{"report_id":"c5381fc3-7bcf-4934-b894-69f32cd1e500","version":6,"status":"done","tags":[],"date":"2025-05-28T22:38:16Z","url":{"schema":"http","addr":"nudeleakteen.com/","fqdn":"nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"192.187.111.221","port":0,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","fqdn":"ww1.nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"title":"nudeleakteen.com"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-06T22:38:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ww1.nudeleakteen.com","ip":{"addr":"76.223.26.96","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":3,"received_data":4998,"sent_data":1302,"comment":"","tags":null,"fingerprints":null},{"fqdn":"nudeleakteen.com","ip":{"addr":"192.187.111.221","port":443,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":3620,"sent_data":485,"comment":"","tags":null,"fingerprints":null},{"fqdn":"yfdpco.com","ip":{"addr":"208.91.196.46","port":80,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"domain_registered":"2025-03-03","domain_rank":0,"first_seen":"2025-03-18T08:32:39.216281Z","last_seen":"2025-05-21T23:51:23.354828Z","alert_count":1,"request_count":1,"received_data":951,"sent_data":697,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-05-28","alert":"Sinkholed","trigger":"yfdpco.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","fqdn":"ww1.nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"76.223.26.96","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d78fae9e439050b8e7b2699991a9888d","sha1":"216e046eda30ae5f631090650a91bb6bca5efacb","sha256":"b0e6ebb2ca4a255aad1e11e59a26cb68e203dae641df1f73c8719a42801dce18","sha512":"67e00aca95bf23ffb25f35ceebee19852c079cf282930f9de133af29b6658e3686c129fa526e47606eccdd28f26102317ac25943b27ee2a614e115b5c40eee6c","ssdeep":"","tlshash":"34018b0459f430f18a4275f94d0bc809b528e01315058f617f2c53d02fa5479d6deffa","size":673,"data":"","first_seen":"2025-05-28T22:38:20.175869Z","last_seen":"2025-05-28T22:38:20.175869Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","fqdn":"ww1.nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"76.223.26.96","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a721fadebac58116f06d5f8f84bcfe5a","sha1":"413588bc107bd1be0cbd14345fb68c9b8ba14b38","sha256":"912e5797a8e5f63052f4171a842ef7e90701101824c00a4dab15ce20f67605e0","sha512":"6604e4300d4690a817c03e803c0b7957170181effb5710cf86d602ebd6f52699864fd3a62ebd3b173dc58e24911266a2258a212e55acf3323f39a41d6f8ddc5d","ssdeep":"","tlshash":"12c08c7b3e8220304bdf765f285ca3083820800a68a3a6077c6c09ea4ff1f47551ab58","size":164,"data":"","first_seen":"2025-03-03T19:06:17.344232Z","last_seen":"2026-04-05T09:14:33.136723Z","times_seen":36702,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"ww1.nudeleakteen.com/munin/a/ls?t=68379043\u0026token=ed57f0442e2d06639f63560e9c39d9480019dc66","fqdn":"ww1.nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"76.223.26.96","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"http://ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","date":"2025-05-28T22:37:55.595Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /munin/a/ls?t=68379043\u0026token=ed57f0442e2d06639f63560e9c39d9480019dc66 HTTP/1.1\r\nHost: ww1.nudeleakteen.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 201 Created\r\nAccept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile\r\nAccept-Ch-Lifetime: 30\r\nAccess-Control-Allow-Methods: POST, OPTIONS\r\nAccess-Control-Allow-Origin: \r\nAccess-Control-Max-Age: 86400\r\nCharset: utf-8\r\nContent-Length: 0\r\nContent-Type: text/javascript;charset=UTF-8\r\nDate: Wed, 28 May 2025 22:37:55 GMT\r\nServer: Caddy, nginx\r\nStatus: 201 Created\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_dxCOsX9HWijrjzxWPCVgwB8D3AuM/BHID0nx+EMT+dpwApMVLwb2aR6nYSEXOq17/Y3ErZYW0nSwYs8hUsy/Gg==\r\nX-Log-Success: 6837904358e2765ca101a529\r\n\r\n","headers":null,"cookies":null,"status_code":"201","status_text":"Created","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.nudeleakteen.com/favicon.ico","fqdn":"ww1.nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"76.223.26.96","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"http://ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","date":"2025-05-28T22:37:55.620Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ww1.nudeleakteen.