{"report_id":"8354de51-768a-49c6-b544-73de3baf8262","version":6,"status":"done","tags":[],"date":"2026-04-19T19:17:15Z","url":{"schema":"http","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"104.21.3.41","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"title":"/ stansdad.ch","dom":{"size":267,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"c04ed7952333c640f3e7ce7278d141e5","sha1":"67f8c6817cd6129b8486d257a12dde0882cce23b","sha256":"9a3daf1ed0638002a39f5fac70b2dfa975af40a9e9937e4f802c96a76694c056","sha512":"cae519dab9544a25eced3d1a1e439483ee251f691f005bf0a2793782e6c82740c58f66ff5f523d8f41b15f9ebe6742e10d0c742d4bfa38c1a381f898e13f60c3","ssdeep":"","tlshash":"e3d0231d05f3c125624090924fd172083daa440f93dbcd35f9bf3434cf4439688572d2","dom_hash":"domhasheb310440b2007a281de2b7f77c9d6722","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"104.21.3.41","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-24T19:17:15Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"pics3.inxhost.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"www.stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"www.stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"releases.flowplayer.org","ip":{"addr":"52.84.50.78","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2007-06-05","domain_rank":663429,"first_seen":"2012-07-05T09:08:08Z","last_seen":"2026-04-16T13:09:50.221081Z","alert_count":0,"request_count":1,"received_data":16760,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-04-12T23:11:18.280453Z","alert_count":0,"request_count":1,"received_data":84935,"sent_data":419,"comment":"","tags":null,"fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.agoda.com","ip":{"addr":"96.6.17.27","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"domain_registered":"2004-03-16","domain_rank":2087,"first_seen":"2012-05-23T22:58:56Z","last_seen":"2026-04-12T19:05:40.199176Z","alert_count":0,"request_count":1,"received_data":2957,"sent_data":411,"comment":"","tags":null,"fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Microsoft ASP.NET","description":"ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.","website":"https://www.asp.net","common_platform_enumeration":"cpe:2.3:a:microsoft:asp.net:*:*:*:*:*:*:*:*","icon":"Microsoft ASP.NET.svg","categories":["Web frameworks"]}]},{"fqdn":"agoda.com","ip":{"addr":"103.6.182.20","port":443,"asn":45530,"as":"The Offices at Central World, 27th floor","country":"Hong Kong","country_code":"HK"},"domain_registered":"2004-03-16","domain_rank":1214,"first_seen":"2017-01-30T05:02:55Z","last_seen":"2026-03-28T23:56:42.915272Z","alert_count":0,"request_count":1,"received_data":149,"sent_data":407,"comment":"","tags":null,"fingerprints":[{"name":"F5 BigIP","description":"F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions.","website":"https://www.f5.com/products/big-ip-services","common_platform_enumeration":"cpe:2.3:a:f5:big-ip:*:*:*:*:*:*:*:*","icon":"F5.png","categories":["Reverse proxies"]}]},{"fqdn":"www.stansdad.ch","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-11-02T07:17:52.434519Z","last_seen":"2026-02-13T12:11:59.130901Z","alert_count":4,"request_count":2,"received_data":46270,"sent_data":841,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"nethcdn.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-02-28","domain_rank":61541,"first_seen":"2017-02-02T13:07:31Z","last_seen":"2026-04-17T08:35:16.570995Z","alert_count":0,"request_count":1,"received_data":718,"sent_data":387,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"stansdad.ch","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2012-07-13T11:49:55Z","last_seen":"2026-02-13T12:11:59.28043Z","alert_count":68,"request_count":34,"received_data":264961,"sent_data":17242,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"PHP:5.5.9","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:2.1.