{"report_id":"bc1bce8e-d9da-4c01-bbb9-8ca953af1253","version":0,"status":"done","tags":[],"date":"2026-06-29T00:41:45Z","url":{"schema":"http","addr":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"ip":{"addr":"102.68.84.58","port":0,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"final":{"url":{"schema":"https","addr":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"title":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","dom":{"size":88067,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (20874)","md5":"4eec3dbf8bd06a54b96cbb39a4569198","sha1":"69bc343569262961c4a80f32d3ed325f6530d9d1","sha256":"899aec96cd039f594179fab4329d469300969c17abe98179137755e5baf2e6f4","sha512":"0316dd4fbd7146cec8bf7a0ce623b934e4555f175a796a653ce4a65c59855ec92b381234c29284613bac0f1a9782f718cfc607195363726f642465c30b62b12a","ssdeep":"1536:IhjLNt6BMJ9n1In1EDvvuE5scDbJgFy/Ws+8pcaP:IhjLNgBMJ9naEDvvuEyyOs+VaP","tlshash":"ae83191926f2003f1c9341e6f3db7729ba35a083da0ba62cbe4d41517fc6d9a4da3794","dom_hash":"domhashb841c1d3415dd4c3599c4fde9078bd4d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"ip":{"addr":"102.68.84.58","port":0,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-03T00:41:45Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"helpry.jp","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"helpry.jp","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"helpry.jp","ip":{"addr":"102.68.84.58","port":443,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"domain_registered":"2026-01-30","domain_rank":0,"first_seen":"2026-03-08T11:04:38.379107Z","last_seen":"2026-06-29T00:31:08.751735Z","alert_count":4,"request_count":2,"received_data":71784,"sent_data":1813,"comment":"","tags":null,"fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]}]},{"fqdn":"js.pusher.com","ip":{"addr":"143.204.246.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"1997-06-03","domain_rank":153087,"first_seen":"2012-07-26T12:54:46Z","last_seen":"2026-06-22T14:30:29.320565Z","alert_count":0,"request_count":1,"received_data":62418,"sent_data":457,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-06-28T22:47:06.167692Z","alert_count":0,"request_count":1,"received_data":42614,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.paypalobjects.com","ip":{"addr":"151.101.3.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-05-12","domain_rank":19317,"first_seen":"2012-05-30T06:40:21Z","last_seen":"2026-06-25T15:51:44.974037Z","alert_count":0,"request_count":3,"received_data":36408,"sent_data":1680,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":117330,"first_seen":"2018-07-09T05:46:13Z","last_seen":"2026-06-22T07:56:40.593876Z","alert_count":0,"request_count":2,"received_data":408694,"sent_data":924,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","size":407279,"data":"","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-29T09:30:38.510816Z","times_seen":42399,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"ip":{"addr":"102.68.84.58","port":443,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"introduction_type":"scriptElement","is_inline":true,"md5":"eb76743d82bab45161e0667303541510","sha1":"6b70ec24221ec772512ba1d8773c9814ce05fe2a","sha256":"67ec6605f60ecddfb8594662a30f8c6573164b5a249e3d56ead8e0630c56