":1,"received_data":6149,"sent_data":470,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"68b441c0b17b91bbe70c8ec49058198f","sha1":"3f02d007b25b1489f0e74532d70fa2e417192c7b","sha256":"b35b08561aaac0827f7969122060fecc879c5fc47cc32caf5b71d38974325ff1","sha512":"ce9331eb1def371e575d7a360a97149d9759c25e50fe1924d51232b6159ea771aaf85840bb996546bd5b1ab26ba976eb347af86bd8b42106eff4f03afd228116","ssdeep":"","tlshash":"67e02e0a34bc0020a93260905aaf600202312a873e8b7e007a4c16e0bf2eb2cb532f9c","size":314,"data":"","first_seen":"2026-05-04T13:22:43.03439Z","last_seen":"2026-05-04T13:32:51.85125Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"74f2e0cdc4536964151ef1f0064e5e46","sha1":"ec8ed8d4c08307ad2c9009af2a2e95ebfa748262","sha256":"07f617d4f15bb7624abb83ffc68f1f9b1194589157b0afdcde9d3a1792377d3d","sha512":"945cc78e87b25ac509542053f381f84e158b320f5688a0d6b1c6d617d50b808807c7b08ca46ffbb21538bf46f6e0d9f856a5b2e421d10c00cb20322342bd40ab","ssdeep":"","tlshash":"61617a7cd8fb8112c933b12ddbdeb04c6540515ba80aed10bb4d9b959fd1734e9c278a","size":3278,"data":"","first_seen":"2024-08-28T05:23:34Z","last_seen":"2026-05-04T13:32:51.851837Z","times_seen":1158,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7f6786efc54a5f4ba4998b9a937fdcbe","sha1":"b207b8fe7bb5bd38da91fb3e697c166ebce8b1f3","sha256":"692156c51934ded7974bd73baefbcf238ae02789da81a125d562ce321ec3ba57","sha512":"1df0b53be8b57788bcf1e8446ced3e61cb4b03a38d2aee8b27742fc78b4e37d2d8977193baead625461efb004582bc2daec26aa7ef3aa0db79d73f29b894fa14","ssdeep":"384:r1Sfo8+vm7uVOrur+JOAQihoTuhK5MVGx8d:raX+CEiWgqcgwkYKg","tlshash":"b342f46cf997246c789334248f6f008438e87553cb49d8153ebda8c26f8850d65bbf9e","size":12587,"data":"","first_seen":"2024-07-09T14:13:17Z","last_seen":"2026-05-04T13:32:51.852432Z","times_seen":1083,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/bootstrap5Slide/bootstrap.bundle.min.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8831aa095cdec88f66c2e46c339cf352","sha1":"5db4c40dbc6bd3d9623ee98a2061dd265885cf2e","sha256":"79d443b15f542c8a8acca8e937f2a3c90ecba78bd49fdbac6c9b878c7f1293e9","sha512":"b07f093e128951e03d3d693778e70e97c53e95f65382d0570f8d6ae9c3bfb25c311870b129c5b8e4ae283c25211c6ecd301e266ca11d75598fb935eda5b09b14","ssdeep":"1536:GaPTJR2t4PqiiyuL5FehgTr1voCBZx6wVlLBkS:4OANBZVV5","tlshash":"0f73c5493254b87309ee15a68037460bf7256d94b14b802cb5bdacde2b3dc8672b7f78","size":78748,"data":"","first_seen":"2023-03-07T01:34:42Z","last_seen":"2026-05-04T13:32:51.819229Z","times_seen":7580,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/js/layui2.9.18/layui.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5d4b822cab02eeab9fb14af9ccc8ee85","sha1":"4293981803d0cbe0bb364b9d1c97f75caf3b28b5","sha256":"b24e4d84a62a7577dbb84ab254cdc0ba5138f6adafa45f3bd153a0ef04133ffd","sha512":"e807e688f68700152e609ac3eb746caeaab9d74c33a5e0f648b6966cf3de505d55d191880577f4fa33211276f5aae9bf331ecdbf5c9dbc3be80d2ce494de8e00","ssdeep":"6144:LVRYHYLV4UajUuMOC3beEFKzogrlej7XDcSa0qo:LVX4UdleQBxfIy","tlshash":"22743a8971453473227360a5405f890eb23b197eaa0b8460f166d8f93cbdc99537bfaf","size":368829,"data":"","first_seen":"2025-01-23T01:10:50.514283Z","last_seen":"2026-05-04T13:32:51.819804Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/layer/layer.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","size":19831,"data":"","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-05-04T13:32:51.810018Z","times_seen":13496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7617ae9406783946457e6683e1dd94f0","sha1":"661674effa706e50b1ee1cb188d8595d92987c45","sha256":"7d3450fc345972b575c6b42078fd0ae6927d20fb46addbc988bfcdbdcd142155","sha512":"1a31231d9953f7de96d6fb25a66c1c58c011be04e4805848a6a98bc4d20746ea55c45bd9beb364e2a3476731ab3ad6da50b09a3f79ff6d780634c04ad108603c","ssdeep":"","tlshash":"3b41ee46f30e089d28b015292a298819075e321ad8c7df5a6f1d8efcc6bde95f0b4d1f","size":2174,"data":"","first_seen":"2026-05-04T13:22:43.037113Z","last_seen":"2026-05-04T13:32:51.852957Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"fbbb012e519b910a02da83ac6d3112da","sha1":"a03af70ac8200203516bb605834e1e3a1a061948","sha256":"b3f004b5887b020f0abc7d1046d655e1b275a9eb354f05212175561521105a47","sha512":"5c76b4a0f8abfa543ae0c28835d8685715b0899a787e39f251d28a06484c9f51a0de7dc1fc258b4891080768550ee830e5b0594bbac8a8e61594d117ce751b80","ssdeep":"","tlshash":"6cf0c96e0a1ed7ff70a80235532aa2ef70cd4baa90076807fe87021716ac118bc01ea1","size":527,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.853508Z","times_seen":6976,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/layer/layer.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","size":19831,"data":"","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-05-04T13:32:51.810018Z","times_seen":13496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/jquery.SuperSlide.2.1.1.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","size":11264,"data":"","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-05-04T15:36:22.941824Z","times_seen":13443,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"270e828f9b01b6a5f7f3f1bc086cde71","sha1":"c1b621e815ba29d9f9afc7cc4122e6a84f7c1dcc","sha256":"745f716d817ab4769ddb9d7fd626caa5b9276c3ead0c73975ebba3bfb5843a8e","sha512":"bb87eac2a6aa1c9751220ce352ef8e578ddf3bfcf3bfa0fcdf575c498e84a7daa03952fa095ded81952a66fc47b597919c62d6b29c6b292b81412d737b5a0cdc","ssdeep":"","tlshash":"7c3156c4cb1e11acc84553e92a6d42dc063d2a702c334c656c189e389898dbed51dd79","size":1633,"data":"","first_seen":"2026-05-04T13:22:43.03847Z","last_seen":"2026-05-04T13:32:51.854023Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/js/jquery.min.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c2facc43e450ede82ff41dd96a8053e0","sha1":"1a6ee8c3a91772b1dcfa346d3a68943ee318ff07","sha256":"efb1de0af10b3b914711afaa4f96a51c0666f5cc2440416fac0753679f1033d3","sha512":"81b156a891ae057ca73ada403367433fdd67d1d23237f4895a1e14e0c412907931cd200f9a627b005fd4a73eba991c4fc96e2a923c41dd475d3243113b14e108","ssdeep":"1536:0P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLyFoqqhJ7SerN5sVI6xcBvPv7E+nzms9B:f4UddqhJvNPqcBH7MfWWca98Hr9","tlshash":"2d93d8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","size":95938,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.840939Z","times_seen":271,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3141c18a9605b1422295c9e48d668c9d","sha1":"0e035fdbc893334e85d674527229f5d2fd9c8036","sha256":"1c439327512b5147799af88283ca39d0f13d331bea70d2ec3e479177c6c595c9","sha512":"9de6cc7247eb894a1a5a05a3cad42883bb7478bd38bb37e22c7ac97ae476b6a843adb97e0ed0c1ba44db35687a637a8ada2d6197fdf51b66ac1e46fb0d0863d0","ssdeep":"","tlshash":"05d05ec3ab4d2058587f319784eb15cc005c467288920d89bc3d91908ca01ec5371f2d","size":255,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.854601Z","times_seen":5214,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/bootstrap5Slide/scripts.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"48477ea73f8709a6c29d7cde0cc83e55","sha1":"5dc30fab107725dd71ab343d70b9e6267ea68cf1","sha256":"fd67e1f083236a6c171d2275401174ea62a6f24fc81193d55653080a236a209a","sha512":"0932287b99d7c96929e7464b6684fe399dfcaaea787dcab28fa0879094b5eb4d92139260fecde4ffe430eca3986430f98a72fc523332c4e476bee9ea2226b1b3","ssdeep":"","tlshash":"1ee0cd91761d4f9d1ccc3257996092c576841524e401f06790374c6c0a9584225fb7fc","size":298,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.813106Z","times_seen":6113,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/Odometer.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a804750802092f8fb7734908a3511382","sha1":"faeda1356d814148fc6a65c6a6fd9971f8fe3d98","sha256":"ed9408d7169ee6206a92b8444bb4b8d7fd509d74b1f047d0caa790e772a4d104","sha512":"718d2d37e13bad9bf3d854c6071faca16dcd9ecd549496c2cdf056d952a662adc2b2fd1de38e16e9d03f91225a793db94542d8ca0f71370b3df788e0a2ebaf46","ssdeep":"","tlshash":"68819c9699932069413697f38bbf1701ec65480b9401251c7e7c82813fbbe2979e6fb2","size":3878,"data":"","first_seen":"2024-07-09T14:13:17Z","last_seen":"2026-05-04T13:32:51.842565Z","times_seen":1086,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"345a845b8ddc25cb1829e948a45d6fd6","sha1":"c2e18d96da37994e411cebeec14918da8df2d12e","sha256":"ddf55c57288af609365842087f907c0b9e2849b6cdb489277372d2f46081c9e6","sha512":"ef809c4ab88f81d4f6e13a379d57c14667c98be9a1b57c65f578658543306242f463fd39c2fc23e5961ad1347e0b93564c2ad5cfeb6b5efde8b8d8b0f608df21","ssdeep":"","tlshash":"f3018bccfdd2a7d30a1f72a82bcfb212180848132509cc427d5dc340af56734a49dae5","size":669,"data":"","first_seen":"2024-07-09T14:13:17Z","last_seen":"2026-05-04T13:32:51.855077Z","times_seen":1076,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/js/jquery.min.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7aaf84e2c4d44920ef4ace5269a5d875","sha1":"483439544a5a9dadd0999ae07bf6613f0e3731a7","sha256":"75cc7a926a8b8fab546a991541a9032f346dd3305696becac58e7b8766287206","sha512":"6e7d8b4ca6e8e11f8f993c784d629f0904bcaab43b261bf7cb5f51e6a12a935c16d7fed50479271f5bf6250a2528caff39d68ea27f025d09c49a565e69fc4aa1","ssdeep":"1536:dFdKmzCrsoYgN0CudU2fHVMgMf1zMclop4vA3UI+N7NP9Bw7CIyW//qyzsXzlnEB:nvIVluK+C2K9JV9L1rgY/0x3","tlshash":"cbe3218ab7e624359713f03d8d6fd804b17a445b2e9ced59780c91a41f5843c8afafe8","size":154546,"data":"","first_seen":"2026-05-04T13:22:43.016027Z","last_seen":"2026-05-04T13:32:51.820413Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"780145b0e9a5b98d85bf7c599b916ab6","sha1":"db8e601e9827f66e7597d07f0cff538dc1cf8c32","sha256":"40566dffbf9b561c28a3ec38549fd6524fbdc5d346bdbe1a30d7c6e933f12040","sha512":"2ce401f4f28235ed5afbad6b38174b2187ad49ca46e55c87f8b82b69c28ca5c9120e9b9a0c38a54bc05b44399680481bb8dd73d474f3cfb7a66027df08444b04","ssdeep":"","tlshash":"3911ab211277223a40b361733f4643882919800b3049dd8bff1e93462f91b3c8de2eea","size":991,"data":"","first_seen":"2026-05-04T13:22:43.041057Z","last_seen":"2026-05-04T13:32:51.855604Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/img/pchome.