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"pics3.inxhost.com","ip":{"addr":"45.130.41.107","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"domain_registered":"2024-04-14","domain_rank":0,"first_seen":"2012-08-13T18:21:23Z","last_seen":"2026-03-03T10:55:03.736373Z","alert_count":1,"request_count":1,"received_data":269,"sent_data":410,"comment":"","tags":null,"fingerprints":[{"name":"PHP:8.2.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"static.cloudflareinsights.com","ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-08-30","domain_rank":4073,"first_seen":"2019-09-24T14:34:56Z","last_seen":"2026-04-12T22:43:52.947527Z","alert_count":0,"request_count":3,"received_data":94626,"sent_data":1500,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2026-04-12T22:24:43.06808Z","alert_count":0,"request_count":1,"received_data":445897,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"stansdad.ch/includes/js/addFav.js","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3507d6e17ac7bcb3c3ff1be66e8d8452","sha1":"b6706a3bbf8f14dd1917f2511a75ad8ce17a832e","sha256":"893a4706e632c8870f385eafd5c1aa581a6dad2e9978b65bea91912e287a64e8","sha512":"daffe993946c448c6cebfc7678a8e9c1b71eeeca2b237a9714bd475059923b39ceaa549be4b0c04db88753b24f1f5e0f763a4fed20f983713ceafcf045407a27","ssdeep":"","tlshash":"8ee0c25d0849a66748f776a8af33d614fc7a47152481e020f98547813c71b97d521de9","size":305,"data":"","first_seen":"2025-10-22T09:39:16.716394Z","last_seen":"2026-04-19T19:17:19.461109Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8b4a8e87872ae5e9b82d3e8c0e125662","sha1":"c42c445787dc8b9736f3eb3b0b33592006a783e4","sha256":"428053b7045379e19ad3cddbcdc36c9af24f2c284bb67729cba6d26b38ad9870","sha512":"f04d9dd4089c953d4a93089acea10027b329eacdce35f438ef5d9d8d2a7fb49108fb3c6122acf9f7b1b648e7fb07120abec7f24aca3b0a759e157c6622789f58","ssdeep":"","tlshash":"7b31804b76d62d73ccdffa7a252f47983c7490063d839a14185c85904d71dbe65336d8","size":1748,"data":"","first_seen":"2026-04-19T19:17:19.482825Z","last_seen":"2026-04-19T19:17:19.482825Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"011254ef80129df15965abee104190d1","sha1":"fd09afd8dfd6602159b6a138ac4e1a88c6343d26","sha256":"0d0558c09afe87ec603b78532cf52ecbc71930cc519035e1f9b16d77ba4d81ac","sha512":"d966701df1acc7770754ce140755aceda927001ef103ae3f668abcb08f4e52b9d337a2d4612382864a870b60cc5567ebb18c3ed3242d17568cbda73acc85aa02","ssdeep":"","tlshash":"dbf0e53bb0083a5a67b6dd618b0f7f4e2576452c154db80d805dc05833b1aaa0ce29cc","size":442,"data":"","first_seen":"2026-04-19T19:17:19.483715Z","last_seen":"2026-04-19T19:17:19.483715Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b971856687a6370b7a9db7646f60a2b","sha1":"34b0efeb01ba0f2efed18ffeb8dc1dbff1a742f1","sha256":"c96ee022da26516b79404a539858b2ae1de61ae270888e96983be9a17aa906e8","sha512":"0c2bee17903128534f703d39427d75d59ac4ecd52fad906e1293afa4b9ecbefd0a96df5095b0243ee164166a14c2cbfdd34e49535f421e6a5e24bf0da68f218f","ssdeep":"","tlshash":"c631108273a188731273cc76d1e9d39a4b3cc35057021e8d3aac52a7e1efc0659f9a9c","size":1461,"data":"","first_seen":"2026-04-19T19:17:19.484528Z","last_seen":"2026-04-19T19:17:19.484528Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d194e6504ec4517781d8b6ab136f846d","sha1":"dd4bba32c9681dbf02a2e10229616c968a480291","sha256":"48ff6e3d860bb79f909e2b80ed7470637cfecac8e94e2aeaee8544bee05434b8","sha512":"8cf5157b27628bcace0bd97a720d20ce11e6c42fc2206047af357d5acd0c3e94b8523646f306af71837185b8150777e2520fc26fbe56194406ce87363eb127d0","ssdeep":"","tlshash":"9f6000f000000000c00c000c0000c00003003303030c0003000f0003000303000fcf0c","size":13,"data":"","first_seen":"2025-11-02T07:18:05.692289Z","last_seen":"2026-04-19T19:17:19.485405Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/js/jsIncludes.js","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c0411a88e2d6c283638783dc7170185e","sha1":"7007d712ff07b3e671c527ab4af42b2958811a41","sha256":"d03f7bdd9d128a0f9a9c028d16c1defd3682b4165a6afe7ae1b96fcabc79838b","sha512":"3fa91524c1d287afdb9e1054f70166e744e500365d204099119a8c5e5e410fc3907abd5a0a33f9fe40c23a894b7a01b70a1c63d9ad57cb43763f08b1c01d240c","ssdeep":"768:GVARtA5xtwYJxG6R4q6K6KOOSJFfkE9pHmWR9+6h/R4fZ2oC5X5b5Isv/tDBKcGW:GVARtA5xtwYJxG6R4q6K6lOwJ/9pHjRx","tlshash":"6de23199b3cba62e82db3024983f410ffc3dd55790294469f55895e478b4d0e83a3ebe","size":32972,"data":"","first_seen":"2025-10-22T09:39:16.404019Z","last_seen":"2026-04-19T19:17:19.458667Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"6628db0dce68e0555af9cd18c5c1f16b","sha1":"4be5aed890f529064e44a04f7bc7b7a099ec9068","sha256":"a248de34af860c58699c46ef340224b3f5f27b8f1755b9471d8b18cb1bff5360","sha512":"3fd15b71bb8991b1c423524e36de52e8a991d483b711ff3e240762a83a53d17391779703962eba46f221d3de4dc942536472c59589279fa9bd2bcaf7ef0a0cda","ssdeep":"","tlshash":"79c08c040014400b4142e72ac5fc031a163a414583a30a4c2c34f673a285c30084e048","size":142,"data":"","first_seen":"2025-11-02T07:18:05.695507Z","last_seen":"2026-04-19T19:17:19.486414Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"209cb26442176cda81dd9825f1282ca2","sha1":"25dd0cdb61b72930403595c41f97ff85aee020d0","sha256":"c0490cb7f54aa13d172ff8bbe62bf743ee1c0a99b752a2c601ad04a26ada7170","sha512":"657d3fdfe9dd9bc967c9212bc2e0e83adfa602e26992588585f06c58c3ef00be420f13bbe3c1b192451eb0af67aafba1755fe19fa7c8d911824796b72330598e","ssdeep":"","tlshash":"0c21f122a375cc7322334ca695dd935a4739935437001a8d269c02b3a0ff80a9a717ed","size":1200,"data":"","first_seen":"2026-04-19T19:17:19.487417Z","last_seen":"2026-04-19T19:17:19.487417Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"stansdad.ch/randompic.php","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /randompic.php HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 1970\r\nserver: cloudflare\r\nx-powered-by: PHP/5.5.9-1ubuntu4.21\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\npriority: u=4,i=?0\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BqpeAMGlG5cp2Qv0aYFuXwjQLoOAA5pg1chQGpyuZR4ykeC6ylbzkMB%2FJpl0MNky2OU%2BgTNojIOGgh7lxGZQftSIgODJ00lB%2B%2FZ1PsSJKHsUe66e%2BxeVenmX5z3dJw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f056b603181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"PHP:5.5.9","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1970,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80\", baseline, precision 8, 100x25, components 3","md5":"0fcf40f7ca779aeb4cc00cb4a508242d","sha1":"a35239d4765dbe5812342a7ea03ab3f2d3e605c5","sha256":"5cf498c53c7697e9eb1ee1cfd01504efb1ede3858a01594d05b19bd35193412e","sha512":"7b04d411671d449f637c71e9bb8027adb29288a7ba6452bf26667c45c92e9e5dec3a246f3553c486cda3f586907d35f458fbff7093d748d8d339839e13831f95","ssdeep":"","tlshash":"0b41f979b60f43189e27f1be84e58072f2de00501b50170e6b52c1d4ca6cce8e99e55c","first_seen":"2026-04-19T19:17:19.448551Z","last_seen":"2026-04-19T19:17:19.448551Z","times_seen":1,"resource_available":false,"data":null}},"time_used":793,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":793,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"releases.flowplayer.org/js/flowplayer-3.2.13.min.js","fqdn":"releases.flowplayer.org","domain":"flowplayer.org","tld":"org"},"ip":{"addr":"52.84.50.78","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/episode.php?epid=213","date":"2026-04-19T19:16:53.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.flowplayer.