a052","sha512":"4c991d62a1252c1baedae3d20adc70ab07671e8ee5a75e4c5d29c4244e6aff9108d824cfc4e5a22f57a5082479ed5534ed457d01b42e10432e86d26308330e20","ssdeep":"","tlshash":"2bf0cd7554f69b13e557e46b916d5110ed644303dc193cbb3d4c52004fdc10dd4b5374","size":553,"data":"","first_seen":"2026-06-29T00:41:46.666068Z","last_seen":"2026-06-29T06:19:12.930582Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"ip":{"addr":"102.68.84.58","port":443,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"introduction_type":"scriptElement","is_inline":true,"md5":"1b10e3e414a31cded2d891aabd9e5681","sha1":"0a6f235b36578c722dcf59428dc12362608d9e8b","sha256":"a491c907b3ceb711740e77a44b7e1c24f69150535db3d4bcd2e1e15a8cc1f0d1","sha512":"6ffc02273dd4b8115017ac10fa38abbc413a860cd84a60bad18eabf9cbda18658c222902aeadd2cff1da23d4ba7870ecfe587bd253630d46b26e52ed54423b12","ssdeep":"384:0L7HgObCcZETAh5JhrtaAtSqGv1Dy/Ws+8SS7ca7wj:0LzocDbJTSB1Dy/Ws+8pcau","tlshash":"d8c2946e29b3183605e3217bb7df710575315007250afb24bf4cd3992f85aa897b6bc8","size":27968,"data":"","first_seen":"2026-06-29T00:41:46.669445Z","last_seen":"2026-06-29T06:19:12.934018Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.pusher.com/8.2.0/pusher.min.js","fqdn":"js.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"143.204.246.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3ab73af824d600a8f04d9e36bf295717","sha1":"fff60386ed303beaef7971a5ef1ab9240247bac5","sha256":"f9db3ff67d32874f9141c893b8e48159219863074df0bacd551f7747be849163","sha512":"165f722cf6856bbe8afcf0d34ee84ba43b7bf9558fe07c5914ce996c9e1209f01b976f5f98d547582b5e950a2bd57c26d05557f840cc106ef7375bfaf3838b90","ssdeep":"1536:dl+mM6s86ZphXoUK5wdkVB1R1DlqYuoD72MvMxl:dzwXiwdkVB1R1DlqYuAv8","tlshash":"b15308c4b591b05247eb7162586b4003e33929a4650bc0bcbf78eddaec786c9b13bb75","size":61809,"data":"","first_seen":"2023-10-18T08:40:07Z","last_seen":"2026-06-29T06:19:12.927898Z","times_seen":218,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/laravel-echo@1.15.3/dist/echo.iife.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1ac69e61607a3473cc96a669a6cf6215","sha1":"76b2c16533198045486a19ea3d428b069d2230bc","sha256":"1aeec8626da3c9513c0f5eb3fbbe16d210753d401c9ac98389cedb6981d294df","sha512":"3ba099bdb0a94259357884d67f54c1080326c8f0c168eea638d8504f8e894e2eaee595832f65908b92ad6a05b8dfd53e035bc7b0766459d6da46e82678f13029","ssdeep":"768:+VFPN2RncQdqm+wqDPE8886pg2K4Ct1zIYeunTPWlUeLazfwasSXDZyLUP9R+Qua:fuC5QTjeLazoaQLw+qWt4dt3Fx","tlshash":"8b13ba99edf260525633b0294fcf5605f138a25b860edd443eac86b0df7152d82e6fe8","size":41499,"data":"","first_seen":"2025-01-31T13:28:11.881314Z","last_seen":"2026-06-29T06:19:12.92877Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"warn","text":"cdn.tailwindcss.com should not be used in production. To use Tailwind CSS in production, install it as a PostCSS plugin or use the Tailwind CLI: https://tailwindcss.com/docs/installation","filename":"https://cdn.tailwindcss.com/","line_number":64,"column_number":1711},{"level":"log","text":"Echo initialized successfully","filename":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","line_number":846,"column_number":17},{"level":"log","text":"=== CHECKING FOR EXISTING SESSION ===","filename":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","line_number":929,"column_number":17},{"level":"log","text":"Checking client session, cache_lock:NOT FOUND","filename":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","line_number":884,"column_number":17},{"level":"log","text":"No session found, showing Start Chat screen","filename":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","line_number":936,"column_number":21}]},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/laravel-echo@1.15.3/dist/echo.iife.