{"report_id":"f2a88682-6c27-47a6-8d8c-1e6e978ebe73","version":6,"status":"done","tags":[],"date":"2023-11-07T12:18:34Z","url":{"schema":"http","addr":"loliporn6s6cdjjo.onion.ly/","fqdn":"loliporn6s6cdjjo.onion.ly","domain":"onion.ly","tld":"ly"},"ip":{"addr":"209.141.39.59","port":0,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"loliporn6s6cdjjo.onion.ly/","fqdn":"loliporn6s6cdjjo.onion.ly","domain":"onion.ly","tld":"ly"},"title":"Darknet TOR / I2P Proxy and Gateway"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T15:18:51Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-11-06 21:53:55","alert_count":0,"request_count":1,"received_data":1721,"sent_data":439,"comment":"","tags":null,"fingerprints":null},{"fqdn":"zerossl.ocsp.sectigo.com","ip":{"addr":"172.64.149.23","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2018-08-16","domain_rank":4049,"first_seen":"2020-05-09 21:05:29","last_seen":"2023-11-06 18:24:30","alert_count":0,"request_count":1,"received_data":807,"sent_data":338,"comment":"","tags":null,"fingerprints":null},{"fqdn":"loliporn6s6cdjjo.onion.ly","ip":{"addr":"209.141.39.59","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":31236,"sent_data":927,"comment":"","tags":null,"fingerprints":null},{"fqdn":"maxcdn.bootstrapcdn.com","ip":{"addr":"104.18.11.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-25","domain_rank":724,"first_seen":"2014-06-18 02:37:31","last_seen":"2023-11-06 18:15:13","alert_count":0,"request_count":1,"received_data":36641,"sent_data":461,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2023-11-06 23:29:05","alert_count":0,"request_count":1,"received_data":19628,"sent_data":528,"comment":"","tags":null,"fingerprints":null},{"fqdn":"simplesharebuttons.com","ip":{"addr":"162.243.82.235","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"domain_registered":"2013-03-26","domain_rank":243997,"first_seen":"2013-11-12 09:28:10","last_seen":"2023-11-06 22:28:55","alert_count":0,"request_count":4,"received_data":4849,"sent_data":1819,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-11-07T12:18:17Z","timestamp":1699359497,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":46051,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET POLICY DNS Query to .onion proxy Domain (onion . ly)","source":"{\"timestamp\":\"2023-11-07T12:18:17.910208+0000\",\"flow_id\":941259984855936,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.23\",\"src_port\":46051,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2030215,\"rev\":2,\"signature\":\"ET POLICY DNS Query to .onion proxy Domain (onion . ly)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2020_05_26\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Major\"],\"updated_at\":[\"2020_05_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":7361,\"rrname\":\"loliporn6s6cdjjo.onion.ly\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":96,\"bytes_toclient\":0,\"start\":\"2023-11-07T12:18:17.910208+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-11-07T12:18:17Z","timestamp":1699359497,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":36843,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET POLICY DNS Query to .onion proxy Domain (onion . ly)","source":"{\"timestamp\":\"2023-11-07T12:18:17.910366+0000\",\"flow_id\":470310378398750,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.23\",\"src_port\":36843,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2030215,\"rev\":2,\"signature\":\"ET POLICY DNS Query to .onion proxy Domain (onion . ly)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2020_05_26\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Major\"],\"updated_at\":[\"2020_05_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":39022,\"rrname\":\"loliporn6s6cdjjo.onion.ly\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":96,\"bytes_toclient\":0,\"start\":\"2023-11-07T12:18:17.910366+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-11-07T12:18:18Z","timestamp":1699359498,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":60828,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET POLICY DNS Query to .onion proxy Domain (onion . ly)","source":"{\"timestamp\":\"2023-11-07T12:18:18.033654+0000\",\"flow_id\":282852235838326,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.23\",\"src_port\":60828,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2030215,\"rev\":2,\"signature\":\"ET POLICY DNS Query to .onion proxy Domain (onion . ly)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2020_05_26\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Major\"],\"updated_at\":[\"2020_05_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":42419,\"rrname\":\"loliporn6s6cdjjo.onion.ly\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":96,\"bytes_toclient\":0,\"start\":\"2023-11-07T12:18:18.033654+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-11-07T12:18:18Z","timestamp":1699359498,"ip_dst":{"addr":"209.141.39.59","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":44208,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET POLICY .onion.ly Proxy domain in SNI","source":"{\"timestamp\":\"2023-11-07T12:18:18.364537+0000\",\"flow_id\":146744722229190,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.23\",\"src_port\":44208,\"dest_ip\":\"209.141.39.59\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2030216,\"rev\":2,\"signature\":\"ET POLICY .onion.ly Proxy domain in SNI\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2020_05_26\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Major\"],\"updated_at\":[\"2020_05_26\"]}},\"tls\":{\"sni\":\"loliporn6s6cdjjo.onion.ly\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":927,\"bytes_toclient\":3653,\"start\":\"2023-11-07T12:18:18.034758+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-11-07T12:18:20Z","timestamp":1699359500,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":44629,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ET POLICY DNS Query to .onion proxy Domain (onion . ly)","source":"{\"timestamp\":\"2023-11-07T12:18:20.136932+0000\",\"flow_id\":1147332515862244,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.23\",\"src_port\":44629,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2030215,\"rev\":2,\"signature\":\"ET POLICY DNS Query to .onion proxy Domain (onion . ly)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2020_05_26\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Major\"],\"updated_at\":[\"2020_05_26\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":2217,\"rrname\":\"loliporn6s6cdjjo.onion.ly\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":96,\"bytes_toclient\":0,\"start\":\"2023-11-07T12:18:20.136932+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"loliporn6s6cdjjo.onion.ly/","fqdn":"loliporn6s6cdjjo.onion.ly","domain":"onion.ly","tld":"ly"},"ip":{"addr":"209.141.39.59","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"67c1d16cc14f70508bb0637ff73b40f7","sha1":"812ec1c6adab450f6fc92e56d5aa71318a67bcda","sha256":"a3d9ff06518432e3799bfd365134f02657cd5ce009e258fad0e0c3940253c3a6","sha512":"adfb08d18864987bc99372f6a7521d0b0be7f29471c0d8ebed764b2d02e8533c56fd2cec5e71cdb559b5d45