Report - jnrvapejapan.com

Report Overview

Submitted URL
jnrvapejapan.com
IP
196.242.72.24
ASN
#48950 Global Colocation Limited
Submitted
2024-05-10 13:09:35
Access
public
Website Title
JNR Vape Japan & 高品質国鉄 JNR vape nicotine
Final URL
www.jnrvapejapan.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
68

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-10	1.6 kB	26 kB	216.58.207.227
jnrvapejapan.com	unknown	unknown	No data	No data	471 B	446 B	196.242.72.24
www.jnrvapejapan.com	unknown	unknown	No data	No data	17 kB	3.9 MB	196.242.72.24
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	6.6 kB	108 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed
2024-05-10	medium	jnrvapejapan.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_extend.js	641 B	2023-07-04	2024-05-19
Pretty URL www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_extend.js IP 196.242.72.24 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-04 01:52:25 Last Seen2024-05-19 09:46:27 Times Seen104 Hash 3bb18f39e30a3049535f9b3fc6fdf9af 8a392a36689b7e763f71899673e2a58855ecb673 d23dc0c134e6b6c3e504f45e55a3bd6931051c3716e13bedb0490e0ba4a94d63 Loading...

	unknown	37 B	2023-05-10	2024-05-19
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-10 05:59:15 Last Seen2024-05-19 09:46:27 Times Seen167 Hash 2ae35f23e69e0ebd06359dfbe0c5ce31 956b0ffc3c2eb6d3eeb8186f1d28a53d75d70506 8aade99f8e2e9831797b6836d32508679ccc13b2f63af0ca0015137690516e73 Loading...

	www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jquery.min.js	90 kB	2023-03-07	2024-05-20
Pretty URL www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-20 19:29:09 Times Seen275499 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_cookies.js	745 B	2023-03-07	2024-05-19
Pretty URL www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_cookies.js IP 196.242.72.24 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:35 Last Seen2024-05-19 09:46:27 Times Seen801 Hash 65807f4bee7bcb4f6af769919ee805d3 c75e394f474f9238cb539f8b7ef9708cc083eff2 6979054ef7300efc7abcaefb0168e095f82adc208a00837ae1a95e0f72e2b598 Loading...

	www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_zmain.js	54 kB	2024-05-10	2024-05-10
Pretty URL www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_zmain.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 15:09:42 Last Seen2024-05-10 15:09:42 Times Seen1 Hash 1668fda5af9bc7bf5cf14a52169e4bd5 ba7b3b2aac49ac345ed938e612b15e3cbccd4c7a cc24117800e42b2710632583ee59376d62eba05f404d7055917b832495b4a090 Loading...

	www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_plugins.js	273 kB	2023-03-08	2024-05-19
Pretty URL www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_plugins.js IP 196.242.72.24 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:00:23 Last Seen2024-05-19 09:46:27 Times Seen412 Hash 61bced23c3ca3a6b3623097507a8e2e4 fa6e156543aee6ad5fd3f14799140842880142aa 1736d465416b468d9836583f60c9a3165138120678649560a81f6365378a2743 Loading...

	www.jnrvapejapan.com/	158 B	2023-03-07	2024-05-19
Pretty URL www.jnrvapejapan.com/ IP 196.242.72.24 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:18:35 Last Seen2024-05-19 09:46:27 Times Seen439 Hash f898517faa32a1d50013fd8b9ab2aaa7 eaeadc084111ee29bc6e1c05e35cfb8a237cbf5f 828a54afa9f3f8d83b680f98ab03887c8fb7999d5eece48e4c7cb3a4842a03d9 Loading...

HTTP Transactions (51)

URL IP Response Size

jnrvapejapan.com/

196.242.72.24

237 B

URL
jnrvapejapan.com/
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

File type
HTML document, ASCII text
Size
237 B (237 bytes)
Hash
d2b8cc050b1a5baeda07ac9e6ac92bd0
4425939e6d52c7f4ebd59e8aba94ac22b7030ba0
79f74ec4c3d452a35062dc5c2377bc808a74334ba480e7c8a9265e9974faf82e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 10 May 2024 13:02:29 GMT
content-type: text/html; charset=iso-8859-1
content-length: 237
location: https://www.jnrvapejapan.com/
X-Firefox-Spdy: h2