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/img/pchome.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:13 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896cac-3e28d\"\r\nexpires: Wed, 03 Jun 2026 13:22:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YDKEiMBlPCiLhJd0e8tC4XH6KXJWa7AfNpo%2FXnINUx6ldytR9w%2BMNeag3cf3EpIb2DDvHGiJTteYjk0GqtqjRdicyTer6%2FsCvcWUiahAASBNJkFWDlN5seBAouuAmXf%2B1w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d0197918712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":254605,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 1280x760, components 3","md5":"2349322eada9cecb6b45e20cba94a0e8","sha1":"4f1b7b733d5b4df45dde4d664eca5470071edd41","sha256":"c75e6a326d9bc2dc34e7fc505d9d34142474c9db71105bc3f43c89442349f614","sha512":"905a391f7496aebd4fc720e72949ae904a0877677a86c40b0d96eac35d8c19471110204160d879a866bd573ae95e7cc4e28f45ad88d5be71847a2bc6ce828154","ssdeep":"6144:u9dfRLx4LfSD+uAuuwhC+NgykrOuTTMVZdg8A/6PFgI5sw:wgLf4+uQw4IgyaTTMVUF6Fzsw","tlshash":"b644237ab9cacb6df70d2df36ee04ac9175b2a19d70d8139e180a23a79714401b7e077","first_seen":"2026-05-04T13:22:42.97794Z","last_seen":"2026-05-04T13:32:51.813662Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1817,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1042,"receive":775,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/public/6741b5ccb3999.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/public/6741b5ccb3999.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-1b368\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0YAkw4spyOlvPf%2F%2BuY0Hq3LoAakmrRD1Eo2PBP7dkpgB0HKZd60SuOkYpgCCoVJQc1KNVFeRmu6BJDkhKbXXyd0WVOzxycJo69Fh4vKvQROQMhUkpswcjUEEaVjE%2FFMU5A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc89f712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":111464,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x480, components 3","md5":"ae0cc003bebc67e02b21ba7a8ec04486","sha1":"22b2b08c0aca9d90912c42c5763fee0ef7b20314","sha256":"3d7d59903d4970a6c859d22f8563d532d4a19d25075b1a7f83296698e36b037f","sha512":"b0fec15238134c19ba1fd84d629aab340e60aa9b5d8514f7d0d58c7ec86a98f707535cb338c958dc01b4fe728f9d29a3d8ca51377d35c90a2616bcfc67933ca6","ssdeep":"3072:rgqFtexkbhxu+I2yAWqspnJTuMrL9kpNzMA:r/FtGkb3I2wFpwMn89","tlshash":"d5b31249da246090e0f8d63150cbb958eb31b70aaf5810f73e5466c03fa5766bf4c9e7","first_seen":"2026-05-04T13:22:42.979102Z","last_seen":"2026-05-04T13:32:51.816235Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1648,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1102,"receive":546,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/js/layui2.9.18/layui.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/js/layui2.9.18/layui.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896cac-5a0bd\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eV2nvtZsLXL7bywMIQbyFgH2R2F6beydcR9QwM%2FcnOOU%2F3YvjpGfBYyOxTjdqQ6cdh1BSMRr4qObUOttPaVDY6tj%2BUHmITkY25FDwmRmnP%2B%2FwW9wQbZS1udCXK78IcsqvA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc89c712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":368829,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"5d4b822cab02eeab9fb14af9ccc8ee85","sha1":"4293981803d0cbe0bb364b9d1c97f75caf3b28b5","sha256":"b24e4d84a62a7577dbb84ab254cdc0ba5138f6adafa45f3bd153a0ef04133ffd","sha512":"e807e688f68700152e609ac3eb746caeaab9d74c33a5e0f648b6966cf3de505d55d191880577f4fa33211276f5aae9bf331ecdbf5c9dbc3be80d2ce494de8e00","ssdeep":"6144:LVRYHYLV4UajUuMOC3beEFKzogrlej7XDcSa0qo:LVX4UdleQBxfIy","tlshash":"22743a8971453473227360a5405f890eb23b197eaa0b8460f166d8f93cbdc99537bfaf","first_seen":"2025-01-23T01:10:50.514283Z","last_seen":"2026-05-04T13:32:51.819804Z","times_seen":24,"resource_available":true,"data":null}},"time_used":1654,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1111,"receive":543,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/public/6741b5d4c8188.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/public/6741b5d4c8188.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-14caf\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DvtQJEA4TJS4H1eZ2vwTKUU5x4ZIQHW02YlEG0fDrvebC6D%2B%2BOsDLkWIdM%2BAXbuTyZNMMp%2Fhms%2B5%2FVBgNMSbPEhwQsxkGPBZFr8s%2FpwbqDWSSrbKFdHTZ0%2Bppp%2BPj4QONw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc8a0712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":85167,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 750x500, components 3","md5":"eb2c64032f1dedf3bb0ee7528c4acb84","sha1":"d3a55e4a793effb33c76322ab8229109c2bbced5","sha256":"d02511b87f37c74d7332dd443ac298025f0731ab60f8501c17f520feea10a2a7","sha512":"f8d23c4fb0123329fde3ec0d47ec1117d421db23f096b49784635e4872f56046326140eaf00ceb36de4cd739615d6a03c854d1b1250bcb2cf509b7fb928945b3","ssdeep":"1536:Um8wRuLoA1I4+MbFxcHRYqFNNW94ft5wOOngQusXNm31xb7LIlxpruCGtuWmQV:mfBI4+MbYHaYNkGf3wOtQuskPepruZw+","tlshash":"8f8312b0b32ce349ff231eb38698d2b1d42eb577db8d4d05af9e1227572919c8854b14","first_seen":"2026-05-04T13:22:42.984295Z","last_seen":"2026-05-04T13:32:51.827571Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1082,"receive":273,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/west-ham.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/west-ham.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: wMICOUrOtIS0I5iHkZ/QsFg+E3cY4Edq/DCYf1CimPfiJtvjrXdwnOzdfxEPwaGL2wqCo537Hg3p63icZNovez/Dvt5qS83e\r\nx-amz-request-id: G0CHRJ2X5G02HD14\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:15 GMT\r\netag: \"28c9f118882da085b96fe7b47106253c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.008Z\r\nx-amz-version-id: f..QoiXoZS.l0eeU2EOHOFSPKm1fpgP7\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 20148\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":20148,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"28c9f118882da085b96fe7b47106253c","sha1":"76bab4a373ab115911ec599d345523a0c537efdf","sha256":"c53f0f7f62c6f4d6031b6e159c79df7a14aef09b72a664914b128eedd71de8a9","sha512":"9d06eaa4087d5fe463d44dbaaf3241b523235cdada0f921746c375936c57d14f4ec5c9100d48b55952beda7355400def93197061c1ee1eb7304ac31c0cb6103f","ssdeep":"384:i8PZCOcGRENr8HWyjJ1SCWb8//V0CL6VCxVqdmzfTU1x81NAG4MBxXqmd8:5CgKNr8HWyjTHWbulx1zfTU16bkIVd8","tlshash":"849295d463d9d2e4f801f7f4471aa4b52b2b29fba972c0a407ba6d58ee1146d0caccd1","first_seen":"2024-07-26T22:36:55Z","last_seen":"2026-05-04T13:32:51.833815Z","times_seen":600,"resource_available":false,"data":null}},"time_used":837,"timings":{"blocked":273,"dns":234,"connect":16,"send":0,"wait":242,"receive":3,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/imgs/community_bg.png","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/imgs/community_bg.png HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-3c99c\"\r\nexpires: Wed, 03 Jun 2026 13:22:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k2vDsvooT8w7g9a7QPPHjFZkMgV5nFsG%2FEmEQLatQAuoIpkPLbpzItFF3mzzv9kU4djYfYU9Vb5EZjdN1EVtZya%2BYpTWf0ljLnUQGT%2BKIl1wv8uvRn6spZZgynDCYtyz7w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d019791b712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":248220,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2892 x 936, 8-bit/color RGBA, non-interlaced","md5":"3107a5d7de66ac526ba295a6ccb85e2f","sha1":"7ca2f1ffe3ed6dfd6260e8a47643d30d6223aeb9","sha256":"1021f5b23b901a121fcf0f78866fb66c978411d309aef421c54af4cb09ff1b6f","sha512":"262a6554428da7f2bffcc71915ee13f5e9a504a2e76af61499ba7ec68713fdbba8b2f52d9b6ff8a9b13ae649103c6aaeb2e89f0dcf5411ec636a7c6ca5c26f7d","ssdeep":"3072:2cI5zu8n4youkJkjKrt88rRhc0ZmoZ/UYO5+90yCOo9XHhNkHLfuZVrD0BMdJ2oo:2V5b4G0ks8ybkwT9vBo9R2iP30BPdb9","tlshash":"73341284fd1e6df6cdf40db008629f4c7935a6ad8835d713a3b6e15d9eb754008be680","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-04T13:32:51.810525Z","times_seen":5134,"resource_available":false,"data":null}},"time_used":1775,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1013,"receive":762,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/layer/skin/layer.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/js/layer/skin/layer.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-36e0\"\r\nexpires: Tue, 05 May 2026 01:22:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o2s5yVoGxfZ4iZHw5kND0TY38uqnkl5jHG9IIEpfpLXoK3XZ0l192WhqitRPkL6Ie6RGmuU8gfXTSIM7T6ev9ToUXOCIBJ3EduGNmA4EQruuhyd1vifXi29AbfS0V%2BDujQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d019b925712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14048,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (13967), with CRLF line terminators","md5":"1673a003559ea1607dd77e6467a4baed","sha1":"954f4afa17e3d1c057101e62950f6c9506245550","sha256":"9748f440829e0b76d70f344e9c989f6d2302eba81aeea03211d40ef5f29fe62a","sha512":"5f9b8254fe18cdc329ca87a4852b7cb5520dcf3c406c5b3d755e99d0e7ddd618cd5ca2b455868ae14d896431cea2252b60d79d5fdd9e404a1fb8685a05ceb955","ssdeep":"192:9OcW0PmLeWVNrzztBm0T9zBKgwBnsY5Cb+RX:9PW0ijV1JbTyGY5CGX","tlshash":"1c5202e144811299b0278611d6dcbeba32f88d53e5630dbef2573c1f874c6dba2b6247","first_seen":"2025-04-07T11:37:37.344268Z","last_seen":"2026-05-04T13:32:51.832697Z","times_seen":3200,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":270,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/public/674afb4450fed.