{"report_id":"3b1c7c9c-4991-4f6a-894c-ec2127c1655b","version":6,"status":"done","tags":[],"date":"2026-01-28T02:11:30Z","url":{"schema":"http","addr":"lefados.xyz","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":0,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"chaturbate.com/bunnydollstella/?campaign=KzlTO\u0026color_theme=dark\u0026disable_sound=0\u0026join_overlay=1\u0026tour=uhEc\u0026track=trafficshop_no_popunder_desktop","fqdn":"chaturbate.com","domain":"chaturbate.com","tld":"com"},"title":"Bunnydollstella's Room @ Chaturbate - Chat in a Live Adult Video Chat Room Now","dom":{"size":25654,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"133f8b031b7deaba70cb27ad9d2af0cf","sha1":"6eae2ee7fabdd056cf394f8202260f43324a3d50","sha256":"a4a455fea6d0267b0762c42ff24ac11cc4ca65dc96cebd0e37ff24ad125d7945","sha512":"71ba8fcb01d5c0c7b34b96544724609f1bc5f795d52a343699b5c6a5c907068834eb26fd2e52937edb41448857c99b2d2a5ce92a630adad2d13cda78f3c5bcd5","ssdeep":"768:3jFjFJXFVMF4FpQe/ODe+tA+ER0CKmSK1euCMHtRdMbqpTJv2NA:TxnXoef8ZX6rRYA","tlshash":"84b2f34395f304155197f2c4ba31177bbd5aae43e027893cb9ac5fd8cfb2e464883a89","dom_hash":"domhash8b3147429314c9c50ca7657987f4d9e5","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"lefados.xyz","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":0,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-04T02:11:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"lefados.xyz","ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"domain_registered":"2024-09-20","domain_rank":2043398,"first_seen":"2025-05-19T18:39:16.069206Z","last_seen":"2025-12-20T12:40:18.495949Z","alert_count":0,"request_count":4,"received_data":51980,"sent_data":1906,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn5-thumbs.motherlessmedia.com","ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2008-10-11","domain_rank":905009,"first_seen":"2018-12-23T05:30:23Z","last_seen":"2026-01-24T10:59:04.861048Z","alert_count":0,"request_count":9,"received_data":744642,"sent_data":4095,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn5-images.motherlessmedia.com","ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2008-10-11","domain_rank":886479,"first_seen":"2018-12-27T22:21:35Z","last_seen":"2026-01-02T09:21:39.13004Z","alert_count":0,"request_count":1,"received_data":1227405,"sent_data":455,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"lefados.xyz/dare.js","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f93231c97689eca03f428a372b0f6e72","sha1":"2fe03fac89edafb453b3936d8dedc9b8da32609b","sha256":"8c6dafa315bf57616d530aa2914ffdd97934f1a4537acfada968def2fd499bd5","sha512":"7e999b90f1cf95177c21a3f7e0bf5e551bcab48ee214f293afe68426444fc68f4d381876eb871f57a1c47520d0283c061edb16bc321358f698cb7c1fd757443c","ssdeep":"384:FV+83gIr4Y+sW9pBS5KM3Tb63KwWEOi804ziWIAWZTbSCD2Q1ZW1ihiMi6irioi/:v+xU98KFX04mOWPj1MihiMi6irioi0i1","tlshash":"99a26468b6fb61214163b13d476f18083b76402b6d4cfca2759ca2d02f74d2906befe8","size":21532,"data":"","first_seen":"2026-01-26T01:39:58.283108Z","last_seen":"2026-01-28T02:11:33.39299Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"introduction_type":"eventHandler","is_inline":false,"md5":"21935a98327babfb12a213be3f675109","sha1":"d8ab1e1b43004430bbedc458d06256a703f4d225","sha256":"0fa2064bc54cbc2a32691fe5d21f6d111ac14c04d8d350a83d2ee5eb