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 03 Mar 2026 00:00:00 GMT","end":"Wed, 16 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"07:FC:A8:DB:39:92:53:81:42:F0:25:BF:38:A5:D7:BD:84:F0:B5:D3","sha256":"5A:4F:B5:16:4F:67:B2:70:40:A2:48:12:B1:28:AB:67:BB:74:51:9D:0F:A2:19:34:EC:B3:11:54:07:AD:D8:55"}}},"request":{"raw":"GET /js/flowplayer-3.2.13.min.js HTTP/1.1\r\nHost: releases.flowplayer.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 Dec 2013 10:48:18 GMT\r\nserver: AmazonS3\r\ncontent-encoding: br\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\netag: W/\"033d7d64e2c869f0092ea70e0da4d589\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d5fd4f36a8dc316ac9f65d9c9b60260e.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: BNNKXcd-SQ4wwPKeTUCGkdrO6ef7ZEtNWhebt1s5pMtBnxVljvKvow==\r\nage: 37536\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":16279,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (15511)","md5":"033d7d64e2c869f0092ea70e0da4d589","sha1":"1e9c02aa29477c2f9bf84263cc4941df60e101f3","sha256":"97ca04630b0848ff65357666d0649f534d1c834c7554f0372a52c594a9722da5","sha512":"306412a707c3c25bde44de8738a60b8aba28395751b51f216a9f5263d4926866d41c60c914c270ca4fabd135e2ba8b6e6ec45cbb306d646a932c0d4bb8d59bfb","ssdeep":"384:hsZPeXsYIPrq6VxA64a5u7Eu9WGBq2Qylf:hsleXsHPW6Vx14a5eEu9W+nlf","tlshash":"ac72b4aab1d7f07a87f73120107f560bb2bba5a218cc9110e560e5e86db491e8537f3d","first_seen":"2025-06-17T23:14:57.612469Z","last_seen":"2026-04-19T19:17:19.449317Z","times_seen":19,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":62,"dns":23,"connect":1,"send":0,"wait":25,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-2.1.4.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/episode.php?epid=213","date":"2026-04-19T19:16:53.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-2.1.4.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-14979\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\nage: 1513539\r\nx-served-by: cache-lga21971-LGA, cache-hel1410022-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 80, 3137\r\nx-timer: S1776626214.582609,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 29519\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84345,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32025)","md5":"f9c7afd05729f10f55b689f36bb20172","sha1":"43dc554608df885a59ddeece1598c6ace434d747","sha256":"f16ab224bb962910558715c82f58c10c3ed20f153ddfaa199029f141b5b0255c","sha512":"3dcae1ff6e98c64e3586be3eb14dd486c51f7d4e9fa1b8f9a628be4fbb6a9ab562f31f9b50e16d2e0c72b942bdbe84eee8e0ef87fa730db1428b199a59d88232","ssdeep":"1536:/P10iSi65U/dXXeyhzeBuG+HYE0mdkuJO1z6Oy4sh3J1A72BjmN7TwpDKba98HrJ:++414Jiz6fh6lTqya98HrJ","tlshash":"ca83d6d9b2c67062977734b851bf510bb17a98dab40c8c60f0a4d8e47eb4a8d517bf2c","first_seen":"2023-03-07T01:06:48Z","last_seen":"2026-04-19T23:06:06.468539Z","times_seen":23721,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":65,"dns":2,"connect":26,"send":0,"wait":27,"receive":8,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/globals.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.861Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/globals.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 463\r\nserver: cloudflare\r\nlast-modified: Sun, 01 Apr 2012 22:15:56 GMT\r\netag: \"424-4bca56ae71f00-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mwD8%2FbTk4QVasAQfgKvEl%2Bi66bunoP0zRnQoR2plyS%2BQEx%2FLlHSDOzqy6u7vbVeayN8NswmWWh%2FMrudyyJ%2FkLI21bA9qN%2BAvfDpQ89AhXpE1LC8WHqxqElgxjev3gg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f0019393181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1060,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"d4419aaa0436d0320bfbaa5874af3c75","sha1":"fdd0a2b32a01fb3b6203ac6b84c74c88e37281c7","sha256":"0a915c7f0b4e8a11c6d023f48b5056da806afdf2fe658caeb9385d3f75e77ef9","sha512":"31b6f222b6d8513a054618469bfadd33097cdb1d1cf82e139cbcf4d4ed0bf2d011db03c3209a357ccbcc922fd422b9c526822a3d9c55cf9bab4d8ae423c225ac","ssdeep":"","tlshash":"2511e223e7142a9af10ed4ad7828ff7a672e9012ee1e4f34b979b534d24c0942073282","first_seen":"2025-10-22T09:39:16.669916Z","last_seen":"2026-04-19T19:17:19.450904Z","times_seen":7,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/videoRelated.