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/public/674afb4450fed.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-ae9b\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MjOUCNSMdU%2FvWIcJAptfTfzNaGbYl0XYdptJdrX8k457v5WoLtKN%2Bb459XgnY20ao7rGjGyZeH8DgU5SPewIp3qSTvXTlwK6yI%2B5mVzabI208TnCpxL81bkCbfuvHAzJ2w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc89d712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":44699,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x581, components 3","md5":"47d93219df1a8c70d877ba5b82c62d98","sha1":"b068268a000f6743bb7d82ee464b95521fa8cda4","sha256":"7a0ce18f845b5dc5978313e5ba0ab39a07ea381f2ae5df4fbf1a3ab7053a43b6","sha512":"edb4590bd08d84ca973b8f531add832b3ae6b3ce291921ab652c19db8bc929b9c02967ed2832b3948dd69a4887f797a376481a87bebd8de0d3cff64861e2b3cc","ssdeep":"768:SntM425RQTwvQ4OnKlZaP0BVre8V3Kn+cVcp/6PBpyNYAb+EgJb5:4LsRQcY4OKHrJV5T/6JYb+JJb5","tlshash":"cb13e17b768c53bac8b7e0b11adba6419b7bfe16e210879f57598f10dc1e3304d09894","first_seen":"2026-05-04T13:22:42.992847Z","last_seen":"2026-05-04T13:32:51.812412Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1054,"receive":262,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/everton.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/everton.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: ovcIndeRQ3y2e/FW9lt6U9HN6vmtyw/5gOSR5phw8fkFMyOmxA7K6z2DW+3VyALxMvB1RSA6WcC+i1L/e5RbYg5ZDj9+105c\r\nx-amz-request-id: VPXDBWJ32PZNJNSG\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:10 GMT\r\netag: \"33466779e9f2fcc0ec5224e1dffc1820\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.004Z\r\nx-amz-version-id: E5NJs8A9qFcKxyjtf8Kor_9EywydBl1I\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 71494\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":71494,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"33466779e9f2fcc0ec5224e1dffc1820","sha1":"6f39113a69a0fedb0cd9915b1ac3eb681155c4d8","sha256":"23f9e03ad269d6e741ad626e767804d2d96a666ad6220b21511a1dc39d0d635a","sha512":"42bfce36df91ccdf5f60fc42af3a4b76a1d68945296808ca9eb8a76c44a1cb20241fc150adc08090d9df7c57e12cc0731dcf5ea9975a1df4c816d9b41f27ab7b","ssdeep":"1536:KpvDJ31uTzT9oFdewa2GPa7OOgFgsJJFaL9rzsKNp36F:bj/","tlshash":"936391d17768a2e8f401f3fd8606a4317eab28f6bb12c588c7a55e46e98141c0dedcd7","first_seen":"2024-07-26T22:36:55Z","last_seen":"2026-05-04T13:32:51.807784Z","times_seen":599,"resource_available":false,"data":null}},"time_used":679,"timings":{"blocked":272,"dns":235,"connect":1,"send":0,"wait":69,"receive":20,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-04T13:22:08.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 May 2026 13:22:09 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nset-cookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; path=/\nserver_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c; Max-Age=86400; httponly; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\npragma: no-cache\r\ncache-control: private\r\nx-powered-by: ThinkPHP\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V6zFeAzNLKohbzMg8T2JSe9DrWulVaXhURGo72gsj%2BLmfSk8L4xWepPfX10oM91NIOyKTxW6%2FFstRTns3P7rYntLYpYFRLwzFBdhYkD860tILBPKs6inXhqbQ20DlpA0HA%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9f67d005db393181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"ThinkPHP","description":"ThinkPHP is an open-source PHP framework with MVC structure developed and maintained by Shanghai Topthink Company.","website":"https://www.thinkphp.cn","common_platform_enumeration":"cpe:2.3:a:thinkphp:thinkphp:*:*:*:*:*:*:*:*","icon":"ThinkPHP.png","categories":["Web frameworks"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap:5","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":165272,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"1c4a541d3691ac42d3ce8eeb72969387","sha1":"612e7c85f42036a6955951bb76f9977e19fd4bfa","sha256":"cf7168e52231c760cd1034f0addceb6d360db9aaf86d5384edae1c98c9fe3299","sha512":"39f85007088b6a130820110be22dfd9345fdb9b0026d78d78976be180e3d408b398be98528d85271bbfdbfaae23d415218b52f6b5c62094d0dd58e4ed5b253d8","ssdeep":"1536:rfSvhqhGx4HjHcnwufYWew+oDR7lfFvMyfa9U+zZRh+kGXgjE:EhWbcnwufYNoJlfFvKUeZRh/GQjE","tlshash":"48f3b3249bd905373063408966a5ab97beb58433d10e8a743b7e0a91ffc3e6496733dc","first_seen":"2026-05-04T13:22:42.995145Z","last_seen":"2026-05-04T13:32:51.849809Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1150,"timings":{"blocked":64,"dns":50,"connect":1,"send":0,"wait":1021,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/css/base.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/css/base.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-6364\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n5rB82PCJdh1bpk57kTwi%2FMShUWFs4iz1Jvkj%2FuQiNqGTn3x08yoqqbrtHfPHSvZdi96r5C1t%2BxsIANmgz20UEo%2FbQGWzb23laUSwmH0zuuG%2BoW7dJY0VX8Ozn9h5lq2og%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00db896712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":25444,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (846)","md5":"a3066081717a84dc5baf5404a3ae538f","sha1":"b2fcc11937dd8f278ead83aad4e5cfeaf3f4769a","sha256":"9be6d45f1ce634ae0673fa42374ad53ef44a0cf0615ac8cb60ac0984856b88ec","sha512":"24398697d2bf9dd44d65c614804b9aecb760ac02c9a2b602d4960220538d866cec11689254cb9a1319afb2498c0b4c2a0e19d394a176929a1f1410f321792020","ssdeep":"384:/HFiO4TjRmNi2RoLy6IbRiWc2FDwFPYorvRnEkEZ58s8BXR8G8LrB888t7jL5ZBz:UlcN39FDwFP9EZS9YzqtRB8TFI8qZ","tlshash":"c2b295a69fa30905b81bc5a41ff9ab15232dc017910bdebd7fc53648cf4b2d884a27c6","first_seen":"2026-05-04T13:22:42.996313Z","last_seen":"2026-05-04T13:32:51.844805Z","times_seen":2,"resource_available":false,"data":null}},"time_used":800,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":799,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/jquery.SuperSlide.2.1.1.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/js/jquery.SuperSlide.2.1.1.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-2c9e\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z4wPyCtyqLnDH2D0QrontGI0JGV02grT1v9idr1aI12V1r2bPrk6Yu%2BJh%2By2NMwEjWHqSK21avF9MeWu%2B1Cpx6Pswmrvz7S4Zmdl0JjDE7DA%2BP2HlSW5OG%2BiHpAiznhWZw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00de8ab712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11422,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10855), with CRLF line terminators","md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-05-04T15:36:22.941824Z","times_seen":13443,"resource_available":true,"data":null}},"time_used":829,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":829,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/layer/layer.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/js/layer/layer.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-4d83\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nage: 1\r\npriority: u=3,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GpiC1kwYt8c6y7ugBJcH7Dk6xdd%2FUdE%2FlmfZVwA5ME20gsNEZqcaXqPyTzcH%2BjAKgL3Cs9H6vW5LDDFvgAfXM26vlqF5Nka0OGZiYwpP8sHem2rvR6tYkE2ezWLPk%2BKqiw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d019e926712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19752)","md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-05-04T13:32:51.810018Z","times_seen":13496,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/az.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/az.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: o41oNvisjA9VEMwvtT889b0s1UZWJRjAv0fb5jx5GWSNTTZBefV2YPDVOs/r3q8COWC7IgFKhwEKMLFpCMEeE2hvsi43kovq\r\nx-amz-request-id: VPX9CBWXF7Y671F4\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:09 GMT\r\netag: \"cf2c0e9269d8c0caa006d355586a21f6\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.001Z\r\nx-amz-version-id: gKAnw7BM51_bgNmyVokkpd1FA_nucfnR\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 9601\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9601,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cf2c0e9269d8c0caa006d355586a21f6","sha1":"ba1254e5dfa3c12552a1dd1d461a9e5ed92fbcea","sha256":"52dad040638864e53e397885f663c5554ce36c14b3cbcf791329e675baa16ba4","sha512":"6c6a27f538799405ef6581de51811d222fba308b85c2491d388d587a44246e1336c58ad28bd756fb2138f834b90ccf0c0a2f1b95b7f617586880651a8c776322","ssdeep":"192:0XgYj0eZoERNf65oEAi44tKCJ8FBOCD9MlYohfq29TIME6SduchiThenb:0XgC0eZoEr6pAr4tKCoACq9sMncShGb","tlshash":"e512b9807779b3f8b400b7ed4237a0703d663ad67a61c898d7e90d91b90941c9ae98e7","first_seen":"2024-07-26T22:36:55Z","last_seen":"2026-05-04T13:32:51.850554Z","times_seen":592,"resource_available":false,"data":null}},"time_used":661,"timings":{"blocked":272,"dns":238,"connect":1,"send":0,"wait":38,"receive":32,"ssl":68},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/slavia.