{"report_id":"7e39023b-58ea-488c-96e9-1d8be43e7ac9","version":6,"status":"done","tags":[],"date":"2026-01-10T06:22:57Z","url":{"schema":"http","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":0,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"final":{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"title":"Clothoff","dom":{"size":4389,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (448)","md5":"78da14c58eea81400e7fd4f66e98b7e3","sha1":"a723bca9136fb01b6c36ba68278bb5fab3b8e362","sha256":"7fba2a6964fea8c66220514d56d04553cbd0cb539fbbecf3e8b1b1166ec1baa8","sha512":"9a9707458867d0dd1446652b5f018e2571274f405bbab1f32ed168c6321468bc2f4a2f8c809d51bc855792d5bef2f1e0aa729765114752075be68dc054537a33","ssdeep":"48:ngZWUwnJXs3jU6bD/OsAU6bWSXv1zpmiZd1MbB7CRiPVS:nJUwJ8AiD/9iWS/1TZgCRiPVS","tlshash":"6691106424f52573129344d2a972af9b7ec1e207e90b9640b2fe0fe40fe3e45cd27829","dom_hash":"domhash20d66ca03e51887a8827c138df9db730","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":0,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-14T06:22:57Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2026-01-04T22:45:39.840493Z","alert_count":0,"request_count":1,"received_data":90780,"sent_data":444,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-04T22:17:15.216142Z","alert_count":0,"request_count":2,"received_data":69113,"sent_data":985,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"24hdeepnude.com","ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"domain_registered":"2023-12-05","domain_rank":5070167,"first_seen":"2024-01-08T17:24:05Z","last_seen":"2025-12-21T07:54:42.163706Z","alert_count":56,"request_count":14,"received_data":646717,"sent_data":8737,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"jQuery:3.6.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-04T22:14:09.841371Z","alert_count":0,"request_count":2,"received_data":170150,"sent_data":1098,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"domTimer","is_inline":false,"md5":"d535b658383b98a97bb8666508fd59bf","sha1":"6531f169eb743ebdca7f6cc41b3869d96fde8aa9","sha256":"226296d896ee43ff2bee117da6240558e6c982374d19b1e259f4b20b87aa4781","sha512":"931c1120452022deac45f11fb9c253d689b728044022e4b7ebf433556c109401ea57bc2a185555b4a25f8a9ad3be3be8c1af88357c56e41cf0b253c34e1b6dec","ssdeep":"","tlshash":"c4b0000cf003c03cc00c00fc30003c00cc030c00c03f00cc0300303c00000c0c000c00","size":111,"data":"","first_seen":"2025-05-24T13:08:23.54519Z","last_seen":"2026-01-10T06:23:00.407857Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"domTimer","is_inline":false,"md5":"d535b658383b98a97bb8666508fd59bf","sha1":"6531f169eb743ebdca7f6cc41b3869d96fde8aa9","sha256":"226296d896ee43ff2bee117da6240558e6c982374d19b1e259f4b20b87aa4781","sha512":"931c1120452022deac45f11fb9c253d689b728044022e4b7ebf433556c109401ea57bc2a185555b4a25f8a9ad3be3be8c1af88357c56e41cf0b253c34e1b6dec","ssdeep":"","tlshash":"c4b0000cf003c03cc00c00fc30003c00cc030c00c03f00cc0300303c00000c0c000c00","size":111,"data":"","first_seen":"2025-05-24T13:08:23.54519Z","last_seen":"2026-01-10T06:23:00.407857Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"domTimer","is_inline":false,"md5":"d535b658383b98a97bb8666508fd59bf","sha1":"6531f169eb743ebdca7f6cc41b3869d96fde8aa9","sha256":"226296d896ee43ff2bee117da6240558e6c982374d19b1e259f4b20b87aa4781","sha512":"931c1120452022deac45f11fb9c253d689b728044022e4b7ebf433556c109401ea57bc2a185555b4a25f8a9ad3be3be8c1af88357c56e41cf0b253c34e1b6dec","ssdeep":"","tlshash":"c4b0000cf003c03cc00c00fc30003c00cc030c00c03f00cc0300303c00000c0c000c00","size":111,"data":"","first_seen":"2025-05-24T13:08:23.54519Z","last_seen":"2026-01-10T06:23:00.407857Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"domTimer","is_inline":false,"md5":"d535b658383b98a97bb8666508fd59bf","sha1":"6531f169eb743ebdca7f6cc41b3869d96fde8aa9","sha256":"226296d896ee43ff2bee117da6240558e6c982