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/videoRelated.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 1415\r\nserver: cloudflare\r\nlast-modified: Sun, 01 Apr 2012 22:23:27 GMT\r\netag: \"18e1-4bca585c8d5c0-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nYyiIJaTP8R2u8flRfEWFoxjK%2Fut2dvLOC%2FvvTRBXO3kDb4tuoIm47RbaROJ7QgEDl8KAvvnCJGmPB9qjFIPUE0%2F%2FLB9ZYTbD3CuLVtrWs0%2FSh7Hn5dFsmuSsMZIAw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f0019403181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6369,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"4db6a8b35fe581ad26a57e324e44e0d9","sha1":"5655d815bcdb04f7226f8f445a2fd2a8106d9fc1","sha256":"5607d3cceadb0f92e18d1d2e9b1920168f1f49949d49857ebd758f1e7f54979a","sha512":"f01474d5364e852c192856efa1e189736de42fea99a54e6b946266ec73a4437a3a5c7f5e3ab0204baf70faa59b8edb10ff3a425e104664e7557d417512e5d4f8","ssdeep":"96:/cr6TrXcSZV+zHaN5sdajbNoHQphM9zZuLN4I:UcXZHYRix1","tlshash":"e1d1f07b26543445b00de1b5fe18ebc6a32f15627e1e8f257aa67d2cd7481f018b228e","first_seen":"2025-10-22T09:39:16.843831Z","last_seen":"2026-04-19T19:17:19.451608Z","times_seen":7,"resource_available":false,"data":null}},"time_used":765,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":765,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/footer.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/footer.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 504\r\nserver: cloudflare\r\nlast-modified: Sun, 23 May 2021 18:47:26 GMT\r\netag: \"5cd-5c303b96e0bdb-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2B1HzEhjKMqoroq2Y3D4b6hFSMJaDH3489WdVKMkjlHngHrN7tIvFCc3DVA%2B52y2p1cJu1yqrJ881lcgT6qNkJuzNumWABdqTi0qCuCmTpPXQ9RR26d3MiMZJPMm84w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f0019583181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1485,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"2b14c398f063ace9e72b2e6fa5ed0284","sha1":"a1e45495c664a4fc7278343bd71bb7b5f95ffd0a","sha256":"4a81a2337f62b1da13e646372c1711b33b5f88a3c8d439612674142f551b9550","sha512":"08d319f8f73fb5de9f39841fc4b31e6c4d24a3f8edca626e48a963932dc4d6f33106da0ceb7b5f8a8ccd3774d54255a2399ee1010bb81c34e81884d21e36196a","ssdeep":"","tlshash":"cf318b3776a93541901eb095fd54fb68973fc006ee2f0e357d9e7a0cd3865d61012249","first_seen":"2025-10-22T09:39:16.64669Z","last_seen":"2026-04-19T19:17:19.452584Z","times_seen":7,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":195,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/videoInfoBack.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/videoInfoBack.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/parts/videoRelated.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: image/gif\r\ncontent-length: 6540\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:46 GMT\r\netag: \"198c-439c7acba2c80\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d%2FkHPIXQnH2dnGDeycmlEmCby%2FPW4GPZTrdYgFG9wzq%2BKJgfcF5pvc9JAuJNtDr1JfF6NYadtUiTEYx1NIHF0mbvgMP3zVFd7kWBfRG4jS6DqPTW2NnSN833asTH0Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f05cc9b3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6540,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 170 x 116","md5":"d9af2bbf7ffbeb51157a3fa6ac582dfa","sha1":"1b7dd5d21bf12c237aa792fa1e38344a43b4c6c7","sha256":"32448830f626ffb64092a3fe31ea988dc1aa48d3734883b54b77ce2be68c2029","sha512":"810376673e0d557a5f505b3e2c6ea0637df980b1cb0b9eaaa9ffa7322e1f6085b1387c66c04183e0a27a56ba7ccf4b17327b549257b5dcac270e6a14a60c0513","ssdeep":"96:aqUzJBDUoZZsWx1UrWpjYLodfyEWJE+kzUkPwe/Eas1/xiXFlGxTCBgi/E3W8Q5P:aqU1BkWOqELodbYkzUY/UM1Ecgi83KP","tlshash":"e6d18f4f61c0d641797a0c7865c62fb4f330aca2576ef5fca0b1b5762429254a098bd6","first_seen":"2025-11-02T07:18:05.677366Z","last_seen":"2026-04-19T19:17:19.453447Z","times_seen":4,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pics3.inxhost.com/images/sticker.gif","fqdn":"pics3.inxhost.com","domain":"inxhost.com","tld":"com"},"ip":{"addr":"45.130.41.107","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"inxhost.