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/slavia.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: +uRGVUYuxni4xVS6c5PVuV97Iyiued20MdNoEb88jDvIt1T0J6v840YE7Oo74MxkQGEyq7TZ/e+SrlPVGBDD2l979gv3cf+E\r\nx-amz-request-id: TWJY9VDPM2TWKNKJ\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:15 GMT\r\netag: \"d57cee084eb960069a4d55840f3cada4\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.006Z\r\nx-amz-version-id: Pa4CPgCB7a3nzQzVM.srkUinh5jDhbJK\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 2315\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2315,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d57cee084eb960069a4d55840f3cada4","sha1":"8e00b7e308fd089018f63707bf254ef7301e67b9","sha256":"4f732ee40f86b8575f6c782dac1b9a7ebe726702668ae0d5d7912fbbb6adcf1b","sha512":"a1cdfc989ddc43a1d303806ae81ad69e6d0110b0fda4ada86232d03933db6500bb8bfa7c917c91e7c755d420af619de5de4c18e3c459ac5b167e569d910984f7","ssdeep":"","tlshash":"c84140d0aaa892ea18045fcdd72ebc37613b28f47560c18cc795341268e993e8c7dbd3","first_seen":"2024-07-26T22:36:55Z","last_seen":"2026-05-04T13:32:51.83095Z","times_seen":591,"resource_available":false,"data":null}},"time_used":720,"timings":{"blocked":271,"dns":235,"connect":16,"send":0,"wait":131,"receive":2,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/bootstrap5Slide/style.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/style.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"69896cac-24d\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A7VwdbD8DgLS%2FsqOKGaV%2BjsdZLTJJ%2B3ImZlS9deMq0zU%2BU%2BydXBR%2B9A60RSejGfpbJpVs3aXeB7Wca0ngn6ncxbSMHRWFSQUXAKrcAON5MxdZOvci4xPlFU%2F6lDQWpO95w%3D%3D\"}]}\r\ncf-ray: 9f67d00dc899712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":589,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (589), with no line terminators","md5":"df62cb99d119a66bcd5f06547d96ecb7","sha1":"a6d0e097db0919f47977c33510359bc08ec88a9c","sha256":"afca52e1c0203f27bf8165e8fcf92b2674f084f6372f12cc1e7bb3edaee35f03","sha512":"59d599c3a25a64cfae94e1b2f1328abffb199a503c0e8904a3e4a574c101cb6b72d09e94a7b2afaa3f8cbd1a55b92cb2b2bdc33b528ee6c953d30fa3b622cf0f","ssdeep":"","tlshash":"a2f07f42b71a596e5d872300a9d213abf10c7f319709097992f3211d8f29a85237df4e","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.829133Z","times_seen":6099,"resource_available":false,"data":null}},"time_used":781,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":781,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/crystalpalace.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/crystalpalace.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: Ry2Z3WrMA0RlAbkTWzKBa+ydM0mI+vFYytXLjD+t7btYAa2mW4uLs+oJs8FB0MvDQ4kceynTmKOdZaHHD3MC8SEK8dRFLT9b\r\nx-amz-request-id: 6Z0KWAB7CQCNRMFF\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:10 GMT\r\netag: \"deaf544f797cdd9488921e81ce564bc2\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.003Z\r\nx-amz-version-id: 5MmKonJxaHunLNwBhrF4ZjCd6vXjutWC\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 54368\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":54368,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"deaf544f797cdd9488921e81ce564bc2","sha1":"11b10de6ed4f209bac0531a919129734804e20a5","sha256":"9cc28eca3b9809580cec94e96a51bf6c3b5c95db85e33c7796cc5b420c82edd4","sha512":"020cf6d4de183bb6c2c525dd0b43308150722aed13e1ba1f7e9d5ff27471953da6ad56f88c243085d7dbef882de688df2f3c0d63e6b7cdc1956725fde0279f6b","ssdeep":"768:Z4CQ6iDLh2we/U7YiFzbbARBQSpqJzFaEegeHfdTfJ6PutpSTTc2B9d6:u764ELwbbAROSAq7Hgfba","tlshash":"c633a2c47379a3fcf405b7fd5316a4353a922ce97a21c494c2a52d46f98245c0ebaceb","first_seen":"2024-07-26T22:36:55Z","last_seen":"2026-05-04T13:32:51.848467Z","times_seen":599,"resource_available":false,"data":null}},"time_used":617,"timings":{"blocked":272,"dns":237,"connect":1,"send":0,"wait":24,"receive":2,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/pwr.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/pwr.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: qTOrYTkKOAeVBE2mcN3SMKv8+C2cN/F4/VXAXnMEvSS15btClZOXYZdDUL38EuvlBolAboRbAlXHR+LSe+vOqQ87UW/fNPfg\r\nx-amz-request-id: VPX9P00TG7HA488Z\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 31 Jul 2025 08:41:17 GMT\r\netag: \"2f6267bc9d1faa0a4cc580a628ab990e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: dMkkCp2acEZVdHy.iTNsEVa3BLdUyU1h\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 18418\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":18418,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2f6267bc9d1faa0a4cc580a628ab990e","sha1":"40d15fb158e43978405cec7015c5eb31cac4d7e1","sha256":"dbd8573233d5108a1c67e9b482dabaa187434834a99a05371348e25f1a5a0a8a","sha512":"e1138c9867580c6f9b49a3b7e1c5909f4d83616b46e71786820e6e0aea2222e7629623ff4e2d70fa09f71c0acbe53877723f9932c51e7ca39a7491cdb3d80eda","ssdeep":"384:LdBCMJp739ppZWBCtHkfeK1A346EVv0JYr2dkpX8SfOQe67i2pXtVT:LLCMJp7JG3TNv0K4Sm47z7J","tlshash":"b582fedf7ba848e5d49dc3dbf69000a9a12fd0ba48c6cb54c39caf2d7c558199c1adc2","first_seen":"2025-07-31T22:08:51.105269Z","last_seen":"2026-05-04T13:32:51.818309Z","times_seen":201,"resource_available":false,"data":null}},"time_used":336,"timings":{"blocked":263,"dns":0,"connect":0,"send":0,"wait":40,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/article/63afdb937ca9b.jpeg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/article/63afdb937ca9b.jpeg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-22d99\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FAzSGA7mlgmMeTMHGdmnMPf1sx1wGI9Niu86oK19o%2FXbH2kBItoH3BXYV0FhxK8kiauin0AFiK8pfYhwMG5btjwWoPyJwcO%2F9EFEPvdZmubsHy5q48gDzMmXqTat9p%2Bl%2Fg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00de8a8712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":142745,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, progressive, precision 8, 989x1280, components 3","md5":"e0cbc347098a2d7a78715253d8546e3f","sha1":"513729bc66f1ddd2327bac412b72972fb1779f12","sha256":"1ce1a36191e1a995d43d3b7fd16f444254e14b7ee00919db4b8db1527a93e52b","sha512":"895bd250fdd66cdba7afa617562bce2af9b5acd6cd81d119e03918f462beb97a7f92e44d0b02253229025ff4ac39df8a50394e72b301177e469d262e59082b93","ssdeep":"3072:CJRo7PElnmvdZV9GFcjw3+C0tcJja4WSlZkEWhNA:9YEdf9CcG0cja4WSoEWhNA","tlshash":"11d312bf93844d7aed301172399c4e351c9fc976132b9539ad102dfea838ce824a96e4","first_seen":"2025-04-30T11:15:19.956867Z","last_seen":"2026-05-04T13:32:51.831841Z","times_seen":48,"resource_available":false,"data":null}},"time_used":1558,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1038,"receive":520,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Nunito:wght@400;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.20.170","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:11.314Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Apr 2026 05:19:27 GMT","end":"Wed, 01 Jul 2026 05:19:26 GMT"},"fingerprint":{"sha1":"E9:E5:B7:DA:0A:AE:59:02:EA:10:61:71:9B:52:3A:08:42:A0:67:A5","sha256":"F6:1D:CE:31:AA:9C:7B:58:1D:1D:14:96:99:B6:58:CC:FB:AE:D5:3C:F8:FB:40:E3:45:2D:4A:54:11:B4:E2:F3"}}},"request":{"raw":"GET /css2?family=Nunito:wght@400;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 04 May 2026 13:22:11 GMT\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5463,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"721a040ea564a6f1097d3c9fc78e4478","sha1":"969b3a763c65bbea8dd653387efe6482fd53f614","sha256":"1eab5e802b5f0457aaad88e630b825da8ed3ba340a35a34b5f6901d9d84bdad1","sha512":"44cce6feb92211ced4be081e6a2c9c0c63b0fc22a7243396544d0d88b4736d6e6d62ee3cad5136dda1b21e3f4eac55d6b465a0b28922df3565bc5bef366db625","ssdeep":"96:BOEabTxOEa7FZOOOEaKOEaQJc+uaOEaENqOxMabTxOxMa7FZOOOxMaKOxMaQJc+m:OH+yptkUkH0yXLkeLHbywkkdH","tlshash":"5eb17891045bd400aa432cc667cf7f37ed4e62113464c57aebfd9898ecabd272264b1e","first_seen":"2025-09-17T11:57:27.939025Z","last_seen":"2026-05-04T13:59:58.644494Z","times_seen":1224,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":96,"dns":1,"connect":21,"send":0,"wait":37,"receive":0,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/js/layui2.9.18/css/layui.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/js/layui2.9.18/css/layui.