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.17.208.5","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.176Z","timestamp":1782693682176,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 22 Apr 2026 00:00:00 GMT","end":"Fri, 06 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"65:D9:C4:7E:04:4C:FD:DD:60:E0:CC:18:B5:B7:01:68:B4:2D:C7:34","sha256":"50:6C:A4:F6:ED:74:C7:E9:68:DB:32:56:5A:68:4C:98:ED:01:28:36:F8:13:BA:CC:19:A7:FD:7A:0A:6E:E7:D4"}}},"request":{"raw":"GET /npm/laravel-echo@1.15.3/dist/echo.iife.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 6559\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 1.15.3\r\nx-jsd-version-type: version\r\netag: W/\"a21b-drLBZTMZgEVIahnqPUKLBp0iMLw\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230217-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 3575778\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yS8py06%2FqSKBk39GFM0YgOjctmNm19b4VrXePiTlqmQ2%2FbvGcAmn%2Bzj34ihPgudJ7R4JPM5KPzDpKTErtdNkukggqUBdY2MPMVMCaPaiBxbaM9xanvkIXN5mI2qFwjCwzkY%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: a130e299fa14120a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":41499,"size_decoded":7674,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with CRLF, LF line terminators","md5":"1ac69e61607a3473cc96a669a6cf6215","sha1":"76b2c16533198045486a19ea3d428b069d2230bc","sha256":"1aeec8626da3c9513c0f5eb3fbbe16d210753d401c9ac98389cedb6981d294df","sha512":"3ba099bdb0a94259357884d67f54c1080326c8f0c168eea638d8504f8e894e2eaee595832f65908b92ad6a05b8dfd53e035bc7b0766459d6da46e82678f13029","ssdeep":"768:+VFPN2RncQdqm+wqDPE8886pg2K4Ct1zIYeunTPWlUeLazfwasSXDZyLUP9R+Qua:fuC5QTjeLazoaQLw+qWt4dt3Fx","tlshash":"8b13ba99edf260525633b0294fcf5605f138a25b860edd443eac86b0df7152d82e6fe8","first_seen":"2025-01-31T13:28:11.881314Z","last_seen":"2026-06-29T06:19:12.92877Z","times_seen":7,"resource_available":true,"data":null}},"time_used":60,"timings":{"blocked":-1,"dns":38,"connect":1,"send":0,"wait":5,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/digitalassets/c/website/logo/full-text/pp_fc_hl.svg","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"151.101.3.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.182Z","timestamp":1782693682182,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":""},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 23 Mar 2026 00:00:00 GMT","end":"Wed, 07 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C5:00:18:97:B9:56:2D:A2:02:A9:4D:5F:A6:BD:CF:EE:71:7F:9C:70","sha256":"64:BB:91:23:34:C5:83:1C:FA:85:2C:6D:1A:14:E6:E1:AB:9D:84:06:AE:2E:45:D4:68:B7:F4:BD:6B:F2:50:A2"}}},"request":{"raw":"GET /digitalassets/c/website/logo/full-text/pp_fc_hl.svg HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-length: 3531\r\nlast-modified: Tue, 15 Mar 2016 17:48:58 