10efd242","sha512":"c09c9b408fe4cc40a8e6acd8dfbe8c8a47f7316109ff6725a08ab789268c2db43e2b0160b36e3a65c9913888a32c2afe14a3c233d11d04a774a68882f7db7916","ssdeep":"","tlshash":"c720000000000000000000000000000000000000000000000000000000030000000000","size":3,"data":"","first_seen":"2023-04-13T07:01:56Z","last_seen":"2026-03-25T11:57:28.01702Z","times_seen":127,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"introduction_type":"eventHandler","is_inline":false,"md5":"7ed9946821c8734703d810b12c30c6e4","sha1":"c784db40d9c2f51b08bcef41a05228f64df39a13","sha256":"3e9a9222424f8eb691239b832ad1b15eb43b4be4203db98757d503418842a83d","sha512":"319aee6feaa22e7149d750e911ef167322a1ac04801ec5bf20a28afca812c71a1853bc1e1605a35df1ed263ee615a9e52b9a1e33985418aa26584e0a686434fc","ssdeep":"","tlshash":"0580002002c2882a32388882280c8200a038a0e0322e0800be280c0ab2c082ca020828","size":29,"data":"","first_seen":"2023-04-13T07:01:56Z","last_seen":"2026-03-25T11:57:28.01574Z","times_seen":116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"6dd5b590c09063f3166f8188d435ca24","sha1":"8a64cc16ea29407973d94ab2bf6a67a7dc0b4c66","sha256":"73dddce62e7d5a5cab6eb021efb885758e48c4cc4205847dc98ec164d4beaf96","sha512":"2ea7d7211ecb89cc4e165777041c03aa7c07ab73065ef459197f70838ff2ae39e1db7ef3bda3dfcf7f032d553a57291cd208f0e027690748985ded2be8477394","ssdeep":"","tlshash":"a2d02210b436042d1260a351ebe719d0ad6049ed016b12ec4f0e8ce02bf54c21744fb3","size":199,"data":"","first_seen":"2026-01-28T02:11:33.400562Z","last_seen":"2026-01-28T02:11:33.400562Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/rect.js","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad7f68fe17398879d974122ad4003399","sha1":"10df782010942cc9757d9ce60bdfd0b3f655e28f","sha256":"2c87bed413d5b8b5cbf4c987b0bc289d11c4823700059b98bb515f8759bffb3e","sha512":"3504897dff5bd92f891b675bafbedbc0c604f49ff614372eb43d01b4714432b86438d771f736dd58fa13e8138eefc5ffda6ba4cb0ad039e95604a0291d82a725","ssdeep":"","tlshash":"13019c9e28e16c748ea335b85fffb13850352a8354578b12791d4d822fb230ec689d88","size":775,"data":"","first_seen":"2026-01-28T02:11:33.391104Z","last_seen":"2026-01-28T02:11:33.391104Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"lefados.xyz/favicon.ico","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lefados.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 05:01:27 GMT","end":"Tue, 10 Mar 2026 05:01:26 GMT"},"fingerprint":{"sha1":"38:48:44:DC:D3:F2:43:F3:57:AC:D2:CD:B9:9D:E7:81:30:EA:71:1A","sha256":"17:06:46:93:46:9C:85:3F:4B:58:E3:15:AD:8C:49:85:07:24:19:E3:13:09:6F:BD:04:C7:1A:3B:A3:95:3E:FA"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: lefados.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://lefados.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: d8051=bm9yZWZ8fHwxfDB8MHxub25lfDA6; d8051b=1769566269\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 22 Jul 2025 04:31:22 GMT\r\netag: W/\"b52-63a7d1083953d\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-04-04T01:52:25.0368Z","times_seen":5578,"resource_available":true,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/2341DB4.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.343Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/2341DB4.