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896cac-1ebf2\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iEzCjmUzsFEhALpf46W5jqYxJpzHrqjtfGULNykTsSeAfoCJXk6TkdmipoObYkkhzslXQo1ja0tgrNspi4rmN0C%2B2H9i4Kzz%2BHmdByy59NC%2F51Xi4Jf8BCuIsmX5OCBChQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc89a712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":125938,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"9b2aa1734baf6e848aadb3a186f056c4","sha1":"b65b7f89b2756bf70dbeb8754e7c984461565624","sha256":"ac526dee1c049452fec7e69c185331a7a40737f7372a0c47864c504fca3e17ee","sha512":"5cfb9f90854598968eb8d7ba4f695f93081c17b2580c0a714ac09b971527f19164f5ee2a909ae08fc7d4742beb92275705c77ea3679d7dd41dcf947383fa5d04","ssdeep":"768:iT0gZN/qdZyGYLF9hlDj1JpZ9rwyQaIYKNR3zdVhl09Tr1BpRNMyM6U8ql9HKiU4:aF/qdZyDpIfhBm5YgTGJGPbbLcI6n","tlshash":"e9c3a432e6012c98712bc315e1dcbebda5b89902ea630e6df351371b8b858971077f5b","first_seen":"2025-01-23T01:10:50.567966Z","last_seen":"2026-05-04T13:32:51.81684Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1049,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1045,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/imgs/icon_etf.svg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/imgs/icon_etf.svg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-55f\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XdrTQXsn%2Ftb%2F4FKz0EYhUUQ6b8nlxL8F44KkgJIJ1qimwPKRiT9x3zDzEjOuMYGX20WW6c7Ba96%2F%2BpQJe0%2BUALFtqcqTjDIzng6a5koYIDb8d5%2Bqh5hCSUvzVWmMS6kWug%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dd8a6712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1375,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6e432564e65f8779c665055d5bf9f563","sha1":"dc529670e33c8baace696f7ed4c3ef3bbe9cad90","sha256":"2df7417ef0acff023bffea1bf0c6366884770c1dab4d191f24ec29c84d2b7031","sha512":"cec79f984f55609c45347e0a6b9e885fec23baadfb00fca179eeed2b2902e5a8659649b6e4d7c0711a40bff90b8acfb7b8823a89beb53f9e836211ef89f17c3e","ssdeep":"","tlshash":"cf21e9fd204aaa29b35dc352ab2961f4184610fe1f35e4c1dbf855143c1cbfe495a1db","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-04T13:32:51.809465Z","times_seen":2554,"resource_available":false,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/mainz.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/mainz.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: QMZvP/cF7AQyWQLL7PY3jgaBxLt+2iErXMR7+bGCSqpALZuQQNpl2GzZpAF6IypHSmBhyBiMWBf18elk1vsQSEvgg0jadHf0\r\nx-amz-request-id: YXK0J7GB2KV8G43X\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:14 GMT\r\netag: \"6f3b34e949dd422a87ecf6a9c87933b3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.006Z\r\nx-amz-version-id: gY75Z2adnqMeEf2vyhee9DcdkatBfUa7\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 3019\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3019,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6f3b34e949dd422a87ecf6a9c87933b3","sha1":"4e51e1c5e0dc1437003faf48985f4789e1fdfc2e","sha256":"c93df1308a5b23f20485cbba2df07e48b98d5296dc389ec7c0b094c63380f30f","sha512":"b58fab15f3196830885d07c8e89f93679fbafb6957ee23b7eda33590fdf226550b983fbc9a4cf4e1eb62d162a1c02ce14606483deee9523b946675196b8e0d15","ssdeep":"","tlshash":"9851859423b9d21eb207b7fc0687983e6af234f63c90c099c360284ab1d156d5c59cd3","first_seen":"2024-07-27T00:08:47Z","last_seen":"2026-05-04T13:32:51.833258Z","times_seen":592,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":269,"dns":239,"connect":1,"send":0,"wait":27,"receive":1,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/bootstrap5Slide/bootstrap.min.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/bootstrap.min.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896cac-2f10e\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fjVBdupeaonGyq3X7sAUorwtZ5KDUmS3xU3emE6%2FCNOtf7F4QrvwDnonMw%2FQN71R9%2F0L43EeAtSupXPJgOkylXY4cGSm8e7FAEz%2BW7SjBu%2F%2Bcj9t6D6rmnkQUgnzHXRLbw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc898712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":192782,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65184)","md5":"f90da32f1c1f746c2cd0f58d736b6959","sha1":"bbf9e498530c04f372a8378a2eeb14a39fc1f0dd","sha256":"420bc9f4ab4b731e3f8cbf7919fe0da12b758657df696855d6e97a841ee654db","sha512":"4dae3486758ef50a0625073424b44d662d6e8dae0cf3f11d5240795265cba345a92f1c22360c6e301ab5a80854525ca26b77a8c202842bc627d00e8d0d645c18","ssdeep":"1536:qQvFA+QbGwz48MIEtQ12c2Jsj+aaHYAVmJz600I40Yw:qQvqAVmJz600I40Yw","tlshash":"431492a7f581201ee493c10995d2bffd057f9586d3021baaf42737b44b452eb8a63e4c","first_seen":"2023-09-10T10:46:21Z","last_seen":"2026-05-04T13:32:51.827009Z","times_seen":1472,"resource_available":false,"data":null}},"time_used":1082,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1070,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/js/jquery.min.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/js/jquery.min.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896cac-25bb2\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jfdhlLWjQ%2BnQ48kCQtfiWTNAehI5H1nqt9pCLA3wIBOCkW5zt4DrJ1sf7g%2Fd%2BrDm10VoIfmKkhNXo8Ce2Lib03gDXgmXwgDdYjtYw8k3%2BbtjtAC8MvfAOsvMaGhESCDTPw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00de8ac712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":154546,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (794)","md5":"7aaf84e2c4d44920ef4ace5269a5d875","sha1":"483439544a5a9dadd0999ae07bf6613f0e3731a7","sha256":"75cc7a926a8b8fab546a991541a9032f346dd3305696becac58e7b8766287206","sha512":"6e7d8b4ca6e8e11f8f993c784d629f0904bcaab43b261bf7cb5f51e6a12a935c16d7fed50479271f5bf6250a2528caff39d68ea27f025d09c49a565e69fc4aa1","ssdeep":"1536:dFdKmzCrsoYgN0CudU2fHVMgMf1zMclop4vA3UI+N7NP9Bw7CIyW//qyzsXzlnEB:nvIVluK+C2K9JV9L1rgY/0x3","tlshash":"cbe3218ab7e624359713f03d8d6fd804b17a445b2e9ced59780c91a41f5843c8afafe8","first_seen":"2026-05-04T13:22:43.016027Z","last_seen":"2026-05-04T13:32:51.820413Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1171,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1119,"receive":52,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/imgs/home-zz.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/imgs/home-zz.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:13 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-199cd\"\r\nexpires: Wed, 03 Jun 2026 13:22:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5zI54QWriFbc6u4UlVcBFgtMaHEAANzd%2FgHYEJlM8I%2FIC3YfofMr8bOSkc%2FxLH4jmSyphzgVi4ltMXudWSA9WzFn8YOOiFgeWM8TwH%2B3hY8wi%2FtmuYgm24YHC%2BOcPxaRQA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d019791a712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":104909,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 1200x540, components 3","md5":"27ee6f6b1d0360e7d0f55d2c37b665d9","sha1":"d8e3dbbe3a2926bbf7f19e8a65139cf6c03d8567","sha256":"0363fb894da9f066298340cc82985a397c9694965a16fa612eb27bea45d47145","sha512":"71d739830edcc906a2034ed6452cf31d76e40d8be99bf9e84875ac27f8e54cebd15100c9947807bdd8b99d61d703c35e36de0077f9c32141805c801779897851","ssdeep":"1536:Io/qc9GlvVjD2OxejH1NXxghM8Si4ycrb/VBKjPsZKicaQlBrVzCTd0qUrxIxfam:Io0dn4jVIhj34yiursVcZlBrVzi0Epam","tlshash":"04a302b250a9718fd75202b05f33a8298755b42aae428e6dc9c60e7a435f7dd2dc83f4","first_seen":"2026-05-04T13:22:43.016871Z","last_seen":"2026-05-04T13:32:51.826381Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1585,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1060,"receive":525,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/static/css/bootstrap-icons.woff?4601c71fb26c9277391ec80789bfde9c","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/static/css/bootstrap-icons.woff?4601c71fb26c9277391ec80789bfde9c HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/Public/static/css/bootstrap-icons.css\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:12 GMT\r\ncontent-type: font/woff\r\ncontent-length: 106812\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\netag: \"69896ca5-1a13c\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OqnYbX8MIjIh%2BQjgIJlaesKvPDIdQ75Pk9vEE099YhQfyvHPaMbeV9kerjMbs%2BItD8sU30StXPTL20gFmK66bl09O1lnyBOAon4lD5H0GLI%2BwK4HIsLhn%2FU4aeAt6GN3dQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9f67d019891c712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":106812,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 106812, version 1.0","md5":"df7de9fe96a30f78c7f652f5b00ae016","sha1":"1b10ce080e2562a8b7e8395044d3ca83dc112999","sha256":"011ae1fe8e56c310d82ec3795cb8f86b9dea521dd0bc560a0ae0c2e87baedd4b","sha512":"d8cd580ed4119b0d31c9f3b7ea1b2002ccef31ba26cc6791114e5017e9ccffbfbf57b8611aafa52a8b3e76fc8f77b0d51d333dfcd5b293ddde61da3bbbbda47e","ssdeep":"1536:IEGBxy7wyLnYmvpdgacZtaiLBug50yslpdHfaKoGS3MUt7jCP/KgpL+HoEf7HhDt:0zy7pnYm/zcZta+UNoGS3gpL+Zwul","tlshash":"8fa302c0688d7e9ade37df31a226826373d3094a637c2d6f26997852c946e0f7637341","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-04T13:32:51.815635Z","times_seen":10321,"resource_available":false,"data":null}},"time_used":1642,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":829,"receive":813,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/static/css/bootstrap-icons.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.229Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/static/css/bootstrap-icons.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-edaf\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TbgkVyXjjhlvnYtjUXyWQ4iV2DdKY02mlshhXZ8kipFSVRvyj5qSMUbIQhuO%2BNeyD%2BqgxsFimUFYnCuvMez9bJfDnGOm%2BSqiVTBu8LdpFFqe1Zg3BUYU%2FbFAFB1bgCcFLw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00db895712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":60847,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"729b74fe340e55e7e9e2ee3481425f6e","sha1":"699a83930623ca19660408b425263be323657d89","sha256":"15c23992b5ab7e9f272673947ae61a438590e8323f0cfa1293a21f8f6d1289f3","sha512":"13a36dab49f0dce5e378283672399f729a036e7763df3c5db39d7a1bfdd13f21ca0a5eb1c7b5885ece54faead0d1e4f2ea3cab880bd179d0c815d1ae87c334e3","ssdeep":"384:FaqJVm8OAL1M+hQokEYm47U7yH2CYEjOnm4zH7fZ6aXoso1v/:cqnm8OAL1Mzocm4KyH2CYEjOnm874soh","tlshash":"3853cebad18f05f59341e4d92743674293a9ba7ce1817c7ad342399ee3c06188ad73ec","first_seen":"2026-05-04T13:22:43.018265Z","last_seen":"2026-05-04T13:32:51.808923Z","times_seen":2,"resource_available":false,"data":null}},"time_used":810,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":809,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/bayer.