374d19b1e259f4b20b87aa4781","sha512":"931c1120452022deac45f11fb9c253d689b728044022e4b7ebf433556c109401ea57bc2a185555b4a25f8a9ad3be3be8c1af88357c56e41cf0b253c34e1b6dec","ssdeep":"","tlshash":"c4b0000cf003c03cc00c00fc30003c00cc030c00c03f00cc0300303c00000c0c000c00","size":111,"data":"","first_seen":"2025-05-24T13:08:23.54519Z","last_seen":"2026-01-10T06:23:00.407857Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/js/main.js","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a15733186f1fe16ecfee6c13622c608","sha1":"3197c7619edaedcbc951cdfb20435137c8a53080","sha256":"be52cde65f3c9a49d2321641e5bdf8b7d8204bf6e73edef22c6dfb1f27f60f8e","sha512":"17997554ed8f46acf2d785290c770b07fcf4dca8429024b4be4580d1c6ba7d431da11f637eb41e96d283e2ed74a08201be1d0425447ed46ca3a2364c729ddf08","ssdeep":"","tlshash":"e0f0825470b353a0313f247b4febd489ac24282f42d4bd953c1e55f08f5aeb072a464b","size":497,"data":"","first_seen":"2024-08-19T18:42:01.119827Z","last_seen":"2026-01-10T06:23:00.404273Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":true,"md5":"1a1900500e815557ec11cb6f93747f48","sha1":"5c5e020a687f5116d1f1f053293c22929cb86b3a","sha256":"64af0ef0d1b603ead16c0eaf659a6b1b4af1d29a1e7f7590d09c1929b2143255","sha512":"5f5d13b888367e41e8a0b1123da28635a8c192e1aeb9555620e311e28d1a22762cf42a636380619a3a17a6aa603db3f263d518003982c825367301b190e37212","ssdeep":"","tlshash":"87e02b19f0009079415a46b87537ebc4b2e17046ba0fe15157b98eb09de8e0db122c5c","size":400,"data":"","first_seen":"2026-01-10T06:23:00.408558Z","last_seen":"2026-01-10T06:23:00.408558Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"641dd14370106e992d352166f5a07e99","sha1":"eda46747c71d38a880bee44f9a439c3858bb8f99","sha256":"a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af","sha512":"a6e981b23351186aa43f32879dd64c6801be6e2af7ef8b0e472cccdeeba52d5d7894de4bcb292a364f1e11e525524077534338140a72687ada4fae62849843a5","ssdeep":"1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQvg:IeeIygP3fulzhsz8jlvaDioQ47GKH","tlshash":"d193f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","size":89795,"data":"","first_seen":"2023-03-26T04:59:07Z","last_seen":"2026-04-04T10:44:44.399515Z","times_seen":20862,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /ajax/libs/jquery/3.6.4/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 31154\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 09 Jan 2026 19:54:18 GMT\r\nexpires: Sat, 09 Jan 2027 19:54:18 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 37696\r\nlast-modified: Tue, 04 Apr 2023 03:27:01 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89795,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"641dd14370106e992d352166f5a07e99","sha1":"eda46747c71d38a880bee44f9a439c3858bb8f99","sha256":"a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af","sha512":"a6e981b23351186aa43f32879dd64c6801be6e2af7ef8b0e472cccdeeba52d5d7894de4bcb292a364f1e11e525524077534338140a72687ada4fae62849843a5","ssdeep":"1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQvg:IeeIygP3fulzhsz8jlvaDioQ47GKH","tlshash":"d193f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","first_seen":"2023-03-26T04:59:07Z","last_seen":"2026-04-04T10:44:44.399515Z","times_seen":20862,"resource_available":true,"data":null}},"time_used":141,"timings":{"blocked":55,"dns":0,"connect":7,"send":0,"wait":10,"receive":8,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.313Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 10 Jan 2026 06:22:34 