GMT\r\ncontent-type: image/svg+xml\r\npaypal-debug-id: e021d08849687\r\ntraceparent: 00-0000000000000000000e021d08849687-37fcdf0698f737ca-01\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\netag: W/\"56e84b0a-2b4b\"\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-encoding: br\r\ndc: ccg11-origin-www-1.paypal.com\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\nx-served-by: cache-sjc1000142-SJC, cache-sjc1000103-SJC, cache-bma-essb1270027-BMA\r\nx-cache: MISS, HIT, HIT\r\nx-cache-hits: 0, 8950, 0\r\nx-timer: S1782693682.321837,VS0,VE1\r\nvary: Accept-Encoding, Accept-Encoding\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=31557600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":11083,"size_decoded":4370,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"73f8508757a7d14b33899378c1d76c0b","sha1":"6ebda8ea76cea2160c9f71b018c72ace24919ed2","sha256":"036f5ec2d493c1c70c99b98eb3a666241af203a93f3fc3b8b64316794b4dcd3f","sha512":"1a7b81c0d13867977c37ea5e04cf2d89bedd1f5b357a6d62f019da8218e767f78ea4bd8af4aa47da0cde4d3483bdb46c01619017cb1424068c409fa17990a60f","ssdeep":"192:mZv/0E0UGR0XKVC9f4CcbcXIWCcsr7UZlir9JaKBrbthmUY4+bL:iSvg9f5czcsEDO9VN0dbL","tlshash":"0a3220db2b609bf6b006c34e638738663a9e30b7b9b75204bf6f38e027155d4009a957","first_seen":"2023-05-04T06:06:51Z","last_seen":"2026-06-29T06:19:12.920746Z","times_seen":413,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":103,"dns":10,"connect":18,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.17","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.293Z","timestamp":1782693682293,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 May 2026 14:31:45 GMT","end":"Mon, 17 Aug 2026 15:31:39 GMT"},"fingerprint":{"sha1":"B6:67:6F:5A:BE:B9:2A:B2:16:10:49:96:1E:1F:99:2B:44:AF:EA:A6","sha256":"63:A9:BF:FB:46:E0:B8:37:95:77:F3:63:84:AE:78:22:46:11:85:5E:DF:87:F6:4B:EF:F2:2E:24:D5:74:70:39"}}},"request":{"raw":"GET /3.4.17 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: br\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::vhhlv-1778775055415-ee1be01c049f\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nage: 3918624\r\nlast-modified: Wed, 03 Jun 2026 02:11:42 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=w1YzWvh8r25KKXJC7tsb6abWoyJS1xbPU5FqXy8sd3Nl%2BCZalqDE8y8d1oidPXJ%2Fu427qZgUbndy7FnLqpcjHa9vTuA5MywjQVJaXfiKi4THUmHR3zzENuwKQwrw6ojmhdjwQi4%3D\"}]}\r\ncf-ray: a130e29a586556c0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":407279,"size_decoded":127115,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52853)","md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-29T09:30:38.510816Z","times_seen":42399,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webstatic/icon/pp258.png","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"151.101.3.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.752Z","timestamp":1782693682752,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":""},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 23 Mar 2026 00:00:00 GMT","end":"Wed, 07 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C5:00:18:97:B9:56:2D:A2:02:A9:4D:5F:A6:BD:CF:EE:71:7F:9C:70","sha256":"64:BB:91:23:34:C5:83:1C:FA:85:2C:6D:1A:14:E6:E1:AB:9D:84:06:AE:2E:45:D4:68:B7:F4:BD:6B:F2:50:A2"}}},"request":{"raw":"GET /webstatic/icon/pp258.png HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-length: 11273\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-type: image/png\r\ndc: ccg11-origin-www-1.paypal.com\r\netag: \"Zkg+qNY1GsGkdzMyP2L977+exy9aNUfrpDcBWHZv87M\"\r\nfastly-io-info: ifsz=11273 idim=259x259 ifmt=png ofsz=11273 odim=259x259 ofmt=png\r\nfastly-io-served-by: vpop-haf2300703\r\nfastly-io-warning: Failed to shrink image\r\nfastly-stats: io=1\r\npaypal-debug-id: a283879a47c69\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\ntraceparent: 00-0000000000000000000a283879a47c69-93d5026812d57b11-01\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\nx-served-by: cache-sjc10061-SJC, cache-sjc10061-SJC, cache-bma-essb1270027-BMA\r\nx-cache: MISS, HIT, HIT\r\nx-cache-hits: 0, 951, 1\r\nx-timer: S1782693683.756953,VS0,VE1\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\nstrict-transport-security: max-age=31557600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":11273,"size_decoded":12243,"mime_type":"image/png","magic":"PNG image data, 259 x 259, 8-bit/color RGBA, non-interlaced","md5":"e7cbcaa14ba5db0160c268042e02db3c","sha1":"6bac98f15adfab6401322b17b026d3371e5a77a5","sha256":"6d8050cc8b33b9fdca434c4a66bde15cb8540db2a4bc29f7bb9ede78753477df","sha512":"7c5774dc5667f974f48e939fca2ed29c769f55365215366088198ac34dd14839bd7ca6e78131f45aab304938e6d48a5693851e1c47b31cd887f0d70d1b31b6a9","ssdeep":"192:j+iJg+p7Ob4DI5KQBsOo2oQeVPoDDoh6kHwxzNAHhpwbdPB0hxW59kwRmlgbvAAM:j7B45KQBI2OgP/4NQO5","tlshash":"1032d00f3edf2551f42f6833e8589a4ccf52498db05607063ce1e1063f707094a566bd","first_seen":"2023-05-03T02:08:56Z","last_seen":"2026-06-29T06:19:12.925441Z","times_seen":443,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"ip":{"addr":"102.68.84.58","port":443,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-29T00:41:20.793Z","timestamp":1782693680793,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"helpry.jp","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 15:35:58 GMT","end":"Fri, 31 Jul 2026 15:35:57 GMT"},"fingerprint":{"sha1":"3A:30:61:77:08:A2:82:9F:92:AF:68:9B:8D:5D:4B:F1:3C:29:DE:38","sha256":"DD:F4:2C:EE:2A:F4:97:31:EF:D1:15:9D:5F:78:30:06:73:24:CF:21:79:BB:CB:3C:C8:07:23:19:C0:6C:61:A4"}}},"request":{"raw":"GET /jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps HTTP/1.1\r\nHost: helpry.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx-rc\r\ndate: Mon, 29 Jun 2026 00:41:21 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\ncache-control: no-cache, private\r\nset-cookie: XSRF-TOKEN=eyJpdiI6ImZqWXkwUkV4YVh3a3BORFRZcjBpeWc9PSIsInZhbHVlIjoiZ0lWRVdVWEYyeUpTdkc1M2xuaDdDR0ptSUxtSmxmU3g2OVJpRjdpd2dsTVRvSXdVR2VQL1lHbGU2MEVQaURhbkFwa0NGbXdvUUJhdHh0cGVQcEJ0UG9SdFFLUXI2cjczaEU5UTg5ZlUwTW5lZTVDem1FYmRpMWU2bkFNZmxKWEUiLCJtYWMiOiI1OGQ5ZTg2OGIwYjM2NjI5Y2JmNzk2YTc0OGJiNzU4YjI1ZmI0OTI1MDliZGMxYTU4OGEzMjViM2RlYWE1ODA3IiwidGFnIjoiIn0%3D; expires=Tue, 29 Jun 2027 00:41:21 GMT; Max-Age=31536000; path=/; secure; samesite=lax\nhelpry-session=eyJpdiI6ImJENzhMb3B5WVE1U2w4TDNjRkIzWWc9PSIsInZhbHVlIjoiUDcwbkxBVjllZlY1RWhiNzJESU1PRDYwdEJ6RXJKdHRDa2M0N2FvSE90RGtDZzJzeDBibWVIdXJoUEJRaVRzZDZNd1pSNW9GcHE4Qm01azV2ZzdCcVBOMEJ1dG5HNG1scDFzN2tHUCtaQzhETzJRWnVGSTQ0czF5ODVJRVlERS8iLCJtYWMiOiJjYWFhMzdhZWE3MjUyOWE3NDA2OTliMjBiMDljZjdmMDAwYzAxZjU2YmU2MjViZTRlOTU4Yzk0ZjRjZTVlNzQ5IiwidGFnIjoiIn0%3D; expires=Tue, 