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/bayer.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: +htaFouvEHpDR5NZtZ4Dkv085OFfAMDtzbMTLto9Qlx3pUMBH9WKw85l+2VjoxWEaWm3GNMxx7A=\r\nx-amz-request-id: E30DHFYN476MYEAF\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 31 Jul 2025 08:41:17 GMT\r\netag: \"63c5faa3e0541b47d613dc99d8444677\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: _7rW2MjKkiHKuz1t2PIqFk8hqM6qCRil\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 161635\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":161635,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"63c5faa3e0541b47d613dc99d8444677","sha1":"1deed0e40169bfd198398cd77dad231bdfbdab47","sha256":"37a269d01f5ff8be7d610bbed223a810e11ee899afb4e8a5ac532541cc03066e","sha512":"927e2ee301d48f307fd655b0024e7aa39c5b9978970ac3b88fa2714eda5998408aaa5f1d677daf323977695fe14dfaa85f19e0116baf3f36d30f7eb8dae3500e","ssdeep":"3072:TeEnSVBunWh+vad958avifLNZNpKma0Ank3x1AXiafhfM3IqCjcYuBIc9v22Gtj:TeEnSV6W7H8aSjGmonkHb5OJ/tj","tlshash":"bdf301371009bdd75a7778ed201b38568cdc312b73c6df4aba48a143a1edac2d43aa35","first_seen":"2025-07-31T22:08:51.245687Z","last_seen":"2026-05-04T13:32:51.814709Z","times_seen":201,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":263,"dns":0,"connect":0,"send":0,"wait":72,"receive":52,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/public/6741b5dbb7b44.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/public/6741b5dbb7b44.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-bbcd\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9yxGeQPVdU8jticnDX5ja4yBwV6e3nGnjPkVfklENhB92zydcsJF7kB5uFsK%2BH7PAtTfO%2B1mdudkpzGKf6XPAdRdRbXbhLne5PdSGeaB2ni4q14kzaIlob%2BxZynWQLLYDQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dd8a1712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48077,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 768x513, components 3","md5":"ce2752fc8fc89c3c0c429dc78149df1d","sha1":"f24d88205b026948ada78d24b070fd74c7cba699","sha256":"aae0eec4bf358549aedfe74c4263d1e629c48c6a12d9a73d6525fe38d761f0be","sha512":"49e12149e7578991f656dc91c15efa540e8351e08616f3cdbeaef3e76f61b8b9264780b4b1be9f013d589d43371f5f941d6e7528fc378b1255a6fece72e98e8a","ssdeep":"768:ZhqOTBmxDNEOArrOb7iOCWFMwiY1o9fPJIbPiVpdGf0vri7MlceyWpFmKrM3zZ5u:zlMpNRPfFoY1mHJcaBGwiw+ey/KrM3dk","tlshash":"1623f1bb172678327a0d863512eb6d43df243724cdd59d7536b9e97318e8486bc88a03","first_seen":"2026-05-04T13:22:43.020103Z","last_seen":"2026-05-04T13:32:51.842017Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1383,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1106,"receive":277,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/static/css/bootstrap.min.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/static/css/bootstrap.min.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-327fe\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1Y5ndly1vDEG5QdDB%2BXoPmbNXAtwrPV6bXgx081kEhIWCCQWPVufjPmHgjx0g64ln3RvU3LgXUrUnsjNZnBuVWe5AIMfJXODC4eT4QAYnvZ8HjwptCFPuZx2D1DQtian0A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00db894712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":206846,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (679)","md5":"effa8648b761ed7b0da255f7bd0a833d","sha1":"24fd0767b0bb0e713e15081ab9fb5d5066be559a","sha256":"85aabe0d1a28402d1bb074a20d7be026165bcc0f0e0ae1dcc86036cb4413b997","sha512":"620230a03959ecbac475ed2ac9eae39a0046cca858fcaca4fd35848bb476d7174f42ee06e346c287875368c958a7df773565bc4ca3eb7e60076b9dee817c7fa6","ssdeep":"1536:hMjQ8BhJEb4f0fLqHinT0cAG+Vv9Eng8wTc6YETp/wVkdiLWTaNC65NA6rN:hkk4f0WHoVnLWTaNC65NA6p","tlshash":"c2149616e8f22959944b816c16e967b5637d4083c72eeeb9be5f3344cf492c18d32ec8","first_seen":"2024-05-03T06:16:15Z","last_seen":"2026-05-04T13:32:51.811599Z","times_seen":33,"resource_available":false,"data":null}},"time_used":1042,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1033,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/public/6749ac95ac383.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/public/6749ac95ac383.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-19bb9\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B5uDCaw3afOzMV2I3ZSF3NCNVKGMhfJaCLPjtZ617T%2FH44CmTJXVZpww1pDaOADHFw%2Bw%2Fxd8T9lxU7JusfeY6jI%2BAGSSe%2FX2utWxIxojXVTnmU7Wk26ri4u%2F5fR9cPQdbw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dd8a2712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":105401,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 1024x683, components 3","md5":"f5cb4db4426c2238ecdead39522f48aa","sha1":"b7602cb45562f23ff677826a018fa14dd070918d","sha256":"084978b71707fab3f095fc3713ba24f05b64a293f1bf82f87ef2481c71f5541d","sha512":"9f3349d6488e4f9ef7af237ab1d29e50e0a5dda24ca199e433dc5d08141b2d68ca37bc7207ad9d2358d562398513e4f72d4bac6b766e009eca472d390b5c45cd","ssdeep":"3072:7lS8//Z5J78tLXN230xPArorpWz0QWWmNsNu3:x3978d9QI0z0tWs3","tlshash":"9ea31243372f6868d0d15010d6c7baa2cba35e8f53d7c6ed815748a4df62928d7f8268","first_seen":"2026-05-04T13:22:43.022043Z","last_seen":"2026-05-04T13:32:51.829713Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1511,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1013,"receive":498,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/union-berlin.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/union-berlin.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: rBtgsUJwVG8TxLM7+vQQVcuYewd/Ftrg+qA8oQzqmT2yy07eCfT7zGhLKJZ1Y+8x7IueY7j4WizMaLslnn8qvq74xne+7VFC\r\nx-amz-request-id: S44QA3SVHS9N6PR1\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:57:15 GMT\r\netag: \"8ef16272f48426866e32aba42521da22\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:10.007Z\r\nx-amz-version-id: nU.g7BklKRVgTh90MqW5Q7rR7we7J_wD\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 31463\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":31463,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8ef16272f48426866e32aba42521da22","sha1":"ef2ddb10c6119c5ddda3fb7d07db3a85b2c7721a","sha256":"4fc3e343a59487f5ff0e197618c6bbeb0414986004a88044fa4e1b9b66582cec","sha512":"977249e944ebaffc44f9c7b342d67818624d35a69d1ccc63f17fcd77245a752bcf662450baca2115b24d76a63f677d5e62dd7461c527eaedfa7b3a12f6527286","ssdeep":"768:6IrDUigNQCdTyDVptKQS1MZLw3o+SdaYyOHITE8B6qO:6InVp0OZ0zkaYoyqO","tlshash":"5ae28385a7bad3bcf004b1fcc26ba8746a92ade13a12e456c7e11c43c5b201d1d76ddb","first_seen":"2024-07-26T22:36:55Z","last_seen":"2026-05-04T13:32:51.810973Z","times_seen":600,"resource_available":false,"data":null}},"time_used":375,"timings":{"blocked":264,"dns":0,"connect":0,"send":0,"wait":93,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/bootstrap5Slide/bootstrap.bundle.min.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/bootstrap.bundle.min.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896cac-1339c\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7Ar5zu5LIHVNbb7H3jdDKfSHEQ9dfNSAbbMHBj42jP2LTx9%2FhojhxtIT8dEqObQmPAnzVuzpd3Im4tFyoCZS6fct8x0xay5ud%2F4cbM1WBPeQz%2FBvqj1sYnOVnPHKvf2NPw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00df8ad712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78748,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"8831aa095cdec88f66c2e46c339cf352","sha1":"5db4c40dbc6bd3d9623ee98a2061dd265885cf2e","sha256":"79d443b15f542c8a8acca8e937f2a3c90ecba78bd49fdbac6c9b878c7f1293e9","sha512":"b07f093e128951e03d3d693778e70e97c53e95f65382d0570f8d6ae9c3bfb25c311870b129c5b8e4ae283c25211c6ecd301e266ca11d75598fb935eda5b09b14","ssdeep":"1536:GaPTJR2t4PqiiyuL5FehgTr1voCBZx6wVlLBkS:4OANBZVV5","tlshash":"0f73c5493254b87309ee15a68037460bf7256d94b14b802cb5bdacde2b3dc8672b7f78","first_seen":"2023-03-07T01:34:42Z","last_seen":"2026-05-04T13:32:51.819229Z","times_seen":7580,"resource_available":true,"data":null}},"time_used":1120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1114,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/imgs/icon_contract.svg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/imgs/icon_contract.svg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-487\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2BxJqpepa8VaCoPeLPT4BFMZ50J4AJNZ%2FXpzglRGDWZ3fuLzAnZspw0po4ovDSezNGTRfSJw02GJaP4l83nxZl9L%2FgwW8zDzutHRceKN37eLPxQH8KyHSbc9JBxeD%2Bxxjg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dd8a5712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1159,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8be2edf2728aa394553b4fd9a44471f0","sha1":"1afec38a2c761fbd902e1de55d280424335aeeca","sha256":"306f962a6980e05ac92e3e8d3b1818e864f5557237541ab81cf2a15c44a190aa","sha512":"cd25567c0782132f9dcf858b252b11d1343a57a747b1bdbb7094b31baa1074528bc86fafeb66ac71997b4f4ae50e20c56373774f0f79fbf4b2ed339be8000ed4","ssdeep":"","tlshash":"b421ce69623543b9f04a82b212c9f47f353e06d8f1cb44c9e5671e20206e82ebca96c3","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-04T13:32:51.847774Z","times_seen":2558,"resource_available":false,"data":null}},"time_used":776,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":776,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/koln.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/koln.