GMT\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":67176,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"5f82b7d5b96a577198378ffe84f6bca8","sha1":"e8f0a55a35215b9cddc393cb2e5c34214e185b2c","sha256":"5541515e21bb5289ea0397f7cd51f3fde8fcca12cf8f052c10e36f00b8cf7563","sha512":"0d11de9cc6a0561754374121cbd263f1ed5bbcb226aafe9d6e6b073a6179369319a6b8901f3796328d7fae7d8c15025d44815703673265e114d5c31491d41182","ssdeep":"768:yDcDaDvDcDzBDFKDeDOD14KF4zLFa+OgN7wNzaFLXnnGE3GzhFUQgx8uB8zXF+aq:z5YRdvI0rAwyl","tlshash":"ae630ea1041b5040ab834ce223cfbe34fe1f92507151d0b9abfd9b6baddbc66526835c","first_seen":"2025-11-19T00:37:42.03991Z","last_seen":"2026-02-19T19:51:21.580458Z","times_seen":6121,"resource_available":false,"data":null}},"time_used":163,"timings":{"blocked":64,"dns":1,"connect":20,"send":0,"wait":35,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/fonts/SegoeUI.woff","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/fonts/SegoeUI.woff HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/assets/css/styles.css\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: application/font-woff\r\ncontent-length: 245844\r\nlast-modified: Tue, 26 Sep 2023 05:35:04 GMT\r\netag: \"65126d88-3c054\"\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":245844,"size_decoded":0,"mime_type":"application/font-woff","magic":"Web Open Font Format, TrueType, length 245844, version 5.5","md5":"ee10411f11ca61338f5bcaebefbdf700","sha1":"4c720d1b7f057aa38a9ac184bc209990778dc651","sha256":"88c5bf1d6f30b660f9764bd76aa70cdefcb11207fdc77d0d0285d95a0bc135ac","sha512":"5dfbea3c7c8c61086b7710f76f4e9caa6d828a39c4f7b06d13ba0700778e26fb5af3fad987d26876c930f7b611e72ae3e505e9e0613eb0582c1dc7497c051288","ssdeep":"6144:JOBNr2qKCnlcui/vFdv81QvkMwFvEecNlKMQXW6sK:oxDKCRi/7813vEecNhsWBK","tlshash":"92342236181b5b6e979620793be18ba94fefcc68d146e8f44ff2401b9184b54caa1cc3","first_seen":"2023-05-20T12:46:55Z","last_seen":"2026-04-04T03:02:08.749025Z","times_seen":117,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/materialicons/v145/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/materialicons/v145/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://24hdeepnude.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 128352\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 08 Jan 2026 16:31:40 GMT\r\nexpires: Fri, 08 Jan 2027 16:31:40 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 17 Sep 2025 16:29:55 GMT\r\ncontent-type: font/woff2\r\nage: 136254\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":128352,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 128352, version 1.0","md5":"53436aca8627a49f4deaaa44dc9e3c05","sha1":"0bc0c675480d94ec7e8609dda6227f88c5d08d2c","sha256":"8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1","sha512":"6655e0426eb0c78a7cb4d4216a3af7a6edd50aba8c92316608b1f79b8fc15f895cba9314beb7a35400228786e2a78a33e8c03322da04e0da94c2f109241547e8","ssdeep":"3072:b4XkN5u3RbAR2r4lJ8FBnP7fNblbKBRvqy:fGdA8FBP7fNb5y","tlshash":"91c3231efc32af9a2e1724ec288521809c1e92fbe0b3512cf565f437e76517d999ca09","first_seen":"2023-04-05T13:19:11Z","last_seen":"2026-04-04T10:47:17.978958Z","times_seen":49065,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":58,"dns":1,"connect":20,"send":0,"wait":9,"receive":14,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?good=123220810\u0026z=0.8185869859325015","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:44.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/?good=123220810\u0026z=0.8185869859325015 HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:44 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__; expires=Mon, 09-Feb-2026 06:22:44 GMT; Max-Age=2592000; path=/\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/css/styles.css","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/css/styles.css HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 26 Sep 2023 05:35:04 GMT\r\netag: W/\"65126d88-1e88\"\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7816,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"fd6d000015b45cfc47ea30f9433b1155","sha1":"d3d5243e70f1007b60efa54744d109660a0bad8e","sha256":"5d98549a983bef5169c722ad62e4da938f0288cf68ed092f40e49fdd341f75c2","sha512":"433e2406834d5ab828b2f0fb50b3fbaa355bb5baf86460ab2a80625de0407cefafa713bde37cc62999bed833886dbfd15bdc22b6e3a85443e1ce9c9d4cc6388a","ssdeep":"192:g1bf2B1il9iQli9ix1dReRsQF/+SeaRJwniz0oA1/ZS28bc:6uLoisxfPaPix","tlshash":"a5f142951ae72a457407d4581fea6b54235c4047e00fdcad7b9c369c8fda1a8c3e2b89","first_seen":"2025-05-24T13:08:23.513644Z","last_seen":"2026-01-10T06:23:00.395457Z","times_seen":5,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/icon?family=Material+Icons","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /icon?family=Material+Icons HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 10 Jan 2026 06:22:34 GMT\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":565,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"2b7a8d84952a9183b106df19f711324e","sha1":"a92c5e12b422bba9ebb447e1852d9681487361bc","sha256":"282801a0d182035440d5ef6d429d227126d2e6720a52b91d31a7d746c758154e","sha512":"d7ef3f86fe9fa5730a118c688b8f779e82ec3695df5ec48953905ed078ef4d78a3c8005021574d936f69ff0467968b6e68fbcb0680894470abf8f26200af2e0c","ssdeep":"","tlshash":"c0f0c064be0a988566110c42370f3f164d1d401fa80ac8fe8b911d4c8cff1bb134670f","first_seen":"2025-09-17T21:11:07.996842Z","last_seen":"2026-04-04T10:47:17.992074Z","times_seen":30679,"resource_available":false,"data":null}},"time_used":306,"timings":{"blocked":132,"dns":1,"connect":20,"send":0,"wait":30,"receive":0,"ssl":119},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/images/girl-en-2.jpg","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/images/girl-en-2.jpg HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 161893\r\nlast-modified: Wed, 24 Jan 2024 01:39:58 GMT\r\netag: \"65b06a6e-27865\"\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":161893,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3","md5":"f6c913c255ec9fd0b15ab72d935785c5","sha1":"eb5895ad2f35777a46d63952f82b56bb9f829e82","sha256":"64d54248d095ddf77d537a5e4d6e196f9391f0b3fe2be7a39378ebfe385f6a20","sha512":"dc0732e741a573192a988491137ba5793be17bd0de370a9c78e982addd4111d3328f58ddc7960d2c3dc7f8f04ad9a20627db1ed8cf0e51fa815543ea8fd48c21","ssdeep":"3072:9luWVXblJ5wtU9CEhbpjVWpuDSoihVH7NFxvO9hk3ib:91VXblJ5wtUkEh1hSuGhpZqGm","tlshash":"b1f31229e290d2d6cd970ac1a326b5aaedcc70a5edea9bef514ccd002c463d97f0035d","first_seen":"2025-05-24T13:08:23.52094Z","last_seen":"2026-01-10T06:23:00.397014Z","times_seen":2,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":61,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?good=123220810\u0026z=0.7294042770193125","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:39.647Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/?good=123220810\u0026z=0.7294042770193125 HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:39 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__; expires=Mon, 09-Feb-2026 06:22:39 GMT; Max-Age=2592000; path=/\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?good=123220810\u0026z=0.6907252207645448","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:49.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/?good=123220810\u0026z=0.6907252207645448 HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:49 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__; expires=Mon, 09-Feb-2026 06:22:49 GMT; Max-Age=2592000; path=/\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-10T06:22:33.956Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__; expires=Mon, 09-Feb-2026 06:22:34 GMT; Max-Age=2592000; path=/\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:3.6.