www.jnrvapejapan.com/

196.242.72.24

200 OK

8.5 kB

URL User Request GET HTTP/2
www.jnrvapejapan.com/
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2384), with CRLF, LF line terminators
Size
8.5 kB (8538 bytes)
Hash
80d9e0eb458afa3582a1a5c62b69652e
4450a5868452b888146c049d6dd9cc86db444b69
bcdd67cd5156abdaf408737a23b3c049d685b8fd13cd1987ffc0caacda1d7ae8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: text/html; charset=utf-8
content-length: 8538
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
set-cookie: zenid=emhq5aui5gq2pid408jgo6fd2f; path=/; domain=.www.jnrvapejapan.com; secure; HttpOnly; SameSite=lax
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images/loader.gif

196.242.72.24

200 OK

35 kB

URL GET HTTP/2
www.jnrvapejapan.com/images/loader.gif
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
GIF image data, version 89a, 128 x 38
Size
35 kB (35011 bytes)
Hash
362e988184d842aea3a0b5d09a64d13e
e4ab705fb063ffd2645ce8a25e59e889e98f211c
82656f23517068a7b3d92badc8c29716e53654cd2574d330b08823ca7f7b8fa4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/loader.gif HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/gif
content-length: 35011
last-modified: Thu, 09 Jun 2022 11:23:04 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62a1d818-88c3"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/logo.png

196.242.72.24

28 kB

URL
www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/logo.png
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
PNG image data, 196 x 112, 8-bit/color RGBA, non-interlaced
Size
28 kB (27745 bytes)
Hash
454e38ac327410dd212cfc5a8686bd4c
b80a5eb0055d24cd60429f54ab45eb7dd132c928
15328268eb78f87e36af46fdac1623d0a2d91578933977865f3f15e68eee01c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/images/logo.png HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/png
content-length: 27745
last-modified: Thu, 18 Apr 2024 19:56:16 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sun, 09 Jun 2024 13:02:30 GMT
etag: "66217ae0-6c61"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_cookies.js

196.242.72.24

200 OK

430 B

URL GET HTTP/2
www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_cookies.js
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JavaScript source, ASCII text, with very long lines (745), with no line terminators
Size
430 B (430 bytes)
Hash
65807f4bee7bcb4f6af769919ee805d3
c75e394f474f9238cb539f8b7ef9708cc083eff2
6979054ef7300efc7abcaefb0168e095f82adc208a00837ae1a95e0f72e2b598

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/jscript/jscript_cookies.js HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: application/javascript
content-length: 430
x-accel-version: 0.01
last-modified: Mon, 22 Apr 2024 22:18:38 GMT
accept-ranges: bytes
cache-control: max-age=300
expires: Fri, 10 May 2024 13:07:30 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_extend.js

196.242.72.24

200 OK

311 B

URL GET HTTP/2
www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_extend.js
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
311 B (311 bytes)
Hash
3bb18f39e30a3049535f9b3fc6fdf9af
8a392a36689b7e763f71899673e2a58855ecb673
d23dc0c134e6b6c3e504f45e55a3bd6931051c3716e13bedb0490e0ba4a94d63

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/jscript/jscript_extend.js HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: application/javascript
content-length: 311
x-accel-version: 0.01
last-modified: Mon, 22 Apr 2024 22:18:38 GMT
accept-ranges: bytes
cache-control: max-age=300
expires: Fri, 10 May 2024 13:07:30 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Japan_820R304.jpg

196.242.72.24

200 OK

58 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Japan_820R304.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
58 kB (57843 bytes)
Hash
1e8a2d7445dea85e453ad907f199ab1f
bdec82f68e18e344a74473c979dff3e1a17a9b04
14baa2e468e895e731bcd8a04580b557ec829eaac19a135809474242053b4aef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Japan_820R304.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 57843
last-modified: Fri, 19 Apr 2024 09:52:46 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223eee-e1f3"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Nicotine_Content_820R299.jpg

196.242.72.24

64 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Nicotine_Content_820R299.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
64 kB (64086 bytes)
Hash
bb1340c9f77d98e9a6be32b02df5d227
d6c8bdee554434fc99a21d16cd86a7d498b31985
6deacd320a7471c2b4d8bcaf5581f4f4fb1413013322d6cd8db1b02505d5634f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Nicotine_Content_820R299.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 64086
last-modified: Fri, 19 Apr 2024 09:52:37 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ee5-fa56"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Shop_820R307.jpg