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9843\r\nvary: x-s-token\r\nlast-modified: Tue, 02 Oct 2018 18:18:15 GMT\r\netag: \"2673-57742f20a74c5\"\r\nx-cache: HIT\r\nx-whom: cdn01\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9843,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x240, components 3","md5":"89f13927daedc2d897b5e3e7637ed4ba","sha1":"44eedee40c0f04674b8af32a8040f71167cb4390","sha256":"c689177e49a11a3b55556cb4db201a57a2eb02ca108c5ed46cbd6551f2cc5d0b","sha512":"4dd502dd5328c8a60e3ee4e90ecac2ffb5d1798cdd64740c10b840097ac695eebdf025b7c38d634f4a34f5cabd9241765fd2d6d84fe41eab22718df8ce15ab8d","ssdeep":"192:Wx1N61jxiM4VB9jRiVcGrwhNvNn/76gD01ufUQYy8vNCcQUjiVdPWBSK:G1zjVB9jRiVtEJ628X5NCcQUjOABR","tlshash":"8d12bfc9e58c64129f301e3d0b5c215e3c69d8803fd12fb6590ac29deedbef2a49991d","first_seen":"2026-01-28T02:11:33.358284Z","last_seen":"2026-01-28T02:11:33.358284Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":72,"dns":6,"connect":17,"send":0,"wait":18,"receive":1,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/E44BBBB.png","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.344Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/E44BBBB.png HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 103356\r\nvary: x-s-token\r\nlast-modified: Tue, 05 Mar 2019 10:35:10 GMT\r\netag: \"193bc-583566d79f360\"\r\nx-cache: HIT\r\nx-whom: cdn04\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":103356,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 200, 8-bit/color RGBA, non-interlaced","md5":"8be7596c7c3a989030515589cc436647","sha1":"1b288dd0e7d8ba43463a32d847c20826ff9b07d7","sha256":"22cc35137332fa91f43415e99abc8aa6f483fcffcd2fee1766c246935b5b33a9","sha512":"beaf6902de5ab78349a32b7a2b4a64aa9a706fb7dad42b7f720f193c7f04fc87fc88ec72d5038dc65cc7c92a45dedfee2caf89990e68063092cd54f751cecfa5","ssdeep":"3072:IfMg89oFHoT8luWPYWY60ojljnA/OflNYKaTk2jHP:IfMFoFHoTEVjljnnyKaTks","tlshash":"9aa3124340d17da0b025e29c6c59ec376b91e9c896b3de65f084eaf44e0bba316f49c7","first_seen":"2026-01-28T02:11:33.360752Z","last_seen":"2026-01-28T02:11:33.360752Z","times_seen":1,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":80,"dns":2,"connect":24,"send":0,"wait":20,"receive":53,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/C6EBCA9.gif","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.347Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/C6EBCA9.gif HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/gif\r\ncontent-length: 214178\r\nvary: x-s-token\r\nlast-modified: Fri, 08 Apr 2022 22:04:37 GMT\r\netag: \"344a2-5dc2bc7ca80c0\"\r\nx-cache: HIT\r\nx-whom: cdn03\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":214178,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 135 x 240","md5":"132ed70426154ad353bd08b3426153ed","sha1":"956a2fc00a508c04885cd7212e39bab8078dcd30","sha256":"1272c97fd6b3d0595e3df9174fb481f7d6026fddadb798718ea3e0b46d0a8057","sha512":"47342f3011229bc89b4edd9990aae1107a8d7e07cbd889a0c0ce99950b83156f80e8d8b825b14dc621679a17b8d9b7a9f11ec134e42fc48345a0d86fd6f5f2a4","ssdeep":"3072:XN/AYqkx7B1ubpq5w5HBcpiAbJ8PWBCJkbQQFWFOU4Yu+rhGN6Pl7VZhu3YSmPrk:hAQY+wIpdgBQQFOQu+hY6t7o3DmnY","tlshash":"b02423df1883ad0ee2690be81e8fe5a0521357740de5cf4e9ee1e5a952f888481bd1f1","first_seen":"2026-01-28T02:11:33.365386Z","last_seen":"2026-01-28T02:11:33.365386Z","times_seen":1,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":68,"dns":5,"connect":24,"send":0,"wait":38,"receive":59,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/2CC79DF.gif","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.348Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/2CC79DF.gif HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/gif\r\ncontent-length: 374306\r\nvary: x-s-token\r\nlast-modified: Fri, 28 Mar 2025 14:59:06 GMT\r\netag: \"5b622-631684fe15184\"\r\nx-cache: HIT\r\nx-whom: cdn09\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":374306,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 184 x 240","md5":"18f6a81dfc15b1a196dbdb4f0040689c","sha1":"d071b04174aabcee720bf43fe973953d17bda9e7","sha256":"b0dc8c4fb69b059b4b15d1a9192acc801ea5d35c179cdcc7f39f6037e7f970df","sha512":"02fbb0c11fa903dc79fb3bea1bdc1e9d737a93f8e084ecc4d7ae17cb3a4fa4d6b74a340f40ccd239e60a2fbaf3ae897c540dcfacd958bd29062d6c04466c8b12","ssdeep":"6144:ZJAeEun7RF6I3uVv9/m+nblGoTryLbICPbM1CGh79qxc7sUOzLSQzp:PhE2RF6/T7g3LbZbMkGhpecyv1","tlshash":"e884236a02895862dde82c3060ca5207579f75957b29edf772aeac42d3631f3e410fac","first_seen":"2026-01-28T02:11:33.368553Z","last_seen":"2026-01-28T02:11:33.368553Z","times_seen":1,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":68,"dns":5,"connect":24,"send":0,"wait":18,"receive":85,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/72C3C2D.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/72C3C2D.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 5667\r\nvary: x-s-token\r\nlast-modified: Thu, 10 Apr 2025 09:28:29 GMT\r\netag: \"1623-63269356e6122\"\r\nx-cache: HIT\r\nx-whom: cdn04\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5667,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPCM), density 59x59, segment length 16, baseline, precision 8, 160x240, components 3","md5":"f86dc6c2a885c2fce803c1ea37b9e5ed","sha1":"f104627d4e9711e36aa4c05355a9ccabf98275f7","sha256":"4d4d7b452409d5653297466b31d32d512eb7da3a005b6a0a5e1498fe99d124f2","sha512":"dc120eda7c6619bf2f821cdcfa8e593ba315abaab9635a1730ccbbaf519210de100c988ab3992cae21224d5a0d4e1ec5ae438d951b2f7c8a06e365d1c2632741","ssdeep":"96:NAE/pxUat7HAPXfUjgRwjyBlslYZe59hcpyHSj+hYQCvTGCAPoTV/c:yE/oTPXfSW/BMz59Xo+hYPGFOV/c","tlshash":"a1c19ef5714ae58d6a0ce277c27ad21cbab4e182e7e56e4f3c0f157e6720484903f09a","first_seen":"2026-01-28T02:11:33.371474Z","last_seen":"2026-01-28T02:11:33.371474Z","times_seen":1,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":2,"connect":24,"send":0,"wait":19,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/F5E9B87.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/F5E9B87.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13103\r\nvary: x-s-token\r\nlast-modified: Mon, 08 Oct 2018 00:39:50 GMT\r\netag: \"332f-577acdbdf8a32\"\r\nx-cache: HIT\r\nx-whom: cdn01\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13103,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 300x201, components 3","md5":"5ed318f73e7d7caf2ab1aa8513936ea8","sha1":"dd3cf3d5e6335d5533897fabc7b6cbbdf8bb47f7","sha256":"da416cfb7d1774caaf2114963f797b282c68122ce613214ca87db3cbbc7c0497","sha512":"d10bfe402eb6788471f83678738f6eba16c4d31735e8f45b0b2fdebc9810c0e63e772221b3435ca1cedff98fd3186df7e3a14d60d99663ab7914dfc807000953","ssdeep":"384:Q28ZMNsUJG/wcyel/RvH9jZb+cydjXvAUzCqYvaplf:F8ZcsUJGYcy69f+ca2Xva","tlshash":"de42bf2b934ba53847e822ee5594cf200edbed87a4660ebe01574a5db1d1ef04374aec","first_seen":"2026-01-28T02:11:33.374097Z","last_seen":"2026-01-28T02:11:33.374097Z","times_seen":1,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":81,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/3A1014E.