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Hosted Libraries","description":"Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries.","website":"https://developers.google.com/speed/libraries","common_platform_enumeration":"","icon":"Google Developers.svg","categories":["CDN"]}],"data":{"size":4838,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (455)","md5":"a97b8fef03b6510fe422a789ecbb5597","sha1":"07b2ddef798130e0b95adade2c4dfa5497c4c7a5","sha256":"24bfd7c2e7c5d684c35030b7f16a2656bbed95a5e8a64f4bdc93752e8b655fa4","sha512":"576c4ed67967f6cebd9b2540d6b2fa9000084270bf1b41aaf20d796c638df4f3419e1fde8af766653c94009564bc374ce002a1bf28d77ee2b0c51bb28eb07fdb","ssdeep":"48:iWG1HR6QzqFjU6bDXQzquU6bWSXv1zdmiZd1MbB7CRiPV6:TaxYAiDNiWS/1/ZgCRiPV6","tlshash":"76a1225414f569b3129b44d2aa72af8b7fc1e247e60b664472fe0fe40fe3e44c917829","first_seen":"2026-01-10T06:23:00.397971Z","last_seen":"2026-01-10T06:23:00.397971Z","times_seen":1,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":79,"dns":16,"connect":27,"send":0,"wait":29,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/images/logo-clothoff-active.svg","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/images/logo-clothoff-active.svg HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 14102\r\nlast-modified: Tue, 26 Sep 2023 05:35:04 GMT\r\netag: \"65126d88-3716\"\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14102,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"28cfe97e391440f64ca649015e548aa0","sha1":"9c394426a6f0b34e5f1114ff34bddc05e25aae8c","sha256":"066cab25cf308563b3ba73fa768e4404b9bfabe50ea7f3ef490dab635ee46f11","sha512":"b3b117662388992077086b8b92922a51570da339da07553488c46a19e33d1c98f0b62b9f34a1becd3186559d5065364e770577a6c085cc29a6f1f0acc0dad849","ssdeep":"384:Nvh8w/0BMefNvh8w/0BMefNvh8w/0BMefvvh8w/0BMef9:NuFfFuFfFuFfXuFfV","tlshash":"385222e5a3ea63e06006e3f0af57e8707b5724aa3e22c56d4bec7d40fe6845c4859dc1","first_seen":"2023-09-12T19:03:52Z","last_seen":"2026-01-10T06:23:00.399833Z","times_seen":7,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/images/girl-en-1.jpg","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/images/girl-en-1.jpg HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/assets/css/styles.css\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 170948\r\nlast-modified: Wed, 24 Jan 2024 01:39:58 GMT\r\netag: \"65b06a6e-29bc4\"\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":170948,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3","md5":"7ea95b1d04322a518e433d9c6a8d6027","sha1":"2e07b3b700542de847b8feabc71ea2fd3d1f8bd4","sha256":"76a41a6c6a5ffccef6d50b84cb85528f2a54ac391365f65f1fd0cb6d18c82b0e","sha512":"30c41afe3ba15b3e450857573281c93cf2151c5dd58c5ecf966ba2db3e493238118f6c374194d36507a8be7d3c561abf7e658a0af30b22a6c19cc087f69137c4","ssdeep":"3072:bisWVchDF8F70LDaSQOqR50ILKImgor0pJdMeZZFK:bKmDMkQTRhwgoYpzMeZ/K","tlshash":"81f3129462f4b7d0696b23848247bf4f2f3774d39b31b7650a648feb099668c50172f2","first_seen":"2025-05-24T13:08:23.507076Z","last_seen":"2026-01-10T06:23:00.401242Z","times_seen":2,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/favicon.ico","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.635Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlocation: /\r\nstrict-transport-security: max-age=15768000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":205,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 521 No Reason Phrase\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__; expires=Mon, 09-Feb-2026 06:22:34 GMT; Max-Age=2592000; path=/\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"521","status_text":"No Reason Phrase","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"90042819c86c2a19f4db14b22fb184cc","sha1":"b175c79dbc43181aa6a70a40cb478d7fb758be66","sha256":"55da674c27bedee0f97e089f9eb701a31d2f6942f99c8e0cfe649c02fee06355","sha512":"8efe03b22538ddb734acf3a3457928aa046642eb67073e3ded734a535803c64bf0d6b7f5f47c11405aae785a161ef59d9939c4ab07174811562d68306762fdc8","ssdeep":"","tlshash":"bad0129794e298c150130e490b869789de51921b089d8a0532ced6577fc7c56c5c32a4","first_seen":"2024-12-16T19:53:57.572694Z","last_seen":"2026-04-04T09:37:03.354265Z","times_seen":15,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/js/main.js","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/js/main.js HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 497\r\nlast-modified: Tue, 26 Sep 2023 05:35:04 GMT\r\netag: \"65126d88-1f1\"\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":497,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"9a15733186f1fe16ecfee6c13622c608","sha1":"3197c7619edaedcbc951cdfb20435137c8a53080","sha256":"be52cde65f3c9a49d2321641e5bdf8b7d8204bf6e73edef22c6dfb1f27f60f8e","sha512":"17997554ed8f46acf2d785290c770b07fcf4dca8429024b4be4580d1c6ba7d431da11f637eb41e96d283e2ed74a08201be1d0425447ed46ca3a2364c729ddf08","ssdeep":"","tlshash":"e0f0825470b353a0313f247b4febd489ac24282f42d4bd953c1e55f08f5aeb072a464b","first_seen":"2024-08-19T18:42:01.119827Z","last_seen":"2026-01-10T06:23:00.404273Z","times_seen":8,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/assets/fonts/SegoeUIBold.ttf","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/assets/fonts/SegoeUIBold.ttf HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/assets/css/styles.css\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:34 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 36056\r\nlast-modified: Tue, 26 Sep 2023 05:35:04 GMT\r\netag: \"65126d88-8cd8\"\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":36056,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 18 tables, 1st \"FFTM\", 72 names, Macintosh","md5":"65099f98c7cb19b3dac57b15a6a708cf","sha1":"b2b26ea5a35f7c2f107d358f584985aa14218c4d","sha256":"3084cb39c0f24d7dfa6b576014ec75d0c3b9e852e1a545eaa96253e087f02a2b","sha512":"2896944647f9df85f48af9c92fce064a58d61417e7110b524807201266cfa24600ab1f3adfd3c847815cd3526c9a2d4153f34254b3c1f5a3f44a547f49ea3635","ssdeep":"768:3U7s5rJJvlEdk4vZh56zW1jZWvdJajdccc1JhfR:k7sFIVZhrj+UwZ","tlshash":"02f22942e3d6920df1bb0e7848b8638bd776fe311a76c34f509d669dda420d42c3279a","first_seen":"2023-04-05T14:29:51Z","last_seen":"2026-03-27T13:45:50.944112Z","times_seen":369,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:34.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://24hdeepnude.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 10 Jan 2026 03:16:55 GMT\r\nexpires: Sun, 10 Jan 2027 03:16:55 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nage: 11139\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-04T10:49:10.931346Z","times_seen":714307,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":52,"dns":1,"connect":7,"send":0,"wait":8,"receive":9,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"24hdeepnude.com/clothoff/en/default48_1/?good=123220810\u0026z=0.45198993190806547","fqdn":"24hdeepnude.com","domain":"24hdeepnude.com","tld":"com"},"ip":{"addr":"135.181.168.156","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea","date":"2026-01-10T06:22:54.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"24hdeepnude.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 24 Nov 2025 04:01:40 GMT","end":"Sun, 22 Feb 2026 04:01:39 GMT"},"fingerprint":{"sha1":"74:27:9B:31:7A:93:EC:A4:A6:4C:80:07:45:5E:47:87:62:DE:A4:FE","sha256":"A1:58:68:69:59:32:49:DF:0E:A7:DA:D3:80:E3:B8:F0:E8:A5:2D:D6:26:46:28:2C:58:57:AC:D5:FF:C0:3D:53"}}},"request":{"raw":"GET /clothoff/en/default48_1/?good=123220810\u0026z=0.45198993190806547 HTTP/1.1\r\nHost: 24hdeepnude.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://24hdeepnude.com/clothoff/en/default48_1/?flow=1964\u0026l=546\u0026utm_source=Fuckyea\r\nCookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 10 Jan 2026 06:22:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: ab4da9561d971b713e756c4ae7cb16e854460e0b=eNqrViotVrJScitNzq5MTVTSUUoDcg0tzUx0lHKUrExNzGoBsPAJdw__; expires=Mon, 09-Feb-2026 06:22:54 GMT; Max-Age=2592000; path=/\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T10:49:22.366716Z","times_seen":13328728,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"24hdeepnude.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}