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: WXjciYyYE+f9CeT6GET0DB2m2/YFFwoB9JXuxaIOxbfDUdniQCDV875Xtf17pORM/DhfFHcjLNXtH7BK60GgGW5Ntdzrp8sL\r\nx-amz-request-id: AMRXCB0XS66NFNRE\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 31 Jul 2025 08:41:17 GMT\r\netag: \"4ebe444d912b9439afeda61f4569a79f\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: qJE9t2hxJ9gHtFHvKdfbCEXDTvjjOFQb\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 29529\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":29529,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4ebe444d912b9439afeda61f4569a79f","sha1":"e9243733d635dc44407f49dd7f275bcb29943e6d","sha256":"c2b800f74bf7c1c6cc3c65acabceddc50e396387dfb2f0b9b35f348d60fee856","sha512":"918108e2aa57eadae375b92fe8a25a7e3f3101d2eb8ec87deb6db7afe3e704935ab53ad7e0279029583c1db7bdc645861e3dd4ed5c543a5b3df411ad48d144b0","ssdeep":"384:dTW5DYinBo4sBxkP2DjQUwWDkd/2oT8ftimROZ3uMaWJNxZicK6toUpw2OLmBtG7:r54sBxkGj8WyRTMq32WJNPtSDbTRSU","tlshash":"70d2d7dd3b658bf8f941f3fbda2210aabe0e54fa2a814674c7595e04784207dcd56cc2","first_seen":"2025-07-31T22:08:51.15105Z","last_seen":"2026-05-04T13:32:51.808385Z","times_seen":201,"resource_available":false,"data":null}},"time_used":393,"timings":{"blocked":260,"dns":0,"connect":0,"send":0,"wait":70,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/js/jquery.min.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/js/jquery.min.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-176c2\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oyMsB8omobftN1Mi8ZfhmxFGvSXQxUmjCTCQpaLINXEGCDkKGRhit0FynFc%2BuuexmmVT7QlftMISo%2BE0Q3Z1QOgjPhcsZ6O8AmFFGZvd7JGFLHjS4ETFJlnfFx49mPboAA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00de8a9712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":95938,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32047), with CRLF line terminators","md5":"c2facc43e450ede82ff41dd96a8053e0","sha1":"1a6ee8c3a91772b1dcfa346d3a68943ee318ff07","sha256":"efb1de0af10b3b914711afaa4f96a51c0666f5cc2440416fac0753679f1033d3","sha512":"81b156a891ae057ca73ada403367433fdd67d1d23237f4895a1e14e0c412907931cd200f9a627b005fd4a73eba991c4fc96e2a923c41dd475d3243113b14e108","ssdeep":"1536:0P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLyFoqqhJ7SerN5sVI6xcBvPv7E+nzms9B:f4UddqhJvNPqcBH7MfWWca98Hr9","tlshash":"2d93d8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.840939Z","times_seen":271,"resource_available":true,"data":null}},"time_used":1070,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1060,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/layer/layer.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/js/layer/layer.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-4d83\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y3XoveuSXP5ucoCUWPMlxsWJyZts6X6ehIJj7QuGgfV3fLC81JsjeR4iZOnk2skFI5MD993lNx4yDdcoePzlRQP4XxweY%2Fhsk58w3UwVd9EL2qnCj63ZfZ0dnPwAAk8%2Fqg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00de8aa712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19752)","md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-05-04T13:32:51.810018Z","times_seen":13496,"resource_available":true,"data":null}},"time_used":803,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":802,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Static/bootstrap5Slide/scripts.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.277Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/scripts.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\npriority: u=3,i=?0\r\nlast-modified: Mon, 09 Feb 2026 05:12:12 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"69896cac-12a\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yp2vaQd8J3ffTpqnFdMkIkmicI2Bh76kQjNhAvb2WuvpIH4pyscTYbMimWhM3Oo2rqyTgLhDGHfp%2B7YEg7OLXkm6%2BjfVL8DmVGPcCzCdfkQIIlm7GC5k%2BB10iN9cGnqQwA%3D%3D\"}]}\r\ncf-ray: 9f67d00df8ae712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":298,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"48477ea73f8709a6c29d7cde0cc83e55","sha1":"5dc30fab107725dd71ab343d70b9e6267ea68cf1","sha256":"fd67e1f083236a6c171d2275401174ea62a6f24fc81193d55653080a236a209a","sha512":"0932287b99d7c96929e7464b6684fe399dfcaaea787dcab28fa0879094b5eb4d92139260fecde4ffe430eca3986430f98a72fc523332c4e476bee9ea2226b1b3","ssdeep":"","tlshash":"1ee0cd91761d4f9d1ccc3257996092c576841524e401f06790374c6c0a9584225fb7fc","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-05-04T13:32:51.813106Z","times_seen":6113,"resource_available":true,"data":null}},"time_used":853,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":853,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/favicon.ico","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:13 GMT\r\ncontent-type: image/x-icon\r\npriority: u=6,i=?0\r\nlast-modified: Mon, 09 Feb 2026 05:12:04 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69896ca4-10be\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O0T0T8M0weRHUTJEOhgta9XEDuLpHtpBf3%2FGooIewTdI1OedB1Cr0e%2B2rksalP9U4nl9gg5Rm1%2B01iouwkTV0v%2FZLhoaBLZeH3xyA2IWeJI7qQ7o0p6ZdGZONoZXo4BmsQ%3D%3D\"}]}\r\ncf-ray: 9f67d01e099f712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"a9662c2da7f2bf9598e3cab152457d6e","sha1":"48d2938a18efecec6ef24b5a24fd2fa64ca8882f","sha256":"1c4d02d20ba3a097711854c49a68f71fe24196f83e8e8007fad93ca87522d9c9","sha512":"60e48ab767aced6f8d5fb7ffa7b5b82dc0265ad52aae81a24cf80a17d6213be2077bf13ae4c74a6ad451611e68f370c4f774566fcbf7f2e4b516251499b9341d","ssdeep":"48:sggufzIw3toTiKnrPt0jJ/2dYI+kLQClzIS4Wp+ABraP:OCzIwqiKrFmJOyB8QP0+AE","tlshash":"6391c841fa5a5459f511d33ecb82e0fe762a0d6ef6c0b54683edbe533812d0078427b9","first_seen":"2026-05-04T13:22:43.026983Z","last_seen":"2026-05-04T13:32:51.843695Z","times_seen":2,"resource_available":false,"data":null}},"time_used":863,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":863,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/academy/video_3.mp4","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:26.830Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/academy/video_3.mp4 HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nx-amz-id-2: OyTbpY0cwn65ejTaDaCTJkxoXlp8Jz1EzX6huvRZ8Fng7EJ5rQ482LHTqlQ2+4eBVeoHCHuN1rndBKE1vx/alrAjy8Qi0LBg\r\nx-amz-request-id: 3C8TNNX7HAKH7NWF\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:54:15 GMT\r\netag: \"05bd65e78bc99cd348868f23ce754b60\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:09.475Z\r\nx-amz-version-id: Q_NUU6KqWGhZNC9r2U.aXgRneh2Tsjig\r\naccept-ranges: bytes\r\ncontent-type: video/mp4\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:26 GMT\r\ndate: Mon, 04 May 2026 13:22:26 GMT\r\ncontent-range: bytes 0-104992/104993\r\ncontent-length: 104993\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":104993,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"05bd65e78bc99cd348868f23ce754b60","sha1":"2da56b0bcebbb05587bdd2a3325cf40afe9b10e2","sha256":"8243d53e797092a82d8ade1368f63d49ed9ed2b59be8aec36f789371e70d262b","sha512":"6dd5d19ba9fb5416259a9c67f583002a55da0752fbd22075f371ca9e97d4a1639b4dcebca21fa0331498b2d51186c35231b300050828258dced5233e63f654c1","ssdeep":"3072:ayFh25uRZVm4timracwQppGcPo3P2/B8VRIWacd9X49a:ayQIVXSGCcYtRIWacd9X7","tlshash":"5ba3ce504bb164ebf519433e1ebbe3567324e2209716fb4b475ab520fd76229ecc20c9","first_seen":"2024-08-19T13:32:25.920811Z","last_seen":"2026-05-04T13:32:51.828429Z","times_seen":9,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":38,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/css/Odometer.css","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.234Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/css/Odometer.css HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: text/css\r\npriority: u=2,i=?0\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"69896ca5-1c9\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sog2vvlFk5evKbSh5U11lh6M7L2dvYyF83EFb9TAk0ak1Y8VoXgVIKXK2BTJ6UO857H9C23IORlqk9TTd2%2B6XMXaJ2y9ZYqTOOZXn%2BGi%2FXukfpxbj7XRI2%2FsD0nhLtK2nQ%3D%3D\"}]}\r\ncf-ray: 9f67d00dc897712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":457,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (457), with no line terminators","md5":"3988f210d65395d6ec39e2801f97ab63","sha1":"87d1fb633a1812935ce08eb3bb7e0b9810bc8911","sha256":"d660f459d05b07ee278a5e69f7c896b0de536be6d09dfe7a91f607cc0dc29d65","sha512":"faa309d0431cac1ce031dbf42e732dd064ba8ce41ebbf4d9510f4e2b2d1bee561aa351cbee8557b7d2f68844f75895c51ee6343c2c53140cbbfd4884f5749bc3","ssdeep":"","tlshash":"daf08211ea12100daa3753b8653a7b894c118812e60a106cb5b1205883cb853bebb7a3","first_seen":"2024-07-09T14:13:18Z","last_seen":"2026-05-04T13:32:51.84637Z","times_seen":1047,"resource_available":false,"data":null}},"time_used":836,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":835,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/forestcrest.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/forestcrest.