196.242.72.24

65 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Shop_820R307.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
65 kB (65202 bytes)
Hash
ff305e8c347e6f01d637fb5c03f364a4
091f30c93e48af4c0dbb6442b47b47c8216f4c37
3297e327b3986ea84cc51d11c37209962a906ce5cb873898f1215e5d51c3b798

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Shop_820R307.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 65202
last-modified: Fri, 19 Apr 2024 09:52:52 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ef4-feb2"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images/payment.png

196.242.72.24

6.2 kB

URL
www.jnrvapejapan.com/images/payment.png
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
PNG image data, 248 x 26, 8-bit/color RGBA, non-interlaced
Size
6.2 kB (6248 bytes)
Hash
1fb5f66cada185d72ccefaeb9e9a2963
584108601272e3ed07abe10b4c3ca2f6b200d552
ef645db0e0a9a267fda954e584782b888929b2827548ecaef07600656022535b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/payment.png HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/png
content-length: 6248
last-modified: Thu, 09 Jun 2022 11:19:36 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62a1d748-1868"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_820R84.jpg

196.242.72.24

200 OK

72 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_820R84.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
72 kB (72307 bytes)
Hash
0c34d752d4bfef60023ffa12ca8770c0
cb4d81062965fce75351e35cc7b79b7ab18045ec
dc7e02014d4c25f17d37bbe68f08a83b250b45693b3616387d808388113fe296

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_820R84.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 72307
last-modified: Fri, 19 Apr 2024 09:44:46 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d0e-11a73"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Shop_820R91.jpg

196.242.72.24

200 OK

99 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Shop_820R91.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
99 kB (99314 bytes)
Hash
0dbfe0966cdbb97fa089a1993da4cfc9
2fbd9eae01bb7594db385cd6c0f4231adb00a29b
aab804b57107b0f63fe2bf8150b9526829c6ab4799fafb488582151e92f1aa69

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Shop_820R91.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 99314
last-modified: Fri, 19 Apr 2024 09:44:59 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d1b-183f2"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Tokyo_419_820R86.jpg

196.242.72.24

200 OK

96 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Tokyo_419_820R86.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
96 kB (96503 bytes)
Hash
e3979a966461df3dcb088ef3edc01cbb
4e7948d6dfe1ed3e04ad4c8eaae9681b82d77e95
a3f98cd1d14bbbff2d70c7766e7b4a56ec8c754c3498cb2ebf14083d60664a30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Tokyo_419_820R86.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 96503
last-modified: Fri, 19 Apr 2024 09:44:49 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d11-178f7"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Tokyo_820R87.jpg

196.242.72.24

82 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Tokyo_820R87.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
82 kB (82190 bytes)
Hash
96c3964e25e25acf61b3a6346191ee1f
751ac704a54612d8ed9beeebf35c021d051e7733
7a0e8d3c3b21b1d01da32fdc2141501731068f22628084dbca9a8138dcc34d28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Tokyo_820R87.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 82190
last-modified: Fri, 19 Apr 2024 09:44:51 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d13-1410e"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vapes_Factory_820R90.jpg

196.242.72.24

200 OK

86 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vapes_Factory_820R90.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
86 kB (85519 bytes)
Hash
28a5dd6cedc50d1adb47fb0d61b8e7ae
5353bb92b52504289b754f2f2dba817cef73e141
d1ca69b98d04ff4a2f6f4c262bac2373634a3d061a4fdb9e27b8572d30536c1c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vapes_Factory_820R90.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 85519
last-modified: Fri, 19 Apr 2024 09:44:57 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d19-14e0f"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Review_820R89.jpg

196.242.72.24

200 OK

70 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Review_820R89.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
70 kB (69599 bytes)
Hash
adaeef0c0d2806a8a01bc602a37a5f6c
8e19aa80c51c96ae0a2b420d8e731d444e3df9e5
c5e14ef28e791b900dfe4d926339e719f6b1e5e0492b0263cf21ba22a35fda6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Review_820R89.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 69599
last-modified: Fri, 19 Apr 2024 09:44:55 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d17-10fdf"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Price_820R85.jpg