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/3A1014E.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 7199\r\nvary: x-s-token\r\nlast-modified: Wed, 03 Oct 2018 06:34:08 GMT\r\netag: \"1c1f-5774d39c0928e\"\r\nx-cache: HIT\r\nx-whom: cdn08\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7199,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, baseline, precision 8, 160x240, components 3","md5":"0e42474c71dfd489ffa50ae02ebd713a","sha1":"d301619e695e5a0a931a4be557301f151351bada","sha256":"6d54dc8f7d8be8f08e6a2ae43316cdc45d14d1c20ca758e0aac83bed9c039610","sha512":"6f645314b39a699f78edadca95c0efd5a449db9ae068c43dbab62639aa4354d532bb60f3672a1f1d116b983ed8f4316c2c7235f5c8bb87ef22833f7cceada067","ssdeep":"192:WaO26HtkdwI2FKuc79HReyVphXmvQ0nZINW:e2ytopD79xeU8vd6NW","tlshash":"9fe18d28dba6d942df6129f67016ec43628084140f5dc3fde4c5b9384e8bd794a27c2d","first_seen":"2026-01-28T02:11:33.377466Z","last_seen":"2026-01-28T02:11:33.377466Z","times_seen":1,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":86,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-28T02:11:08.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lefados.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 05:01:27 GMT","end":"Tue, 10 Mar 2026 05:01:26 GMT"},"fingerprint":{"sha1":"38:48:44:DC:D3:F2:43:F3:57:AC:D2:CD:B9:9D:E7:81:30:EA:71:1A","sha256":"17:06:46:93:46:9C:85:3F:4B:58:E3:15:AD:8C:49:85:07:24:19:E3:13:09:6F:BD:04:C7:1A:3B:A3:95:3E:FA"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: lefados.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 4181\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25662,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"46e46d1bee1ab3cfb01f3df5f12d91ed","sha1":"02ee856b99934486da1b5f26d991c912fae09fbe","sha256":"b4c2ee2dd2d1596d68b66eae91d68427b643bcd9e5c546e5eee359c56c384391","sha512":"ad81b513b184d5f0108682244bf40454f5e6e71b8add09253205eb25bd0419faa2345e5fc93086274e4f430de5da8c1c7d540d36f5a4ad175a017ac2c8d432e7","ssdeep":"768:djFjFJXFVMF4Fpje/ODe+tA+ER0CKmSK1euCMHtRdMbqpTJv2Jq:lxnXoeq8ZX6rRoq","tlshash":"35b2034395f304155197f2c4ba31177bbd5aae43e027893cb9ac5fd8cfb2e464883a89","first_seen":"2026-01-28T02:11:33.380575Z","last_seen":"2026-01-28T02:11:33.380575Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1108,"timings":{"blocked":472,"dns":170,"connect":145,"send":0,"wait":162,"receive":2,"ssl":154},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-images.motherlessmedia.com/images/D5AD0D2.jpg","fqdn":"cdn5-images.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.341Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /images/D5AD0D2.jpg HTTP/1.1\r\nHost: cdn5-images.