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: XEA65ogjoNnj7EfILWST5AQ17xKrKGdW4FsXYTmvtgVxnQFudnTgfIMhOGkaAHqphgUdNt1mOYhNZITQXcWS1bUcrP7DR3Fj\r\nx-amz-request-id: 1J09JMPEWCC8XK3N\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 31 Jul 2025 08:41:17 GMT\r\netag: \"950e44f88dfd441bc3ca605c47c8874d\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: ho4bwdR682STSxcUMVkkwGOmDOrqy69z\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 8197\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":8197,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"950e44f88dfd441bc3ca605c47c8874d","sha1":"62b3a313164558dfdb31e305fe38def51fc08a53","sha256":"490b4f17bf3f24e5c22862e203d04995d3b9b7107dda62ef4c8ce40c7582ee6e","sha512":"407e15aee1882289323a1f97287208b561f5f3341b9140adddf3a80cbbe8ecf54289a16d54531781124c4552b7e43c9b59bb60c8ddb43542d4d96ffdb88c2b07","ssdeep":"192:mQ/N57I8KC7qPzdhrpr+Rpn2cSNAZ8vduA2IXN+P8Y:qk7qPplguclVA2MNi","tlshash":"fc02b7dd27a41ef19c02ebde971340547a1224fea681cf22c3595f1db88615cd9ddcc2","first_seen":"2025-07-31T22:08:51.129736Z","last_seen":"2026-05-04T13:32:51.849083Z","times_seen":201,"resource_available":false,"data":null}},"time_used":298,"timings":{"blocked":259,"dns":0,"connect":0,"send":0,"wait":38,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/js/Odometer.js","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/js/Odometer.js HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-f26\"\r\nexpires: Tue, 05 May 2026 01:22:10 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PxvpfjnmGre3f9jlLIJulP6RCig0EsOrzfI6eWqJ5korVdTbXz7alWJL%2FhaWd%2B6e3ZSaoVXXJqQXOR91PoLQbQCIW8HTnbzS1QxrinKK%2BIwcXUMASKZCrUXbTPIfRu%2FUJQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00df8af712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3878,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"a804750802092f8fb7734908a3511382","sha1":"faeda1356d814148fc6a65c6a6fd9971f8fe3d98","sha256":"ed9408d7169ee6206a92b8444bb4b8d7fd509d74b1f047d0caa790e772a4d104","sha512":"718d2d37e13bad9bf3d854c6071faca16dcd9ecd549496c2cdf056d952a662adc2b2fd1de38e16e9d03f91225a793db94542d8ca0f71370b3df788e0a2ebaf46","ssdeep":"","tlshash":"68819c9699932069413697f38bbf1701ec65480b9401251c7e7c82813fbbe2979e6fb2","first_seen":"2024-07-09T14:13:17Z","last_seen":"2026-05-04T13:32:51.842565Z","times_seen":1086,"resource_available":true,"data":null}},"time_used":805,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":805,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Upload/public/6741b5c50e943.jpg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Upload/public/6741b5c50e943.jpg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-f176\"\r\nexpires: Wed, 03 Jun 2026 13:22:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Gvha9wstpHkXj4xIrNEoNb%2FU6dcFh4mnrdmdSmTMivMtxDkn7Iu05Ot6%2F%2BW%2FNXRY0mcbQJJOWyDM9uCugxT2ZPdJU7a3%2F44tpKgtrPpSp2%2BOfgC8%2BKJJRzmaE%2BdopEdspA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dc89e712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":61814,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 972x547, components 3","md5":"b688c38327f8fb0c50d8cc49aa9abbdf","sha1":"a6f3a92c1aa95b8d586d47309c121076735ad768","sha256":"1d2311fa555f321d1d89af88d0a7ad670c1fe5ff7ca653ae944d798181bcba48","sha512":"303dd3d5070b9801294ae656f232a2ad070afccc913ffb0fc3a4fc53745c93de3681762c9211a475837cae15f149ade56c223663ed7ec6d455dd968e31e2db9d","ssdeep":"1536:icc4Tkzsvb+Cje3mGvXGWW74ohuE51epkXlq/lLyaJwSm:imv1i3XvWWWkfM1q/lGPz","tlshash":"495302201fae8d1bd4a134f274cd95aa961cbd08fe292f4594e53f22b724fed1500717","first_seen":"2026-05-04T13:22:43.031225Z","last_seen":"2026-05-04T13:32:51.841458Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1162,"receive":290,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jp-ibgroup.com/Public/Home/static/imgs/icon_margin.svg","fqdn":"jp-ibgroup.com","domain":"jp-ibgroup.com","tld":"com"},"ip":{"addr":"172.67.145.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.252Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jp-ibgroup.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 14:39:51 GMT","end":"Thu, 30 Jul 2026 14:39:50 GMT"},"fingerprint":{"sha1":"00:D2:DB:04:D1:AF:A8:71:80:ED:3B:A7:4D:9D:DA:16:E9:B5:FF:4E","sha256":"EE:E5:41:A0:1F:79:30:B0:0C:83:2B:28:6A:7B:A3:FA:2B:3F:DF:FA:A2:AC:07:54:26:3F:2E:72:DB:CC:F5:1F"}}},"request":{"raw":"GET /Public/Home/static/imgs/icon_margin.svg HTTP/1.1\r\nHost: jp-ibgroup.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nCookie: PHPSESSID=podtgisk4bvs89u4u04aj82it0; server_name_session=a1b5d0c7cbaaca0d0cbdea49cc09d96c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 04 May 2026 13:22:11 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 09 Feb 2026 05:12:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69896ca5-654\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Hcwk3pgpbpBdUy0LVig7UYd9gMkOtn5M%2BNnHuEGg40NICsMPK%2B%2BY3ggsen8IHU37Bqrpzrz4PcRz7bL3PuSVNImsmK9Mj8eZAaXAcZo%2F7qPwElMSgqgxRTFMPWKpCstG5A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f67d00dd8a4712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1620,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"283d6ddfb29042011328571a509df448","sha1":"3e486c50cfe119efc43c68ffafa349670c9f919c","sha256":"e88581cf4375fb6f9e7d94b4f9df4a667677d0d96384227c9a9228b1329f3308","sha512":"78e85634891dbc1423281f54e43c362b9cf8c75c83a070c34b36676b72b7b71e7793b2224c6d820eb870a0f7d854b336334b8ba0bca9125854139aaf2a97bc91","ssdeep":"","tlshash":"4e3120883a7ac39ce500e7ad981bb5ac3e1e04e96684c5d9c3e22c1078d2a59dc98dd7","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-04T13:32:51.830363Z","times_seen":2538,"resource_available":false,"data":null}},"time_used":790,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":790,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-04","alert":"Sinkholed","trigger":"jp-ibgroup.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/sponsorship/2024/prem.svg","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:10.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/sponsorship/2024/prem.svg HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: ZFTZoeLupNNK4E7TRq43PRZgGoBulkXn2h8p7IUDS4iUXFTI2hL+urSoJKouHR28zeuMF3yX6vfRbS8+UbzLbju9Jpm9UH29FOxRY/ZZJd0=\r\nx-amz-request-id: SCFMT714JPTFN266\r\nx-amz-replication-status: PENDING\r\nlast-modified: Thu, 31 Jul 2025 08:41:17 GMT\r\netag: \"9c0fd0f71c6f0dc57b945b97f0aa0aa7\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 2le5EVBnmZ9bwP5D5MBdSBNVIK1v0kPq\r\naccept-ranges: bytes\r\ncontent-type: image/svg+xml\r\ncontent-length: 9796\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:10 GMT\r\ndate: Mon, 04 May 2026 13:22:10 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9796,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9c0fd0f71c6f0dc57b945b97f0aa0aa7","sha1":"fc7c73aeab5a1a2d45734249425b3faa555d8c28","sha256":"d768a2966bf6efbfcb96328d557575a20a712fd6b9a2eb779c3f16f398c396f5","sha512":"cf4340ec7b0322b7a43a2c8c0d9518a6fcbb1ff55c4843691df9ce8183388dab69890c8817f0f5e1c1fc3807c35ddb3db9383862c4165e3e710674a178ec509d","ssdeep":"192:AWtUxQC7k3i3ynxc0F4yHSFfk9kpcTzNqHsXXadqwZWaE9TSd6G8vJb9Se:btOka2VP9LvadFZLE1Gub","tlshash":"be1272df3b9162e0dc81d3eefb2214fdb10940fa69928b70c5599f5a3c5646dcc1ac90","first_seen":"2025-07-31T22:08:51.185246Z","last_seen":"2026-05-04T13:32:51.845366Z","times_seen":201,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":261,"dns":0,"connect":0,"send":0,"wait":267,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"marketing.etorostatic.com/cache1/hp/v_254/images/academy/video.mp4","fqdn":"marketing.etorostatic.com","domain":"etorostatic.com","tld":"com"},"ip":{"addr":"23.49.26.153","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://jp-ibgroup.com/","date":"2026-05-04T13:22:12.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.etorostatic.com","organization":"ETORO (EUROPE) LIMITED"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 27 Oct 2025 00:00:00 GMT","end":"Mon, 26 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"64:53:A1:3E:3B:9A:F7:6D:3F:05:1F:0B:56:02:65:2F:AB:13:B6:13","sha256":"82:E1:20:95:33:95:BD:D6:D1:3B:C8:F4:E2:36:5A:08:AE:F5:0C:BD:0F:7D:FC:28:42:9B:F5:7F:B9:1F:07:4B"}}},"request":{"raw":"GET /cache1/hp/v_254/images/academy/video.mp4 HTTP/1.1\r\nHost: marketing.etorostatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp-ibgroup.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nx-amz-id-2: 5alWbylQaDTCrOwMLmhBBVUBXV+CGrQ6baUn0mDJ+xrxvTTF4xWkSy1NOA7AAByiSSuAGTGkoK4=\r\nx-amz-request-id: 7HET9N4N34ABAJAB\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 06 Feb 2025 08:54:04 GMT\r\netag: \"8b441ea475b63222d60d0a3d68be812b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-origin-date-iso8601: 2024-08-13T09:56:09.471Z\r\nx-amz-version-id: q5d3MBmfTd4GxSlbJBYpre0DsmOg6cgq\r\naccept-ranges: bytes\r\ncontent-type: video/mp4\r\nserver: AmazonS3\r\ncache-control: max-age=31536000\r\nexpires: Tue, 04 May 2027 13:22:12 GMT\r\ndate: Mon, 04 May 2026 13:22:12 GMT\r\ncontent-range: bytes 0-140194/140195\r\ncontent-length: 140195\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":140195,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"8b441ea475b63222d60d0a3d68be812b","sha1":"f2259e4f80cb16289c608bdc1b1ee637060ef281","sha256":"0021ccc092e5c3df16307ab57235b928bb402c797a648d6735808eadd45028b0","sha512":"3b45b050e0ee59ff0229c2dbd16477d0f378ce03b65d0ca9534d93298b0fbc4ccce8cbae19e2c081576aa404b8524d765c125e8aa5e11432444ebb5b834f4e6e","ssdeep":"3072:pRN43RfbrA2HYn2gfnNhyHQ/ekJnTcqKUfnrcCB1E/8D/IGrFLUN:25A24n2gfnnygDBTc7xCvrtFLUN","tlshash":"9dd3bea45fb715e7f90487bc0df7eb42bb2ae0206716e72b8b443454f9b2a50dd868d0","first_seen":"2024-08-19T13:32:25.914003Z","last_seen":"2026-05-04T13:32:51.844298Z","times_seen":8,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}