{"report_id":"1a09e158-0149-4cf3-9573-a565acec41dd","version":6,"status":"done","tags":[],"date":"2026-04-04T12:22:39Z","url":{"schema":"http","addr":"jup-swap.co","fqdn":"jup-swap.co","domain":"jup-swap.co","tld":"co"},"ip":{"addr":"176.125.242.151","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"jup-swap.co/","fqdn":"jup-swap.co","domain":"jup-swap.co","tld":"co"},"title":"Jupiter Swap | Solana Exchange","dom":{"size":20995,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (502)","md5":"4dbd94ce2614bf1447a0619e2e45538d","sha1":"d9d5f12598ecb23b20816c7d351d49a5e6e2de95","sha256":"0fef86c34f6b042605fb054cb670826d86be7f428c6d43ce643278d10f5058d0","sha512":"cb6a030839a4dca37b8520b8297117378002797e44d410adca9d0b4da7594ee891b26a6439d9a6fd5d25dc6dc722458eebd8f11ee6b10df5edfb60409de56f37","ssdeep":"384:B50ey2/WodkGZFoD9EditicyAdSzbEHa9JyWlPNexI8rplTtb:cGZFA9+itiVzHn5Ne3D5","tlshash":"b192c83652e70172387281a23bcb67976794d01bc502c5283fed8758dfc69a49ab3a5c","dom_hash":"domhash445944e954264637add7498a5aba26dc","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"jup-swap.co","fqdn":"jup-swap.co","domain":"jup-swap.co","tld":"co"},"ip":{"addr":"176.125.242.151","port":0,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-09T12:22:39Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"jup-swap.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"jup-swap.co","ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-04-04T12:22:39.151894Z","last_seen":"2026-04-04T12:22:39.151894Z","alert_count":3,"request_count":3,"received_data":38773,"sent_data":1353,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-03-29T22:20:07.848058Z","alert_count":0,"request_count":1,"received_data":8134,"sent_data":502,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-03-29T22:16:18.281815Z","alert_count":0,"request_count":5,"received_data":105171,"sent_data":2670,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Space+Mono:wght@400;700\u0026family=Barlow:wght@300;400;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.342Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:54 GMT","end":"Mon, 08 Jun 2026 08:38:53 GMT"},"fingerprint":{"sha1":"B7:E6:53:75:FA:B8:E8:B5:11:AC:F7:22:E0:8B:AC:53:3E:61:05:64","sha256":"46:48:37:84:82:72:61:A1:32:78:58:13:38:99:8D:2A:19:CB:C4:47:8B:BC:B1:AC:5F:6C:F4:91:6D:BB:DE:BB"}}},"request":{"raw":"GET /css2?family=Space+Mono:wght@400;700\u0026family=Barlow:wght@300;400;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jup-swap.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 04 Apr 2026 12:22:17 GMT\r\ndate: Sat, 04 Apr 2026 12:22:17 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7448,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"447177cca1096bd826ca20b8dede370f","sha1":"86e34ba78f84e984e7696fe7b75d995b5d632a5f","sha256":"d99dcfde9f41fe40df36142831e8162b9d927bd60472333f2a7b69557b7cade2","sha512":"8c2bb41a68bf232093cc0611a99a8a919f20a26dfa88fbce6a50265ba9320c57d85ebd803c233cf8ceaf54ba08bc94539c5facf385c2aa9d1fb0f912eda087e0","ssdeep":"96:cWO1atOXO1atO/Jc+uyO1atOuNDWOEasOEarJc+uyOEaKNDWOxMat3OxMatfJc+g:cMmqZRhDvkWPslu4ID1toV6FY7sbBxx","tlshash":"53e12f92046ba100eb970cc233ce7e32ed9e7155b441d57a7ffe1898ecaad256325b0d","first_seen":"2026-04-04T12:22:44.146443Z","last_seen":"2026-04-04T12:22:44.146443Z","times_seen":1,"resource_available":false,"data":null}},"time_used":395,"timings":{"blocked":178,"dns":1,"connect":15,"send":0,"wait":37,"receive":0,"ssl":160},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/spacemono/v17/i7dMIFZifjKcF5UAWdDRaPpZUFWaHg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/spacemono/v17/i7dMIFZifjKcF5UAWdDRaPpZUFWaHg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://jup-swap.