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nContent-Length: 0\r\nContent-Type: image/x-icon\r\nDate: Wed, 28 May 2025 22:37:55 GMT\r\nEtag: \"670f7248-0\"\r\nLast-Modified: Wed, 16 Oct 2024 07:59:04 GMT\r\nServer: Caddy, nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nudeleakteen.com/","fqdn":"nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"192.187.111.221","port":443,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-28T22:37:53.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"nudeleakteen.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 14 Apr 2025 01:17:35 GMT","end":"Sun, 13 Jul 2025 01:17:34 GMT"},"fingerprint":{"sha1":"E1:E0:6B:B2:2E:C1:1C:AC:6B:16:B4:7C:CE:3D:84:F5:83:F1:D5:99","sha256":"6E:EB:F5:B1:A9:44:AE:FA:90:7D:04:49:F1:DC:83:34:71:AF:DB:5C:53:06:C3:10:45:34:A9:66:52:C3:4E:9A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: nudeleakteen.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":1688,"data":"{\"name\":\"IDUX_ESTSClientTelemetryEvent_WebWatson\",\"time\":\"2025-05-28T22:37:52.321Z\",\"ver\":\"4.0\",\"iKey\":\"o:b0c252808e614e949086e019ae1cb300\",\"ext\":{\"app\":{\"ver\":\"2.1.20824.5\",\"name\":\"IDUX_ESTSClientTelemetryEvent_WebWatson\",\"sesId\":\"PLZPadAT40iB+Yp8sh/Q33\",\"userId\":\"p: 1800\",\"locale\":\"en\"},\"cloud\":{\"role\":\"FRC\",\"roleInstance\":\"PA2XXXX\",\"roleVer\":\"2.1.20824.5\"},\"sdk\":{\"ver\":\"1DS-Web-JS-3.2.6\",\"seq\":1,\"installId\":\"d21c83b6-8d28-471c-bc61-d8e1de147d47\",\"epoch\":\"1708865957\"},\"user\":{\"locale\":\"en-US\"},\"web\":{\"domain\":\"login.microsoftonline.com\",\"userConsent\":false},\"intweb\":{},\"utc\":{\"popSample\":100,\"eventFlags\":1048576},\"loc\":{\"tz\":\"+00:00\"},\"metadata\":{\"f\":{\"viewId\":{\"t\":6}}}},\"data\":{\"baseData\":{\"properties\":{\"version\":\"\"}},\"viewId\":55,\"Data\":\"{\\\"pltMetrics\\\":{\\\"apiTimingInfo\\\":[],\\\"isPlt1\\\":false,\\\"plt\\\":831,\\\"timing\\\":{\\\"navigationStart\\\":1748471870704,\\\"unloadEventStart\\\":0,\\\"unloadEventEnd\\\":0,\\\"redirectStart\\\":0,\\\"redirectEnd\\\":0,\\\"fetchStart\\\":1748471870711,\\\"domainLookupStart\\\":1748471870787,\\\"domainLookupEnd\\\":1748471870797,\\\"connectStart\\\":1748471870803,\\\"connectEnd\\\":1748471870847,\\\"secureConnectionStart\\\":1748471870818,\\\"requestStart\\\":1748471870847,\\\"responseStart\\\":1748471870908,\\\"responseEnd\\\":1748471870909,\\\"domLoading\\\":1748471870971,\\\"domInteractive\\\":1748471871357,\\\"domContentLoadedEventStart\\\":1748471871368,\\\"domContentLoadedEventEnd\\\":1748471871377,\\\"domComplete\\\":1748471871443,\\\"loadEventStart\\\":1748471871443,\\\"loadEventEnd\\\":1748471871542},\\\"pltOverallTransferBucket\\\":14,\\\"dns\\\":10,\\\"tcp\\\":44,\\\"pageSource\\\":\\\"LPerf\\\"}}\",\"ServerPageID\":\"1104\",\"PageName\":\"ConvergedSignIn\",\"ServiceID\":\"3\",\"CorrelationId\":\"6a9a4d18-1f75-7ab4-4612-4eb43557fef0\"}}"}},"response":{"raw":"HTTP/2 302 Found\r\ncache-control: max-age=0, private, must-revalidate\r\ncontent-length: 11\r\ndate: Wed, 28 May 2025 22:37:54 GMT\r\nlocation: http://ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0\r\nserver: Cowboy\r\nset-cookie: sid=654ded91-3c14-11f0-ac76-4d98c1e41df0; path=/; domain=.nudeleakteen.com; expires=Tue, 16 Jun 2093 01:52:01 GMT; max-age=2147483647; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":3206,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":1242,"timings":{"blocked":561,"dns":144,"connect":114,"send":0,"wait":117,"receive":1,"ssl":300},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","fqdn":"ww1.nudeleakteen.com","domain":"nudeleakteen.com","tld":"com"},"ip":{"addr":"76.223.26.96","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-28T22:37:54.603Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0 HTTP/1.1\r\nHost: ww1.nudeleakteen.