29 Jun 2027 00:41:21 GMT; Max-Age=31536000; path=/; secure; httponly; samesite=lax\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]}],"data":{"size":67365,"size_decoded":14036,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (593)","md5":"cb77c1ffe68299c8f42d3ffcb5e99a1d","sha1":"8628f665fe8d8c1b702f43b3e5517981ead3a4a7","sha256":"afd79b9b6c9cef205a3e1f9a5bd4efbb2481fe3d0a177ffb24d827e24e7b0b0a","sha512":"232db821ac34f146e9a9aefdc089640f6138f74b4ae5546234b9fb6e0aabd73e0937a76a60e8caa50c7db7990a7d40cae399a8ef13ae02b8793106601307292b","ssdeep":"768:nGcJ9ntbnt+VDp3b5PslLzocDbJTSB1Dy/Ws+8pcaz:DJ9ntbntEDp3dE5scDbJgFy/Ws+8pcaz","tlshash":"c563c76925f2043e40d34276b3db77257a31d103d50ba62cba5c42e27fcad8a8e677e4","first_seen":"2026-06-29T00:41:46.656334Z","last_seen":"2026-06-29T00:41:46.656334Z","times_seen":1,"resource_available":true,"data":null}},"time_used":925,"timings":{"blocked":-1,"dns":227,"connect":122,"send":0,"wait":199,"receive":0,"ssl":377},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"helpry.jp","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"helpry.jp","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.171Z","timestamp":1782693682171,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 May 2026 14:31:45 GMT","end":"Mon, 17 Aug 2026 15:31:39 GMT"},"fingerprint":{"sha1":"B6:67:6F:5A:BE:B9:2A:B2:16:10:49:96:1E:1F:99:2B:44:AF:EA:A6","sha256":"63:A9:BF:FB:46:E0:B8:37:95:77:F3:63:84:AE:78:22:46:11:85:5E:DF:87:F6:4B:EF:F2:2E:24:D5:74:70:39"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\ncache-control: max-age=14400\r\nlocation: /3.4.17\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::8qkf6-1782693645185-a1218d361a50\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 36\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y98OvFyE3UTcyb18ywXuO70GESk6Paih7JERAYuRwUvJ9rsiob6yqQYWiX776B8lgrGXmUAObZJ2AUGkF8GXIeoRn9wBFfYEqh%2F1jZeivHnOxNUNlAbrNysB4vnxKSnGBY6gsqU%3D\"}]}\r\ncf-ray: a130e299f84456c0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T09:32:19.254636Z","times_seen":16821477,"resource_available":true,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":42,"connect":1,"send":0,"wait":56,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"helpry.jp/storage/app/public/platforms/paypal.png","fqdn":"helpry.jp","domain":"helpry.jp","tld":"jp"},"ip":{"addr":"102.68.84.58","port":443,"asn":327813,"as":"Web4Africa","country":"Nigeria","country_code":"NG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.184Z","timestamp":1782693682184,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"helpry.jp","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 May 2026 15:35:58 GMT","end":"Fri, 31 Jul 2026 15:35:57 GMT"},"fingerprint":{"sha1":"3A:30:61:77:08:A2:82:9F:92:AF:68:9B:8D:5D:4B:F1:3C:29:DE:38","sha256":"DD:F4:2C:EE:2A:F4:97:31:EF:D1:15:9D:5F:78:30:06:73:24:CF:21:79:BB:CB:3C:C8:07:23:19:C0:6C:61:A4"}}},"request":{"raw":"GET /storage/app/public/platforms/paypal.png HTTP/1.1\r\nHost: helpry.