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 16724\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 03 Apr 2026 21:20:49 GMT\r\nexpires: Sat, 03 Apr 2027 21:20:49 GMT\r\ncache-control: public, max-age=31536000\r\nage: 54088\r\nlast-modified: Wed, 25 Jun 2025 16:58:05 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16724,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16724, version 1.0","md5":"e5e908997a453e21f2fe41cb72e186d2","sha1":"d0c504bd8f896d39883e0ddfc81c511af526656b","sha256":"2d46bd159b53f55c41167a4f1540a074649464194fd1e416f5b4694a6c0f282c","sha512":"dd6bf730a4b16a50b0977b2d8efe865be0805da41c50aa86d39b4892c79db91f354e91b1a2ce4198e4b58e26752d4e9a06e33e9911e63f2df2e004d610685cd8","ssdeep":"384:ZRyfvfqIrJOZA3s5dQsQLR7JIWapcGsukRYRv5fpD:ZUXfNs5IRQ3zkCZ5fpD","tlshash":"8f72d0b8fe064610c2542fbf06209de1831895fe192e4f24f8aa74ac4f1715e3f117ba","first_seen":"2025-02-19T12:54:04.600022Z","last_seen":"2026-04-06T02:39:07.874472Z","times_seen":870,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":80,"dns":1,"connect":9,"send":0,"wait":9,"receive":2,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlow/v13/7cHpv4kjgoGqM7E_DMs5.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/barlow/v13/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://jup-swap.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22196\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 29 Mar 2026 00:37:54 GMT\r\nexpires: Mon, 29 Mar 2027 00:37:54 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 10 Sep 2025 16:22:46 GMT\r\ncontent-type: font/woff2\r\nage: 560663\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22196,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22196, version 1.0","md5":"81419bf5abb50ae075ddf1aee89da819","sha1":"4f0f26f139db2a7eee91dca038012399b3abdc47","sha256":"b0a8ad37ac45f5fb22ced461576db72e44e295107aad7a9c8a7a4bad728fd03b","sha512":"2445e12945aafa3ceb309e854253949361a3ce080197295d48b7b54fcc8d8cf2da24dc69dfaeb6c98c6a402742e4cc4bae2d12f57cc2ec3e79a676440fba35f3","ssdeep":"384:7wDo/T9qjZ6Qlb3pgWw/1n2vZvYUwVlykCtnexzuDDxlNN8fsbB:7wUQV626X1n2vRYUwlykMou/vN","tlshash":"04a2d084dae9716a4cc18aa602830aaddf76a048917c9f0cb5fb129d19425747f0fbf9","first_seen":"2025-09-11T18:14:34.493772Z","last_seen":"2026-04-06T11:30:41.054571Z","times_seen":5965,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":80,"dns":4,"connect":26,"send":0,"wait":8,"receive":4,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlow/v13/7cHqv4kjgoGqM7E3t-4s51os.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.646Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/barlow/v13/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://jup-swap.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22788\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 03 Apr 2026 20:22:55 GMT\r\nexpires: Sat, 03 Apr 2027 20:22:55 GMT\r\ncache-control: public, max-age=31536000\r\nage: 57562\r\nlast-modified: Wed, 10 Sep 2025 16:22:44 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22788,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22788, version 1.0","md5":"15481e4eab6dc3277d89f1d5871cf08f","sha1":"25ba8a978a3a493ec9f835f7f2cdefe16b55b295","sha256":"2d797dd8b35dcb3413e1af9d7052b3f4f8c341a147cdcb01f4f06af80db53289","sha512":"bb5ba24476faa25680e6644dba33a98afca6ef0936f7be6ee3888d09c2d7b658ccfaae395f173ded5331529e4548b25d923490be1363132ed30e0e368812dace","ssdeep":"384:Jc/2c7dFz93/eRqONl+60qnSY8IkG5zjP2Z8VgG0BFrnIZbp/QPGIZgdT9mEl4/2:JM2c7dZ9vkq68606SVzGJ2uuubbYgDmM","tlshash":"36a2d0de44d674a2d12f32f43c832d1c13bd3558075ad59b6b1a068bf2bca7621e3527","first_seen":"2025-09-11T19:29:34.815552Z","last_seen":"2026-04-06T10:46:24.24272Z","times_seen":4748,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":150,"dns":0,"connect":8,"send":0,"wait":11,"receive":1,"ssl":142},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/spacemono/v17/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.652Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/spacemono/v17/i7dPIFZifjKcF5UAWdDRYEF8RQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://jup-swap.