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 1227126\r\nvary: x-s-token\r\nlast-modified: Tue, 21 May 2024 23:07:36 GMT\r\netag: \"12b976-618fee23f0b27\"\r\nx-cache: HIT\r\nx-whom: cdn09\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1227126,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 3504x2280, components 3","md5":"bb42a82ee44b4506c20c295754519555","sha1":"805b2b51f1442aff1079e223295aa1e0c218df3b","sha256":"0236119b2c5cade3a5c69650f137bd7486931950fbaa44fc33be98fbd46720a1","sha512":"359be723b9b93c586f0c1f8d4d468087d2cfd01ef34f3eb631da626e34c2d1395d27052f82990d7f3f9bcfd81fc69e78a1d0af696a25dde41392cd45ea0be170","ssdeep":"24576:zGfuE7+dR8Z5xTZX7RyhiJeVpLm+v7piwAV/BzaN4rAmJ:zW48Z5xT0E0pL7vsDDaBg","tlshash":"a12533a99db3a2776ad0fea256398dcd136106bf5408bd6870d44f33101972b7b4b22f","first_seen":"2026-01-28T02:11:33.3835Z","last_seen":"2026-01-28T02:11:33.3835Z","times_seen":1,"resource_available":false,"data":null}},"time_used":362,"timings":{"blocked":70,"dns":7,"connect":21,"send":0,"wait":35,"receive":176,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/4CCC016.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.345Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/4CCC016.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 7636\r\nvary: x-s-token\r\nlast-modified: Sun, 05 Oct 2025 11:19:42 GMT\r\netag: \"1dd4-6406782ef45de\"\r\nx-cache: HIT\r\nx-whom: cdn02\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7636,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x240, components 3","md5":"bcb864b418df2a28daf5dfcc4ea36d39","sha1":"d79f7ead5e12e0355102ba9702c6fd9411df5ca9","sha256":"9fe70f80662c1456119b4b01c50e54d4b9fdb8ea11f32338e94ad7ba601567e1","sha512":"5347e5c25622a7874c867a2e7b46469b3bfb64db80f0e63bdad8e969151120b0685f40443b94d68356dc8a0f495310338076dd20304349481120a5a410fd0940","ssdeep":"192:KxGjms95l6zYlg3cvpOxgHFEU1iEGePdwneKNlyKq:djmW6Ul/AAj1VGy4ryf","tlshash":"14f18e4b372a771bd606c933094b2923e9cf7d74e1458e4e8305963f50660ee3c6969b","first_seen":"2026-01-28T02:11:33.386131Z","last_seen":"2026-01-28T02:11:33.386131Z","times_seen":1,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":81,"dns":4,"connect":24,"send":0,"wait":17,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/FE71227.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV SSL CA 2","organization":"GoGetSSL"},"validity":{"start":"Mon, 03 Nov 2025 00:00:00 GMT","end":"Tue, 22 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1C:9C:A7:64:1D:50:C4:66:FC:B5:AE:9C:CB:DF:AC:1E:1F:4B:A0:83","sha256":"FD:6F:CF:79:47:AA:EF:54:72:2A:60:E2:1B:57:6B:D6:33:60:E2:67:DA:83:68:95:02:34:5B:66:53:45:A1:0E"}}},"request":{"raw":"GET /thumbs/FE71227.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lefados.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 6881\r\nvary: x-s-token\r\nlast-modified: Thu, 01 Jul 2021 11:03:43 GMT\r\netag: \"1ae1-5c60dcad0c0d2\"\r\nx-cache: HIT\r\nx-whom: cdn07\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":6881,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 180x240, components 3","md5":"5d105eab9cc59f338d4719fb244d0118","sha1":"5fc3b03f216f36418bcd5834452a41b3effdf5d2","sha256":"761ad0bcaf9dd32d7ffca05fbe189fecfbaf0cceaa92bfdb4048355bc8579abf","sha512":"527ceb0b1d1886cd1566b3540aeb89c2b7055a0b6d41083f6c93cdc563123a4268794e25ba248b8eb566b83626f3adced717a85da6d20c0d3cb18d4adf2fc682","ssdeep":"192:1JnCcRJZZWaE6+knxqhXe0zabSLz7zcyOm:1JNZlx+knE40zv7Wm","tlshash":"a4e1afa3b9d85f9dcd22cabb803a263073446d2cdcb1773eaf87d70705681d5b449a00","first_seen":"2024-10-06T09:19:28.178685Z","last_seen":"2026-01-28T02:11:33.388412Z","times_seen":8,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":89,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/rect.js","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lefados.