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps\r\nCookie: XSRF-TOKEN=eyJpdiI6ImZqWXkwUkV4YVh3a3BORFRZcjBpeWc9PSIsInZhbHVlIjoiZ0lWRVdVWEYyeUpTdkc1M2xuaDdDR0ptSUxtSmxmU3g2OVJpRjdpd2dsTVRvSXdVR2VQL1lHbGU2MEVQaURhbkFwa0NGbXdvUUJhdHh0cGVQcEJ0UG9SdFFLUXI2cjczaEU5UTg5ZlUwTW5lZTVDem1FYmRpMWU2bkFNZmxKWEUiLCJtYWMiOiI1OGQ5ZTg2OGIwYjM2NjI5Y2JmNzk2YTc0OGJiNzU4YjI1ZmI0OTI1MDliZGMxYTU4OGEzMjViM2RlYWE1ODA3IiwidGFnIjoiIn0%3D; helpry-session=eyJpdiI6ImJENzhMb3B5WVE1U2w4TDNjRkIzWWc9PSIsInZhbHVlIjoiUDcwbkxBVjllZlY1RWhiNzJESU1PRDYwdEJ6RXJKdHRDa2M0N2FvSE90RGtDZzJzeDBibWVIdXJoUEJRaVRzZDZNd1pSNW9GcHE4Qm01azV2ZzdCcVBOMEJ1dG5HNG1scDFzN2tHUCtaQzhETzJRWnVGSTQ0czF5ODVJRVlERS8iLCJtYWMiOiJjYWFhMzdhZWE3MjUyOWE3NDA2OTliMjBiMDljZjdmMDAwYzAxZjU2YmU2MjViZTRlOTU4Yzk0ZjRjZTVlNzQ5IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx-rc\r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\ncontent-type: image/png\r\ncontent-length: 2812\r\nlast-modified: Sun, 14 Dec 2025 00:18:38 GMT\r\netag: \"693e025e-afc\"\r\nexpires: Wed, 29 Jul 2026 00:41:22 GMT\r\ncache-control: max-age=2592000\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2812,"size_decoded":3206,"mime_type":"image/png","magic":"PNG image data, 204 x 192, 8-bit colormap, non-interlaced","md5":"5b7503208ba2300f8e954aacde5db6fb","sha1":"29f87090c717e9e1d82df65d6bbb7ff772d90e1a","sha256":"e918f52ca8d63135042661f653dd520203b78722f7b4d422e67b8ffe1e86af7c","sha512":"82a41881c8f22a459fa642f03d76ce1e6d4b7fb57a6a2b1329f35fe8a06af92ec1bd568cdb7851684fd9b8d01f7c1bd987cae4f0ab2ef6f49dee06abfcdb9d1e","ssdeep":"","tlshash":"43515cdb92fc7d7cd3153f7671a25b112e212eb1e2a0127290d323144518dd9a7ef253","first_seen":"2025-07-21T06:06:23.99969Z","last_seen":"2026-06-29T06:19:12.922093Z","times_seen":9,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":130,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"helpry.jp","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-29","alert":"Sinkholed","trigger":"helpry.jp","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.paypalobjects.com/webstatic/icon/pp258.png","fqdn":"www.paypalobjects.com","domain":"paypalobjects.com","tld":"com"},"ip":{"addr":"151.101.3.1","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.741Z","timestamp":1782693682741,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.paypalobjects.com","organization":""},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 23 Mar 2026 00:00:00 GMT","end":"Wed, 07 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C5:00:18:97:B9:56:2D:A2:02:A9:4D:5F:A6:BD:CF:EE:71:7F:9C:70","sha256":"64:BB:91:23:34:C5:83:1C:FA:85:2C:6D:1A:14:E6:E1:AB:9D:84:06:AE:2E:45:D4:68:B7:F4:BD:6B:F2:50:A2"}}},"request":{"raw":"GET /webstatic/icon/pp258.png HTTP/1.1\r\nHost: www.paypalobjects.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-length: 11273\r\ncache-control: s-maxage=31536000, public,max-age=3600\r\ncontent-type: image/png\r\ndc: ccg11-origin-www-1.paypal.com\r\netag: \"Zkg+qNY1GsGkdzMyP2L977+exy9aNUfrpDcBWHZv87M\"\r\nfastly-io-info: ifsz=11273 idim=259x259 ifmt=png ofsz=11273 odim=259x259 ofmt=png\r\nfastly-io-served-by: vpop-haf2300703\r\nfastly-io-warning: Failed to shrink image\r\nfastly-stats: io=1\r\npaypal-debug-id: a283879a47c69\r\ntiming-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com\r\ntraceparent: 00-0000000000000000000a283879a47c69-93d5026812d57b11-01\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Mon, 29 Jun 2026 00:41:22 GMT\r\nx-served-by: cache-sjc10061-SJC, cache-sjc10061-SJC, cache-bma-essb1270027-BMA\r\nx-cache: MISS, HIT, HIT\r\nx-cache-hits: 0, 951, 0\r\nx-timer: S1782693683.746063,VS0,VE1\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\nstrict-transport-security: max-age=31557600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11273,"size_decoded":12243,"mime_type":"image/png","magic":"PNG image data, 259 x 259, 8-bit/color RGBA, non-interlaced","md5":"e7cbcaa14ba5db0160c268042e02db3c","sha1":"6bac98f15adfab6401322b17b026d3371e5a77a5","sha256":"6d8050cc8b33b9fdca434c4a66bde15cb8540db2a4bc29f7bb9ede78753477df","sha512":"7c5774dc5667f974f48e939fca2ed29c769f55365215366088198ac34dd14839bd7ca6e78131f45aab304938e6d48a5693851e1c47b31cd887f0d70d1b31b6a9","ssdeep":"192:j+iJg+p7Ob4DI5KQBsOo2oQeVPoDDoh6kHwxzNAHhpwbdPB0hxW59kwRmlgbvAAM:j7B45KQBI2OgP/4NQO5","tlshash":"1032d00f3edf2551f42f6833e8589a4ccf52498db05607063ce1e1063f707094a566bd","first_seen":"2023-05-03T02:08:56Z","last_seen":"2026-06-29T06:19:12.925441Z","times_seen":443,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.pusher.com/8.2.0/pusher.min.js","fqdn":"js.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"143.204.246.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://helpry.jp/jvvr-paypal-bswuzt-helpry-dqxo-paypal-spnrps","date":"2026-06-29T00:41:22.174Z","timestamp":1782693682174,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.pusher.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Sun, 11 Jan 2026 00:00:00 GMT","end":"Mon, 08 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"4D:E2:04:99:F3:D9:DD:BE:BF:DC:78:21:97:93:68:C1:49:69:FE:48","sha256":"B1:10:C0:59:51:08:19:D4:32:05:E8:17:DD:96:06:B4:C4:D3:3E:6C:3F:AB:E0:90:53:F4:A1:19:E8:0E:63:62"}}},"request":{"raw":"GET /8.2.0/pusher.min.js HTTP/1.1\r\nHost: js.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://helpry.jp/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/javascript\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, HEAD\r\nlast-modified: Mon, 19 Jun 2023 12:13:29 GMT\r\ncontent-encoding: gzip\r\nx-amz-server-side-encryption: AES256\r\nserver: AmazonS3\r\ndate: Sun, 28 Jun 2026 20:19:44 GMT\r\ncache-control: max-age=2592000\r\netag: W/\"3ab73af824d600a8f04d9e36bf295717\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 75ca44c1d9888b70e26e6bfd4619d048.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P4\r\nx-amz-cf-id: qyMDFuD2I-MqBcYczBpsfeANU3Gc37-o1K1EuLlAdyNW3tv6w6zTZw==\r\nage: 15699\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":61809,"size_decoded":19104,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (61639)","md5":"3ab73af824d600a8f04d9e36bf295717","sha1":"fff60386ed303beaef7971a5ef1ab9240247bac5","sha256":"f9db3ff67d32874f9141c893b8e48159219863074df0bacd551f7747be849163","sha512":"165f722cf6856bbe8afcf0d34ee84ba43b7bf9558fe07c5914ce996c9e1209f01b976f5f98d547582b5e950a2bd57c26d05557f840cc106ef7375bfaf3838b90","ssdeep":"1536:dl+mM6s86ZphXoUK5wdkVB1R1DlqYuoD72MvMxl:dzwXiwdkVB1R1DlqYuAv8","tlshash":"b15308c4b591b05247eb7162586b4003e33929a4650bc0bcbf78eddaec786c9b13bb75","first_seen":"2023-10-18T08:40:07Z","last_seen":"2026-06-29T06:19:12.927898Z","times_seen":218,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":-1,"dns":114,"connect":8,"send":0,"wait":10,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}