196.242.72.24

74 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Price_820R85.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
74 kB (73623 bytes)
Hash
8ecc6d1b4134cc43562e922034b883f5
091c8bf5f302e1f56c08eb89c443baa92d148464
42f1bab92da545e7f82f07b4ebe8d6f0b6c5a18e3a2c7cffa6e7985c316f6f1c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Price_820R85.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 73623
last-modified: Fri, 19 Apr 2024 09:44:47 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d0f-11f97"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Nicotine_Content_820R83.jpg

196.242.72.24

84 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Nicotine_Content_820R83.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
84 kB (83879 bytes)
Hash
2d8c5c2f276bd36c94aee29540948db2
714bd9eca71ed2513bec9664c6b611358849e06c
63aa922eed86f8bf8e80a8ddcb74124a073699bdbfc4200d8d4c0f46414d31d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Nicotine_Content_820R83.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 83879
last-modified: Fri, 19 Apr 2024 09:44:43 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d0b-147a7"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Japan_820R88.jpg

196.242.72.24

70 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Japan_820R88.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
70 kB (69897 bytes)
Hash
c58b4684b3bda8dad1ee354f2911a872
5b104511b3f5a7a70b66d6e773237d252e1e7cf6
4c94eefe5b0aa852a0353cc9a7b95fe1de2c3d18c91320c24c15514d6de0b73f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Japan_820R88.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 69897
last-modified: Fri, 19 Apr 2024 09:44:53 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223d15-11109"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/jnrvapor4/banner4d.jpg

196.242.72.24

200 OK

114 kB

URL GET HTTP/2
www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/jnrvapor4/banner4d.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x900, components 3
Size
114 kB (114337 bytes)
Hash
4b121873081ee7c1d4fae0f39cd0cda2
ff712157e78520145c2602030c2fbe913c1f54eb
0677b5e2a2cfa782beab7e3785414d8819cdbb29007990a254e7113d2acc38eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/images/jnrvapor4/banner4d.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 114337
last-modified: Fri, 19 Apr 2024 01:18:38 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sun, 09 Jun 2024 13:02:30 GMT
etag: "6621c66e-1bea1"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vapes_Website_820R296.jpg

196.242.72.24

67 kB

URL
www.jnrvapejapan.com/images///JNR_Vapes_Website_820R296.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
67 kB (66765 bytes)
Hash
eeb4c1535a1d9b60d51befdb29cc93f7
e2f18b29b5c28ce2a9436a6a3d6f3a15ff388f8d
b13cad4bf16f1d71eae338adea1f3b608c6f7c3e006b8d763d9094a445a04b19

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vapes_Website_820R296.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 66765
last-modified: Fri, 19 Apr 2024 09:52:32 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ee0-104cd"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Review_820R305.jpg

196.242.72.24

200 OK

67 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Review_820R305.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
67 kB (66857 bytes)
Hash
c92fe291c41064d661e85dbe0e208554
254b7794eb6d92f96d2bed40bd94fd17a0b1a999
cea8af0188cda909ef2bc39598ffbe5c7addea117d2de3fcc14fe49d187314c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Review_820R305.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 66857
last-modified: Fri, 19 Apr 2024 09:52:48 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ef0-10529"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_820R300.jpg

196.242.72.24

69 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_820R300.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
69 kB (68686 bytes)
Hash
32fd4c51387c796b736fa1e9368fabbd
c2e5ccd89ac04fe55381d0411ab7789871ccfb4d
f015e261c80b1af575b7ddc5cb2d4d3931c49655bd0182ba80e79ce3ade457fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_820R300.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 68686
last-modified: Fri, 19 Apr 2024 09:52:39 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ee7-10c4e"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Tokyo_820R302.jpg

196.242.72.24

200 OK

68 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Tokyo_820R302.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
68 kB (67768 bytes)
Hash
380bb3f239ebd71b933344d1e7464987
8a0b99d65ec993fefbed7adb78ea6a7f53ee9d39
f97a3d9450c1d800a92656c3597e0951985185cf6bf7cbcf0ff8ea46066aa4ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Tokyo_820R302.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 67768
last-modified: Fri, 19 Apr 2024 09:52:43 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223eeb-108b8"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Flavours_820R297.jpg