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 16520\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:15:17 GMT\r\nexpires: Sun, 04 Apr 2027 02:15:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 36420\r\nlast-modified: Wed, 25 Jun 2025 16:58:01 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16520,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16520, version 1.0","md5":"049dfc5919c21896a13296775d80b8c0","sha1":"e2ee2d370f0d46ca5a113126da3b58e16240fdec","sha256":"fb4a81a2d0a893e5c38c394a7e716a1cef0b24610a0af49c96f6d529bd66bf2b","sha512":"ffe3d5afd5a536cb2e78212c39163f16c254fbddca8c586ad99f0f06d27dad6af5b664d523909a0e3c5ed10d239e7f0fd96f2b2970163b23082f8be15a62cea2","ssdeep":"384:KWnkX//eTuOOsUGC9voO/fHl7exLa4Mp2e0+9NxHg+UM:KSm/GTuPsUG8vnnl7aL2pJHg+UM","tlshash":"0272d148764753bdec6bc86ce1e9ebd2e835b934c83c428fc858d8152161a53e86e34c","first_seen":"2025-02-19T12:54:04.599046Z","last_seen":"2026-04-06T02:39:07.873965Z","times_seen":1544,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":150,"dns":4,"connect":7,"send":0,"wait":8,"receive":2,"ssl":135},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jup-swap.co/","fqdn":"jup-swap.co","domain":"jup-swap.co","tld":"co"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-04T12:22:16.205Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jup-swap.co","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 08:03:47 GMT","end":"Wed, 01 Jul 2026 08:03:46 GMT"},"fingerprint":{"sha1":"16:24:39:25:5B:91:BB:B6:C8:96:B2:40:34:7C:97:7A:3A:AE:00:67","sha256":"0E:F8:90:B3:0B:3C:F5:F2:6E:EF:5A:FF:68:FA:1B:00:29:2E:14:78:F5:3F:E4:02:96:85:96:10:24:4B:FD:C1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jup-swap.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Sat, 04 Apr 2026 12:22:16 GMT\r\nContent-Type: text/html; charset=utf-8\r\nLast-Modified: Wed, 01 Apr 2026 12:06:28 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69cd0a44-5244\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21060,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (502)","md5":"5f3d7dcf26f8e40f87269c3427db0743","sha1":"1fa286ed38434327e7f7df1c67ae6f5cf3a481dd","sha256":"5a8368cc74bf58f40a6bfbdcb186f06f9d53d25006c74fd910d46d6483d75d29","sha512":"5fb348049dec11a888c6ec76c73e8365ac8ab27cc696d6bddac13115742aadc9311fe950159f57aaa63185a75d1f86151bf4f1490b378afe06468a70fab7d08b","ssdeep":"384:3nGZFoD9EditicyAdSzbXHa9JyvlPNemI8+plutf:3GZFA9+itiVzensNejDO","tlshash":"8692d83652e70172387341a23bcf679767a4d01bc502c52c3fed9658dfc29a49ab3a9c","first_seen":"2026-04-04T12:22:44.151491Z","last_seen":"2026-04-04T12:22:44.151491Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1451,"timings":{"blocked":627,"dns":247,"connect":176,"send":0,"wait":194,"receive":3,"ssl":199},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"jup-swap.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jup-swap.co/apple-touch-icon.png","fqdn":"jup-swap.co","domain":"jup-swap.co","tld":"co"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jup-swap.co","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 08:03:47 GMT","end":"Wed, 01 Jul 2026 08:03:46 GMT"},"fingerprint":{"sha1":"16:24:39:25:5B:91:BB:B6:C8:96:B2:40:34:7C:97:7A:3A:AE:00:67","sha256":"0E:F8:90:B3:0B:3C:F5:F2:6E:EF:5A:FF:68:FA:1B:00:29:2E:14:78:F5:3F:E4:02:96:85:96:10:24:4B:FD:C1"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: jup-swap.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jup-swap.