c6dbc8686ea5f1402f3b3d5cafe3e3895b678cdf2","ssdeep":"","tlshash":"9f90023661a954a604e928592d515145b8254805351e3402cd0c5961405cd5245649cc","size":54,"data":"","first_seen":"2023-03-13T08:54:03Z","last_seen":"2026-02-06T23:49:07.439097Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"zerossl.ocsp.sectigo.com/","fqdn":"zerossl.ocsp.sectigo.com","domain":"sectigo.com","tld":"com"},"ip":{"addr":"172.64.149.23","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-07T12:18:18.535459137Z","timestamp":1699359498535,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: zerossl.ocsp.sectigo.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 07 Nov 2023 12:18:18 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 315\r\nConnection: keep-alive\r\nLast-Modified: Mon, 06 Nov 2023 21:05:26 GMT\r\nExpires: Mon, 13 Nov 2023 21:05:25 GMT\r\nEtag: \"dd780660eb1fa2635a2a1a5898bcdb9f789db953\"\r\nCache-Control: max-age=549426,s-maxage=1800,public,no-transform,must-revalidate\r\nX-CCACDN-Proxy-ID: mcdpinlb6\r\nX-Frame-Options: SAMEORIGIN\r\nCF-Cache-Status: DYNAMIC\r\nServer: cloudflare\r\nCF-RAY: 822584a18ef70b4d-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":315,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"32b48c55dc6ab2883c690ce045d45548","sha1":"dd780660eb1fa2635a2a1a5898bcdb9f789db953","sha256":"cc89d6657f283b8058458b8c404a637a08675776e85229086ae7116dba7243c4","sha512":"328120000cfaf35fcc56dd0222a9b03f01c4a0e9de46ff8bbd7631b1d6c4d49c2b21308fbc289353b43abac4a736435322aa58e909f3015052f7a624d3139856","ssdeep":"","tlshash":"53e07d70439016d94bddaeb42e619dab3c1693c0b1c2859a28f9d6e1074637d6c6c014","first_seen":"2023-11-07T13:18:41Z","last_seen":"2023-11-07T13:18:41Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loliporn6s6cdjjo.onion.ly/","fqdn":"loliporn6s6cdjjo.onion.ly","domain":"onion.ly","tld":"ly"},"ip":{"addr":"209.141.39.59","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-07T12:18:18.044Z","timestamp":1699359498044,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"onion.ly","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Sun, 03 Sep 2023 00:00:00 GMT","end":"Sat, 02 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"91:97:35:D1:72:69:66:06:D2:7D:D3:2B:70:B4:52:F5:29:0A:4F:A0","sha256":"14:26:E9:75:21:5D:92:88:34:3C:90:F0:66:BE:75:46:3A:DC:70:9B:DE:95:0B:8D:F9:C0:C0:58:5E:43:BF:80"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: loliporn6s6cdjjo.onion.ly\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Tue, 07 Nov 2023 12:17:41 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15426,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16810), with CRLF line terminators","md5":"11c4774d69e11ded49384d453d8e2669","sha1":"017c5d9e5898525e971072c2facdfa90d6d56b6a","sha256":"11d99a30001031e6a643cd2c7928c962053a59fcd6fcf519a88cabcfcec49bb2","sha512":"9a0c56c25910563f2c2396b772423059e5b27e9960c4a723d3466aee982dbceb24409c8d36fbeec03e6875f395877e2000ab5f3137b8530ab57c49dd1950a901","ssdeep":"384:2S6aTYgNQpRycSZTj6g0jcbpqX0xxBXvJwJxiqHGNtWWaj/:2SwgZEjaT7/Jwa3t3aT","tlshash":"16a2afa77688381e0b248147a032714cc1378d9bfa5758e6f9bd2163b7898d741327eb","first_seen":"2023-07-06T03:41:00Z","last_seen":"2025-01-25T11:01:39.923556Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1782,"timings":{"blocked":534,"dns":1,"connect":163,"send":0,"wait":528,"receive":175,"ssl":377},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css","fqdn":"maxcdn.bootstrapcdn.com","domain":"bootstrapcdn.com","tld":"com"},"ip":{"addr":"104.18.11.