196.242.72.24

66 kB

URL
www.jnrvapejapan.com/images///JNR_Vape_Flavours_820R297.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
66 kB (65705 bytes)
Hash
eb35a3edd5a168e3abeac804705d7d63
41a9a8d751807318d2daa28b66ceff0a3b590956
a32d97af099d9b7c2191418a152ff60e312192e98586f65e4587a37a9b2981c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Flavours_820R297.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 65705
last-modified: Fri, 19 Apr 2024 09:52:34 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ee2-100a9"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Price_820R301.jpg

196.242.72.24

200 OK

75 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Price_820R301.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
75 kB (74621 bytes)
Hash
8c24e0cb7c64de59e1811769f45d2c4e
ddab61bad8600d6d0ffc6f8805b4721225723bfb
d06a220572b87c0464a4305df47fa50befa88d610995f24a9572edc7947d7cf2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Price_820R301.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 74621
last-modified: Fri, 19 Apr 2024 09:52:41 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ee9-1237d"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Pods_820R298.jpg

196.242.72.24

200 OK

70 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Pods_820R298.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
70 kB (69662 bytes)
Hash
263c9e85ef201e24b2afa0f6456f538e
ab023cb91c2166e1836f3e7b9ab3505781feeee7
3dc877d202ebd9c3f980ec481332d8ea9d1d35e2fe37bafcfca39035ee9bffc0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Pods_820R298.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 69662
last-modified: Fri, 19 Apr 2024 09:52:36 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ee4-1101e"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vape_Tokyo_820R303.jpg

196.242.72.24

200 OK

69 kB

URL GET HTTP/2
www.jnrvapejapan.com/images///JNR_Vape_Tokyo_820R303.jpg
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
69 kB (69221 bytes)
Hash
0120b21bd62648921f043894a9c1df23
46af1eb543954c022fbc0864ed4491a3e2f1b144
5768d0fa908cb9101a748a7de9bfe723f2bc2b59653921036d863bf7ddc82c6b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vape_Tokyo_820R303.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 69221
last-modified: Fri, 19 Apr 2024 09:52:44 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223eec-10e65"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/images///JNR_Vapes_Factory_820R306.jpg

196.242.72.24

70 kB

URL
www.jnrvapejapan.com/images///JNR_Vapes_Factory_820R306.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 727x727, components 3
Size
70 kB (69772 bytes)
Hash
54739c44375811c4bca7a9125cee3e12
b158065516e59424f8fb6abc6cb9f2763f695292
d8a8c39dd1e5d7079961605a0ed2cfa0f6493820e2ce9ab8363ae102539993de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images///JNR_Vapes_Factory_820R306.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 69772
last-modified: Fri, 19 Apr 2024 09:52:50 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223ef2-1108c"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/jnrvapor4/banner3d.jpg

196.242.72.24

281 kB

URL
www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/jnrvapor4/banner3d.jpg
IP
196.242.72.24:0
ASN
#48950 Global Colocation Limited

Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1008, components 3
Size
281 kB (281116 bytes)
Hash
de95436da2998f7e914931243585719f
b7be81c2f4329b21c00417db0309b8fe89544b6e
dc1e19e9bf7f643ac5980e684a78c5b0f674c39ee76683ab85c66ec6e0a003aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/images/jnrvapor4/banner3d.jpg HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: image/jpeg
content-length: 281116
last-modified: Thu, 18 Apr 2024 21:42:46 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sun, 09 Jun 2024 13:02:30 GMT
etag: "662193d6-44a1c"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/fonts/annimex-icons.ttf?teavmy

196.242.72.24

200 OK

141 kB

URL GET HTTP/2
www.jnrvapejapan.com/includes/templates/jnrvapejapan/fonts/annimex-icons.ttf?teavmy
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, adorn-icons
Size
141 kB (140608 bytes)
Hash
7d3c0284348a1f07b4cd6ff41354551b
6ff4eb286a7b3c980866382a40dd9279c99cb9cd
924025d175bc0292a137b2b46a4ee48e77c8618c3ea19e44214b6abf30f16005

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/fonts/annimex-icons.ttf?teavmy HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/includes/templates/jnrvapejapan/css/style_plugins.css
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:31 GMT
content-type: application/x-font-ttf
content-length: 140608
last-modified: Wed, 08 Jun 2022 08:11:08 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Fri, 10 May 2024 13:07:31 GMT
etag: "62a0599c-22540"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap