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 05:01:27 GMT","end":"Tue, 10 Mar 2026 05:01:26 GMT"},"fingerprint":{"sha1":"38:48:44:DC:D3:F2:43:F3:57:AC:D2:CD:B9:9D:E7:81:30:EA:71:1A","sha256":"17:06:46:93:46:9C:85:3F:4B:58:E3:15:AD:8C:49:85:07:24:19:E3:13:09:6F:BD:04:C7:1A:3B:A3:95:3E:FA"}}},"request":{"raw":"GET /rect.js HTTP/1.1\r\nHost: lefados.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://lefados.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: d8051=bm9yZWZ8fHwxfDB8MHxub25lfDA6; d8051b=1769566269\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 775\r\nlast-modified: Wed, 21 Jan 2026 14:26:28 GMT\r\netag: \"6970e214-307\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":775,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (368)","md5":"ad7f68fe17398879d974122ad4003399","sha1":"10df782010942cc9757d9ce60bdfd0b3f655e28f","sha256":"2c87bed413d5b8b5cbf4c987b0bc289d11c4823700059b98bb515f8759bffb3e","sha512":"3504897dff5bd92f891b675bafbedbc0c604f49ff614372eb43d01b4714432b86438d771f736dd58fa13e8138eefc5ffda6ba4cb0ad039e95604a0291d82a725","ssdeep":"","tlshash":"13019c9e28e16c748ea335b85fffb13850352a8354578b12791d4d822fb230ec689d88","first_seen":"2026-01-28T02:11:33.391104Z","last_seen":"2026-01-28T02:11:33.391104Z","times_seen":1,"resource_available":true,"data":null}},"time_used":144,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":144,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lefados.xyz/dare.js","fqdn":"lefados.xyz","domain":"lefados.xyz","tld":"xyz"},"ip":{"addr":"162.244.33.34","port":443,"asn":14576,"as":"HOSTING-SOLUTIONS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lefados.xyz/","date":"2026-01-28T02:11:09.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lefados.xyz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 05:01:27 GMT","end":"Tue, 10 Mar 2026 05:01:26 GMT"},"fingerprint":{"sha1":"38:48:44:DC:D3:F2:43:F3:57:AC:D2:CD:B9:9D:E7:81:30:EA:71:1A","sha256":"17:06:46:93:46:9C:85:3F:4B:58:E3:15:AD:8C:49:85:07:24:19:E3:13:09:6F:BD:04:C7:1A:3B:A3:95:3E:FA"}}},"request":{"raw":"GET /dare.js HTTP/1.1\r\nHost: lefados.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://lefados.xyz/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: d8051=bm9yZWZ8fHwxfDB8MHxub25lfDA6; d8051b=1769566269\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 28 Jan 2026 02:11:09 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 21532\r\nlast-modified: Wed, 21 Jan 2026 14:26:27 GMT\r\netag: \"6970e213-541c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21532,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (495)","md5":"f93231c97689eca03f428a372b0f6e72","sha1":"2fe03fac89edafb453b3936d8dedc9b8da32609b","sha256":"8c6dafa315bf57616d530aa2914ffdd97934f1a4537acfada968def2fd499bd5","sha512":"7e999b90f1cf95177c21a3f7e0bf5e551bcab48ee214f293afe68426444fc68f4d381876eb871f57a1c47520d0283c061edb16bc321358f698cb7c1fd757443c","ssdeep":"384:FV+83gIr4Y+sW9pBS5KM3Tb63KwWEOi804ziWIAWZTbSCD2Q1ZW1ihiMi6irioi/:v+xU98KFX04mOWPj1MihiMi6irioi0i1","tlshash":"99a26468b6fb61214163b13d476f18083b76402b6d4cfca2759ca2d02f74d2906befe8","first_seen":"2026-01-26T01:39:58.283108Z","last_seen":"2026-01-28T02:11:33.39299Z","times_seen":6,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":144,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}