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Sat, 04 Apr 2026 12:22:17 GMT\r\nContent-Type: image/png\r\nLast-Modified: Fri, 07 Nov 2025 12:00:54 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"690ddf76-41eb\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16875,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"7829201803786118dedd908bfa4b439f","sha1":"954083b7a169b11f3a6422539d9dd61be89b43e1","sha256":"f90f02e69b660102b6fc8caccd7a9213b0e09d63c95bb8064cf1f690112b2d9b","sha512":"7a75ee87c472f6a4abdc40748ed22e11fba23705144e163c962be5c7fb6697e43313a99c2bacb8067a6109f29e00de8ff269456b25b6d86d5b770e0e37da7a6d","ssdeep":"384:VeoK32m+Y4A51iehypxSnx/MGI+TrGBRqhWc8YeY:6HJ3YsnxxwtcKY","tlshash":"6772cf390fc68070f38e3f4f1159d93d6c9abb540da1a52715caa76d10a66078a2fc93","first_seen":"2025-08-14T19:49:12.120998Z","last_seen":"2026-04-04T12:22:44.153558Z","times_seen":90,"resource_available":false,"data":null}},"time_used":638,"timings":{"blocked":117,"dns":0,"connect":177,"send":0,"wait":343,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"jup-swap.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jup-swap.co/favicon-16x16.png","fqdn":"jup-swap.co","domain":"jup-swap.co","tld":"co"},"ip":{"addr":"176.125.242.151","port":443,"asn":44477,"as":"Stark Industries Solutions Ltd","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.443Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jup-swap.co","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 08:03:47 GMT","end":"Wed, 01 Jul 2026 08:03:46 GMT"},"fingerprint":{"sha1":"16:24:39:25:5B:91:BB:B6:C8:96:B2:40:34:7C:97:7A:3A:AE:00:67","sha256":"0E:F8:90:B3:0B:3C:F5:F2:6E:EF:5A:FF:68:FA:1B:00:29:2E:14:78:F5:3F:E4:02:96:85:96:10:24:4B:FD:C1"}}},"request":{"raw":"GET /favicon-16x16.png HTTP/1.1\r\nHost: jup-swap.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jup-swap.co/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.28.2\r\nDate: Sat, 04 Apr 2026 12:22:17 GMT\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 153\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":153,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"aad3bd278f678e0130de8270d76d8685","sha1":"3df1e1de8d09f143b3a86820cccba2ede497ed87","sha256":"1b99284bfc6859dc384b7c81a29eda1eb815005952a1a78f6d7b21ab30726286","sha512":"48f2c31f2e20812e8f9e9e516851bf6fc478bff4dcd0fef5f03a1a4ec4178fe4c2aefdf860da23ae064775a4dcb409bb0aad822bbf42835b7f94761a8085a740","ssdeep":"","tlshash":"6ec02b2d39137c4cc5a3317422c37880c0ca83376cba41128400800331cf2998ac3397","first_seen":"2026-02-09T01:33:08.879169Z","last_seen":"2026-04-06T11:01:34.737723Z","times_seen":2316,"resource_available":true,"data":null}},"time_used":291,"timings":{"blocked":115,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"jup-swap.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/barlow/v13/7cHqv4kjgoGqM7E30-8s51os.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://jup-swap.co/","date":"2026-04-04T12:22:17.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/barlow/v13/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://jup-swap.co\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22772\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:00:42 GMT\r\nexpires: Sun, 04 Apr 2027 02:00:42 GMT\r\ncache-control: public, max-age=31536000\r\nage: 37295\r\nlast-modified: Wed, 10 Sep 2025 16:22:41 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22772,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22772, version 1.0","md5":"a1e2a2d7d4c0a5ba535913f0a2150cae","sha1":"800311e32df4fd8460628e4927d5231cdd21757f","sha256":"4b52ddd4836b592df0e4832b8286956883cdc651b015126bdd18f184b7f90cc3","sha512":"fe985f90d8f10f15a027f1aa977a4cb36c199107b8a57474b4bf78c121691f566e5add4f688fd2fc29ec7938a674a859181afc556c188af57a15f82e3c3c5c0a","ssdeep":"384:VuBhowtOok1JHF5aUPEgF9CsAvHRH+lG43W2YYsQRCTiZCODvlov3:VuMsktbF9CsAfRCG43WtYfC6CODm3","tlshash":"eca2e15cd3447c83a374a6bf1fe4ee6e09cc82622b39d497e8179c441ea5407799c8af","first_seen":"2025-09-11T18:14:34.478127Z","last_seen":"2026-04-06T10:46:24.235727Z","times_seen":3662,"resource_available":false,"data":null}},"time_used":291,"timings":{"blocked":139,"dns":1,"connect":9,"send":0,"wait":9,"receive":2,"ssl":127},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}