142.250.74.106

200 OK

5.5 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
5.5 kB (5473 bytes)
Hash
8e47f9ce19237592d6ac5956b7dcc8a6
f75171b55a5b20976fc84bfa51e7d59204740c0b
2d95a41027cc7f4c1c44e0a573e91bac3ad7abff44effb71cfff7587db8be4fe

HTTP Headers

GET /css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.106

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
12 kB (11516 bytes)
Hash
8388cbdf6e12c2bfec671e2cbf79550b
f8d423a56deef3dd683e3042989d5c35000913a6
927fea4dad03608870ddcf4a58b382f2a98c622ca014a1e9c6589ee9656db7e0

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.227

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.jnrvapejapan.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 15:13:04 GMT
expires: Fri, 09 May 2025 15:13:04 GMT
cache-control: public, max-age=31536000
age: 78966
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.jnrvapejapan.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 03:25:26 GMT
expires: Wed, 07 May 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 294224
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

7.9 kB

URL
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.jnrvapejapan.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 19:57:12 GMT
expires: Fri, 09 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
age: 61918
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700;800&display=swap

142.250.74.106

200 OK

949 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
949 B (949 bytes)
Hash
ed1446427b3e11941dcffaa0784a8b92
43a2d1bb0f2f021ced249b0272a7ac1483df04f8
cf052d5124488cba02b80127f871a57bb3a7321b3fbf2862bfe705e6d37ef48d

HTTP Headers

GET /css2?family=Jost:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/favicon.ico

196.242.72.24

200 OK

4.3 kB

URL GET HTTP/2
www.jnrvapejapan.com/includes/templates/jnrvapejapan/images/favicon.ico
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
eadcf92d46553057dbc021da77049657
ea4b1865c46255610f426c2b8f23331259136268
6af0119970309eb2a35c67f7eecd3f7d9de4cb7d88164a9d6007df3465238c08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/images/favicon.ico HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:32 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Thu, 18 Apr 2024 19:58:58 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sat, 11 May 2024 13:02:32 GMT
etag: "66217b82-10be"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Quicksand:wght@400;500;600;700&display=swap

142.250.74.106

200 OK

3.6 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Quicksand:wght@400;500;600;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
3.6 kB (3589 bytes)
Hash
3b8d0cb35c4b6c00e3553ca4b709b964
5116262eeff828c2deeaa22b97a7a4aea330a806
038c56d9b75b77ea1afcb98f49ee1e56c44752af28f8113b42f4ccf3933527ae

HTTP Headers

GET /css2?family=Quicksand:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/bcfae741e379a885f2ab2cf83ebe6d32/mr
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.jnrvapejapan.com/video/jnrvapor-video1d.mp4

196.242.72.24

206 Partial Content

1.5 MB

URL GET HTTP/2
www.jnrvapejapan.com/video/jnrvapor-video1d.mp4
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
1.5 MB (1476773 bytes)
Hash
206610bdf87b36d69dcd40cbac729d26
4d1539389447d0b4716b06082b08316371c80787
6a011b38fea037f94813da243f36610efeba2cc931195ac76ab4c86066175163

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /video/jnrvapor-video1d.mp4 HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: video/mp4
content-length: 30284864
last-modified: Thu, 18 Apr 2024 22:35:14 GMT
etag: "6621a022-1ce1c40"
content-range: bytes 0-30284863/30284864
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Glegoo:wght@400;700&display=swap

142.250.74.106

200 OK

2.3 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Glegoo:wght@400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (2310), with no line terminators
Size
2.3 kB (2256 bytes)
Hash
5cf712cf2b0969e17db3030c359175fe
a6bd8bc94377508e45d8b0708c67057efd7ec40d
2590d0359a53a2ba40a5f4074121465e36893f365cf2a67f7c803249cbad479e

HTTP Headers

GET /css2?family=Glegoo:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap

142.250.74.106

200 OK

14 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
14 kB (14029 bytes)
Hash
9c12b57a25710853b762d48b28545b5c
57a79d40792f42232b317bd9529c98efa29fc315
35ae53cd6f0cde71e622f6e54dc576bb82ffab56c9e41b1298f932eebf963eb9