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.367Z","timestamp":1699359499367,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Fri, 30 Dec 2022 00:00:00 GMT","end":"Sat, 30 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A","sha256":"A9:0D:CB:FA:8B:27:40:D5:69:3F:93:AD:77:1E:A7:F8:FA:9A:FE:2E:75:63:04:E9:12:F7:63:DD:B0:C2:87:F5"}}},"request":{"raw":"GET /bootstrap/3.4.1/css/bootstrap.min.css HTTP/1.1\r\nHost: maxcdn.bootstrapcdn.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Nov 2023 12:18:19 GMT\r\ncontent-type: text/css; charset=utf-8\r\nvary: Accept-Encoding\r\ncdn-pullzone: 252412\r\ncdn-uid: b1941f61-b576-4f40-80de-5677acb38f74\r\ncdn-requestcountrycode: DE\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31919000\r\netag: W/\"7f89537eaf606bff49f5cc1a7c24dbca\"\r\nlast-modified: Mon, 25 Jan 2021 22:04:00 GMT\r\ncdn-cachedat: 01/04/2023 09:19:49\r\ncdn-proxyver: 1.03\r\ncdn-requestpullcode: 200\r\ncdn-requestpullsuccess: True\r\ncdn-edgestorageid: 1077\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncdn-status: 200\r\ncdn-requestid: 92301460bea3958a6918b7bf09d97faf\r\ncdn-cache: HIT\r\ncf-cache-status: HIT\r\nage: 1070987\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nserver: cloudflare\r\ncf-ray: 822584a73e1c56cb-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35717,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65369)","md5":"7f89537eaf606bff49f5cc1a7c24dbca","sha1":"b0972fdcce82fd583d4c2ccc3f2e3df7404a19d0","sha256":"6d92dfc1700fd38cd130ad818e23bc8aef697f815b2ea5face2b5dfad22f2e11","sha512":"0e8a7fbd6de23ad6b27ab95802a0a0915af6693af612bc304d83af445529ce5d95842309ca3405d10f538d45c8a3a261b8cff78b4bd512dd9effb4109a71d0ab","ssdeep":"768:rf7Gxw/Tc/hOWlJ+UtVIuiHlqAmQI4X8OAdXFxbv8KIf2BdU+JdOMx1iVvH1FS:sw/YGGIuiHlqAmO8l1bNXdOqT","tlshash":"0dc3c7a0f21031ea7333c55a71d0fd872219a153e6664eb7f22f25d88f846ca1673f1a","first_seen":"2023-03-07T12:03:40Z","last_seen":"2026-05-15T16:51:47.27637Z","times_seen":18930,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":9,"dns":1,"connect":1,"send":0,"wait":12,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/anton/v25/1Ptgg87LROyAm3Kz-C8.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.556Z","timestamp":1699359499556,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:10:00 GMT","end":"Mon, 08 Jan 2024 08:09:59 GMT"},"fingerprint":{"sha1":"EB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28","sha256":"EB:45:AD:8B:1A:F1:E3:D7:2F:1C:1C:9A:0A:74:58:7C:98:F0:94:C9:73:5D:3A:09:A6:FF:EF:8C:01:EA:FD:F8"}}},"request":{"raw":"GET /s/anton/v25/1Ptgg87LROyAm3Kz-C8.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://loliporn6s6cdjjo.onion.ly\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 18796\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 07 Nov 2023 05:14:13 GMT\r\nexpires: Wed, 06 Nov 2024 05:14:13 GMT\r\ncache-control: public, max-age=31536000\r\nage: 25446\r\nlast-modified: Thu, 24 Aug 2023 20:21:17 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18796,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 18796, version 1.0\\012- data","md5":"a2675f0a46717d18588f16531f72674d","sha1":"adfe4d6f18d4522b73ef6853ea2084570855f87c","sha256":"f9ad420bf51c2930fc2a49d44209d202cb18acb2d8b82853a01023e69eab6885","sha512":"2c83c9471f0d491debe7339157a9c6bd58fb951cbaf299ff53f251971080e988454bf0d5c4e41fc2061f6efc7c45bc2ee24e58b44ace26dc5f9665505eccadf5","ssdeep":"384:Xd50HqpUvsDf5IRpibtHoRm3tL6sQpZNbib4qQbC6tN+S:XjuvsDOUBo24sQpZNeb4J+BS","tlshash":"a082d08027bb87c2c931db7e4131679d82e779747f5d6758a2988b292d94ac7c2fb002","first_seen":"2023-08-25T22:40:58Z","last_seen":"2026-05-15T10:32:52.944057Z","times_seen":1401,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":60,"dns":1,"connect":7,"send":0,"wait":77,"receive":1,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simplesharebuttons.com/images/somacro/vk.png","fqdn":"simplesharebuttons.com","domain":"simplesharebuttons.com","tld":"com"},"ip":{"addr":"162.243.82.235","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.375Z","timestamp":1699359499375,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"simplesharebuttons.