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile\r\nAccept-Ch-Lifetime: 30\r\nContent-Encoding: gzip\r\nContent-Length: 1491\r\nContent-Type: text/html; charset=UTF-8\r\nDate: Wed, 28 May 2025 22:37:55 GMT\r\nServer: Caddy, nginx\r\nVary: Accept-Encoding\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_hpk3ogYzAzAUx1HP4J1+okHhgg9TVwKj6CAqsziHbr9Q1bMpUzEtL4AzkJ65AfNSxeQ3mJRJQTaz0S+LqK1dqg==\r\nX-Buckets: bucket003\r\nX-Domain: nudeleakteen.com\r\nX-Language: norwegian\r\nX-Pcrew-Blocked-Reason: hosting network\r\nX-Pcrew-Ip-Organization: Blix Solutions\r\nX-Redirect: skenzo\r\nX-Subdomain: ww1\r\nX-Template: tpl_CleanPeppermintBlack_twoclick\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3206,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (337)","md5":"0c35dd9b3f71facf15e0992d5a5c0af5","sha1":"902bb4bc551af88bd8fb9e1056f39ece82856734","sha256":"0cfaaf9c9039b2cb1a19b9aeccbf105a060d55c61dd258bf3b1a7cd89934dea9","sha512":"768440ac4329015917c2096767b1ee197ac1569b5be7d561668e74753eddcc3c39ec73af6567bcc06158807cca6a9334ffa10330547a42444b55ebc2adb22395","ssdeep":"","tlshash":"1061a4423ee63098810be0a08d95b605bd0681175706cc5ef9ec34adaf8969854e3fe8","first_seen":"2025-05-28T22:38:20.173863Z","last_seen":"2025-05-28T22:38:20.173863Z","times_seen":1,"resource_available":false,"data":null}},"time_used":945,"timings":{"blocked":243,"dns":240,"connect":1,"send":0,"wait":460,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"yfdpco.com/sk-park.php?pid=9PO15V947\u0026dn=nudeleakteen.com\u0026ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026requrl=http%3A%2F%2Fww1.nudeleakteen.com%2F%3Fsubid1%3D654ded91-3c14-11f0-ac76-4d98c1e41df0\u0026al=en-US%2Cen%3Bq%3D0.5","fqdn":"yfdpco.com","domain":"yfdpco.com","tld":"com"},"ip":{"addr":"208.91.196.46","port":80,"asn":40034,"as":"CONFLUENCE-NETWORK-INC","country":"British Virgin Islands","country_code":"VG"},"is_navigation_request":false,"resource_type":"","requested_by":"http://ww1.nudeleakteen.com/?subid1=654ded91-3c14-11f0-ac76-4d98c1e41df0","date":"2025-05-28T22:37:55.585Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /sk-park.php?pid=9PO15V947\u0026dn=nudeleakteen.com\u0026ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026requrl=http%3A%2F%2Fww1.nudeleakteen.com%2F%3Fsubid1%3D654ded91-3c14-11f0-ac76-4d98c1e41df0\u0026al=en-US%2Cen%3Bq%3D0.5 HTTP/1.1\r\nHost: yfdpco.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.nudeleakteen.com/\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Wed, 28 May 2025 22:37:47 GMT\r\nServer: Apache\r\nReferrer-Policy: no-referrer-when-downgrade\r\nAccept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nPermissions-Policy: ch-ua-platform-version=(\"https://dts.gnpge.com\"), ch-ua-model=(\"https://dts.gnpge.com\")\r\nContent-Length: 299\r\nKeep-Alive: timeout=5, max=61\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":299,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"bb66e28b0f0649997f97579d2c30acec","sha1":"7810f842a0c5bad4170762b69bbb17601772bd7d","sha256":"9fc60fdfd6c15bf1836e6f5d0021da261318757874b9f66f028187625a5e6163","sha512":"f9a53f2f6e4e95d384f5e2562aa6e40355cc54057b32742cd4e23b3658cb9be0f0f4fa8b2665a748070460f054fb1cec2d2d42526d096ade53501158cdb69497","ssdeep":"","tlshash":"98e0c23f60001c0e55b2a03879c33f0687abaa5281992584a5e5425b9bcabeac9c725a","first_seen":"2024-09-10T09:51:06Z","last_seen":"2025-07-08T01:47:46.208902Z","times_seen":443,"resource_available":false,"data":null}},"time_used":1961,"timings":{"blocked":219,"dns":131,"connect":129,"send":0,"wait":1481,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-05-28","alert":"Sinkholed","trigger":"yfdpco.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}