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap

142.250.74.106

200 OK

9.3 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (9530), with no line terminators
Size
9.3 kB (9314 bytes)
Hash
c5939125786ce6b5ed8c4f0a2bedcf52
528777daa60c7b5d52e78018151ba873c94d640e
819fb2fbdc024c04b03c88da5d5c7e0bdb4616630d72ab65491cbaab120f46ec

HTTP Headers

GET /css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
11 kB (11178 bytes)
Hash
eb9023562ab1966f30dc99199c862e99
c61e56985a7df5262657c080393142f4f3e674b0
23daa07b4cbfa8e9a4a4aa17f77ebab31297e8dcd5f1c082dc21f284ab5dd03a

HTTP Headers

GET /css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Alata&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Alata&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1179), with no line terminators
Size
1.2 kB (1152 bytes)
Hash
1f9ff1758f44a8354f9be6ccf531cb8a
7fd5c0f675262d59736c063d0569dd7fab71256f
37dfb66736045e51980abc5c9c002b3a658a8fadc626f4a0aacf957fe90b6809

HTTP Headers

GET /css2?family=Alata&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap

142.250.74.106

200 OK

16 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
16 kB (15598 bytes)
Hash
56e4df90a29f863f6faa6ccb7567e401
9f3f0306cb0054763e377c6f456890e33f546cd9
165c919c26eb19e053a7cf522566f7cfa686a2782e252b7cd39e15e5d8b4bf15

HTTP Headers

GET /css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap

142.250.74.106

200 OK

9.5 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (9708), with no line terminators
Size
9.5 kB (9492 bytes)
Hash
cbb724e5f0c70cc680b0a3cf208a602e
7bb23f4e0d2a2306ce2a8c44b5c29778235d4580
533e25ed8b776dfe43e6cfb857fa5feee61b4e554dead3ec80cbaf2afa928d21

HTTP Headers

GET /css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_plugins.js

196.242.72.24

200 OK

273 kB

URL GET HTTP/2
www.jnrvapejapan.com/includes/templates/jnrvapejapan/jscript/jscript_plugins.js
IP
196.242.72.24:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerLet's Encrypt
Subjectjnrvapejapan.com
Fingerprint58:9D:4F:45:C7:A6:5A:08:81:E9:F1:1C:CB:81:37:DB:F4:69:0F:72
ValidityWed, 17 Apr 2024 04:57:53 GMT - Tue, 16 Jul 2024 04:57:52 GMT

File type

Size
273 kB (273266 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapejapan/jscript/jscript_plugins.js HTTP/1.1
Host: www.jnrvapejapan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Cookie: zenid=emhq5aui5gq2pid408jgo6fd2f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:02:30 GMT
content-type: application/javascript
last-modified: Mon, 22 Apr 2024 22:18:42 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Fri, 10 May 2024 13:07:30 GMT
etag: W/"6626e242-42b72"
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap

142.250.74.106

200 OK

11 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
11 kB (10980 bytes)
Hash
0f3106ce705bbf98161187fc94d15542
99688690db95c115bbc142ac516d7aa8d8bfade8
376aa716f5acbcefc1b0a7684a56f4d642f23bf6534917d787d163c2ad81ebb4

HTTP Headers

GET /css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Staatliches&display=swap

142.250.74.106

200 OK

808 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Staatliches&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (826), with no line terminators
Size
808 B (808 bytes)
Hash
da420df8479f8779cde5fc034d4cc67b
40e95fcf89bfd02023345af67b83dd45543c29d9
21c8c585a8724114950fa78cb426dd7ff797cab8c34cb44231ea087c6c515d61

HTTP Headers

GET /css2?family=Staatliches&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Merienda:wght@400;700&display=swap

142.250.74.106

200 OK

2.4 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Merienda:wght@400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.jnrvapejapan.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (2424), with no line terminators
Size
2.4 kB (2370 bytes)
Hash
4c11106146294a0f2e0f9a7cd792e1d2
53f4815a87a769d098f64ad9dfafc157f7d572d1
66f67ff9a9b48f878ba4db2df85dcb68e5640e189ecc19cb7a4a8604b7412e94

HTTP Headers

GET /css2?family=Merienda:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jnrvapejapan.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 13:09:09 GMT
date: Fri, 10 May 2024 13:09:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (51)

URL

IP

ASN

File type

Size

Hash

Detections