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Oct 2023 07:07:48 GMT","end":"Sun, 14 Jan 2024 07:07:47 GMT"},"fingerprint":{"sha1":"2F:BF:6C:02:20:94:90:AD:D3:AB:5E:A8:2D:F0:58:D8:FC:E5:42:32","sha256":"10:1D:5B:3F:BF:9B:04:02:5D:ED:B2:2E:CF:2C:ED:37:0B:F5:B9:3D:39:2C:66:DC:AA:4E:F0:4E:6E:DD:76:DB"}}},"request":{"raw":"GET /images/somacro/vk.png HTTP/1.1\r\nHost: simplesharebuttons.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.4.6 (Ubuntu)\r\nDate: Tue, 07 Nov 2023 10:51:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 1133\r\nLast-Modified: Fri, 08 Jan 2016 15:57:04 GMT\r\nConnection: keep-alive\r\nETag: \"568fdc50-46d\"\r\nExpires: Tue, 14 Nov 2023 10:51:11 GMT\r\nCache-Control: max-age=604800, public\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1133,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced\\012- data","md5":"4df4cfd688e8b79155cd478af59860a1","sha1":"978ccfd6eb1dc9f86fdeb5537515857820108ed9","sha256":"158d3d319fb79d040001d51e8f74bad1471995d82e9a790855a16f5411e6c587","sha512":"4a5465366b2326e9fc5cba20f51f1f7b2d33f3d0d32822d003b8179310fa4fe1893c8bb233096912a6ad71f13205967a625f9b8efcbf6519e5f084ddbabb646e","ssdeep":"","tlshash":"e22194ddea0e0b558b8a343e13093e93fa6f9da408b5fa5016ae753c176d350bc802d7","first_seen":"2023-04-05T14:00:46Z","last_seen":"2026-05-09T08:27:02.337484Z","times_seen":22,"resource_available":false,"data":null}},"time_used":1069,"timings":{"blocked":479,"dns":27,"connect":114,"send":0,"wait":109,"receive":0,"ssl":337},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simplesharebuttons.com/images/somacro/reddit.png","fqdn":"simplesharebuttons.com","domain":"simplesharebuttons.com","tld":"com"},"ip":{"addr":"162.243.82.235","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.371Z","timestamp":1699359499371,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"simplesharebuttons.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Oct 2023 07:07:48 GMT","end":"Sun, 14 Jan 2024 07:07:47 GMT"},"fingerprint":{"sha1":"2F:BF:6C:02:20:94:90:AD:D3:AB:5E:A8:2D:F0:58:D8:FC:E5:42:32","sha256":"10:1D:5B:3F:BF:9B:04:02:5D:ED:B2:2E:CF:2C:ED:37:0B:F5:B9:3D:39:2C:66:DC:AA:4E:F0:4E:6E:DD:76:DB"}}},"request":{"raw":"GET /images/somacro/reddit.png HTTP/1.1\r\nHost: simplesharebuttons.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.4.6 (Ubuntu)\r\nDate: Tue, 07 Nov 2023 10:51:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 1109\r\nLast-Modified: Fri, 08 Jan 2016 15:57:04 GMT\r\nConnection: keep-alive\r\nETag: \"568fdc50-455\"\r\nExpires: Tue, 14 Nov 2023 10:51:11 GMT\r\nCache-Control: max-age=604800, public\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1109,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced\\012- data","md5":"db58d642e46c7b1e053f1a613890fa9e","sha1":"1bfe5580b174061537400318b0660750fc11582a","sha256":"1ccfde21e3d072d23ce7bfd72cc193beaa2f4460cc44dce6b2d3e3ba23200b35","sha512":"8014fc358da1d232fa70a44d4f5c3c8793119e901d23a26ad83d602682f20714f1825dd3acbbea371405c63d702d3805a5917f3e0b46a44819021dc3372ba92c","ssdeep":"","tlshash":"4c11b6a91b5aaec7c6a094751265c73c98098460d350bdcb4336f3271d300998838f5c","first_seen":"2023-04-05T14:00:46Z","last_seen":"2026-05-09T08:27:02.349813Z","times_seen":33,"resource_available":false,"data":null}},"time_used":1082,"timings":{"blocked":488,"dns":26,"connect":118,"send":0,"wait":108,"receive":0,"ssl":339},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simplesharebuttons.com/images/somacro/facebook.png","fqdn":"simplesharebuttons.com","domain":"simplesharebuttons.com","tld":"com"},"ip":{"addr":"162.243.82.235","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.370Z","timestamp":1699359499370,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"simplesharebuttons.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Oct 2023 07:07:48 GMT","end":"Sun, 14 Jan 2024 07:07:47 GMT"},"fingerprint":{"sha1":"2F:BF:6C:02:20:94:90:AD:D3:AB:5E:A8:2D:F0:58:D8:FC:E5:42:32","sha256":"10:1D:5B:3F:BF:9B:04:02:5D:ED:B2:2E:CF:2C:ED:37:0B:F5:B9:3D:39:2C:66:DC:AA:4E:F0:4E:6E:DD:76:DB"}}},"request":{"raw":"GET /images/somacro/facebook.png HTTP/1.1\r\nHost: simplesharebuttons.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.4.6 (Ubuntu)\r\nDate: Tue, 07 Nov 2023 10:51:11 GMT\r\nContent-Type: image/png\r\nContent-Length: 603\r\nLast-Modified: Fri, 08 Jan 2016 15:57:04 GMT\r\nConnection: keep-alive\r\nETag: \"568fdc50-25b\"\r\nExpires: Tue, 14 Nov 2023 10:51:11 GMT\r\nCache-Control: max-age=604800, public\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":603,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced\\012- data","md5":"e967188caf7ec5836cf260322c775cd5","sha1":"98ad1fb37a4865cefbaefac2278db0673b953f5c","sha256":"ce51a8242cd7db442e699ae88aed60a8411c521792e72bc744725596b2593d45","sha512":"83aabfbdcc402aeddd24e4b67f061672ab9a5353128f4eca43000bf76214f4fb9076648048e952983882415f0e95d880c8e02ebe22d51cfc18cba39567efa58a","ssdeep":"","tlshash":"24f0478e4ed0a050722d01666e5cf03fdc2a4e6757d2a49d4f8141491c24780c46f7d4","first_seen":"2023-05-01T08:56:20Z","last_seen":"2026-05-15T13:09:16.621005Z","times_seen":316,"resource_available":false,"data":null}},"time_used":1118,"timings":{"blocked":502,"dns":27,"connect":124,"send":0,"wait":116,"receive":0,"ssl":346},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"simplesharebuttons.com/images/somacro/twitter.png","fqdn":"simplesharebuttons.com","domain":"simplesharebuttons.com","tld":"com"},"ip":{"addr":"162.243.82.235","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.373Z","timestamp":1699359499373,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"simplesharebuttons.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Oct 2023 07:07:48 GMT","end":"Sun, 14 Jan 2024 07:07:47 GMT"},"fingerprint":{"sha1":"2F:BF:6C:02:20:94:90:AD:D3:AB:5E:A8:2D:F0:58:D8:FC:E5:42:32","sha256":"10:1D:5B:3F:BF:9B:04:02:5D:ED:B2:2E:CF:2C:ED:37:0B:F5:B9:3D:39:2C:66:DC:AA:4E:F0:4E:6E:DD:76:DB"}}},"request":{"raw":"GET /images/somacro/twitter.png HTTP/1.1\r\nHost: simplesharebuttons.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.4.6 (Ubuntu)\r\nDate: Tue, 07 Nov 2023 10:51:12 GMT\r\nContent-Type: image/png\r\nContent-Length: 710\r\nLast-Modified: Fri, 08 Jan 2016 15:57:04 GMT\r\nConnection: keep-alive\r\nETag: \"568fdc50-2c6\"\r\nExpires: Tue, 14 Nov 2023 10:51:12 GMT\r\nCache-Control: max-age=604800, public\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":710,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced\\012- data","md5":"9f5cdfd14d0f21e475ad9d63a0241ada","sha1":"ba218cadb2a03bf957f0c39e650309c773fe0d9b","sha256":"535d31e27871183b70513eff7e011bce2ff2ce3b30bc589b6ebbd805ea0b3ebb","sha512":"1bfbcf92444c5d6cd07d472218c78e40fd8be7f18d284758848faf88da18316bc9cc7546fee394e23d0448ad43beb493fe01d9315e1b49f63c27e4099ed896f9","ssdeep":"","tlshash":"000194de1971acc2cc029f2429a7ba4b2e5ad018e28c849833039698319938e0bd4d29","first_seen":"2023-04-05T14:00:46Z","last_seen":"2026-05-15T13:09:16.603716Z","times_seen":96,"resource_available":false,"data":null}},"time_used":1871,"timings":{"blocked":875,"dns":27,"connect":119,"send":0,"wait":120,"receive":1,"ssl":724},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loliporn6s6cdjjo.onion.ly/favicon.ico","fqdn":"loliporn6s6cdjjo.onion.ly","domain":"onion.ly","tld":"ly"},"ip":{"addr":"209.141.39.59","port":443,"asn":53667,"as":"PONYNET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:20.138Z","timestamp":1699359500138,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"onion.ly","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Sun, 03 Sep 2023 00:00:00 GMT","end":"Sat, 02 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"91:97:35:D1:72:69:66:06:D2:7D:D3:2B:70:B4:52:F5:29:0A:4F:A0","sha256":"14:26:E9:75:21:5D:92:88:34:3C:90:F0:66:BE:75:46:3A:DC:70:9B:DE:95:0B:8D:F9:C0:C0:58:5E:43:BF:80"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: loliporn6s6cdjjo.onion.ly\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Tue, 07 Nov 2023 12:17:43 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15426,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16810), with CRLF line terminators","md5":"11c4774d69e11ded49384d453d8e2669","sha1":"017c5d9e5898525e971072c2facdfa90d6d56b6a","sha256":"11d99a30001031e6a643cd2c7928c962053a59fcd6fcf519a88cabcfcec49bb2","sha512":"9a0c56c25910563f2c2396b772423059e5b27e9960c4a723d3466aee982dbceb24409c8d36fbeec03e6875f395877e2000ab5f3137b8530ab57c49dd1950a901","ssdeep":"384:2S6aTYgNQpRycSZTj6g0jcbpqX0xxBXvJwJxiqHGNtWWaj/:2SwgZEjaT7/Jwa3t3aT","tlshash":"16a2afa77688381e0b248147a032714cc1378d9bfa5758e6f9bd2163b7898d741327eb","first_seen":"2023-07-06T03:41:00Z","last_seen":"2025-01-25T11:01:39.923556Z","times_seen":7,"resource_available":false,"data":null}},"time_used":693,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":176,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Anton","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://loliporn6s6cdjjo.onion.ly/","date":"2023-11-07T12:18:19.368Z","timestamp":1699359499368,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:10:01 GMT","end":"Mon, 08 Jan 2024 08:10:00 GMT"},"fingerprint":{"sha1":"FA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9","sha256":"49:8C:6B:B2:97:76:80:4E:24:97:74:5B:32:58:34:BD:68:38:53:29:53:2A:A7:1E:4D:63:92:60:0F:60:FB:D4"}}},"request":{"raw":"GET /css?family=Anton HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://loliporn6s6cdjjo.onion.ly/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 07 Nov 2023 12:18:19 GMT\r\ndate: Tue, 07 Nov 2023 12:18:19 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1089,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1113), with no line terminators","md5":"3e3173b454afe9bf4d39aa718e113ed0","sha1":"6a48102c45dbd2add58bf511105475a5ee441de0","sha256":"f0a030698bb1c46bfc8b46886fe66e6f1f5f7289c2684a8b4f6de2b4d50dfadd","sha512":"7237851628249781eb839aea70c8bd85406b5fca6dc8b620b7c6fe2113224909fa08dd56aedfa58fd03550ed066afc51cdbba0ff6a929d1cfc6215cffc165508","ssdeep":"","tlshash":"6f21a285042ba104a6834ed223ef7d31de4ef68560a15136affd18de5d8bc26339c71d","first_seen":"2023-08-29T21:20:42Z","last_seen":"2024-08-21T07:49:09.414885Z","times_seen":117,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":95,"dns":3,"connect":8,"send":0,"wait":21,"receive":1,"ssl":88},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}