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Apr 2026 04:40:08 GMT","end":"Wed, 15 Jul 2026 04:40:07 GMT"},"fingerprint":{"sha1":"1F:85:F3:98:99:50:26:4A:1B:08:A6:3B:97:68:07:90:1F:57:26:AB","sha256":"08:46:0F:B8:21:2A:3C:79:37:1B:11:5C:A4:ED:7E:1F:5C:F3:44:60:90:6B:81:6B:3A:29:8E:BD:D4:59:BF:54"}}},"request":{"raw":"GET /images/sticker.gif HTTP/1.1\r\nHost: pics3.inxhost.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\nx-powered-by: PHP/8.2.28\r\nreferrer-policy: no-referrer\r\nlocation: https://nethcdn.com/w\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"PHP:8.2.28","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T22:59:56.465105Z","times_seen":13951399,"resource_available":true,"data":null}},"time_used":384,"timings":{"blocked":96,"dns":9,"connect":39,"send":0,"wait":192,"receive":0,"ssl":45},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"pics3.inxhost.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/otherimages/epsp/s12e8.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /otherimages/epsp/s12e8.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 4552\r\nserver: cloudflare\r\nlast-modified: Tue, 02 Jan 2024 02:37:17 GMT\r\netag: \"11c8-60ded607b96f3\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iBYJKIbwITX058FkR%2BsFE5pTiD6Pb0H9wNkKVcCB3WVoOLt7X1QedbSpZf9F1luP916Qy1xYq5tiHMoqWyKcbHtGEYoyY8Qqw%2FsTYUHP21U6mme1LSGUp8%2BAFnVVAw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe3a363181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4552,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 160 x 119","md5":"d34b0955b7594e4426d873950c3d9320","sha1":"b80e31690aef002c893175c27a445b4202820fb2","sha256":"a11e3fd51b7e9e56c0ec4bfc13f7ead490b7662e4973c98e5624582fbb8e216f","sha512":"e8e05fe887c7b8ea0817f75d2906a7be5c87a421f0eccdc0429afcd4ec41cd1aacbdc4fdba5a3bd1def98de30c3f34064ead3d357d093e5b7654a830cc2383e4","ssdeep":"96:B9fVSJr5rrcy9HusMBL1UdubWoDPrcu4rQz42h5ZMfAUrj8Vb3QW9U/+LainT:X9SHpuT+duhijqbgv/+n","tlshash":"79919e75718f19745a135d6036d4e6980508cb599f78efb359a6c801e8e4f834430b7f","first_seen":"2026-04-19T19:17:19.45454Z","last_seen":"2026-04-19T19:17:19.45454Z","times_seen":1,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":235,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/otherimages/epsp/s15e4.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.579Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /otherimages/epsp/s15e4.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: image/gif\r\ncontent-length: 7135\r\nserver: cloudflare\r\nlast-modified: Tue, 02 Jan 2024 02:37:46 GMT\r\netag: \"1bdf-60ded623a6d93\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wevxaje6WKSCnFVN%2FL5bJI5jVkWBbrmCgE1xbbjxu8Fp5wGaZHg9DHHA3264ACK824evCGkXo26jjcLy%2BuT6WAh10syj4G1c00eOh54z%2BTfkkrvO%2BP7nxG60aAhKLw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe3a443181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7135,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 155 x 116","md5":"5396718e5e05394f5be8323eb55f82d9","sha1":"85810a1316dcc5dba4b26845a4a0a86b49406a56","sha256":"f99a2acc0af4eca1a8ea6341b33913491a85ab48252ed6d42d2a9efd558bfb15","sha512":"f4e265b18a598d84dae8b3a13a209fcddd215147799cad275db07512c6f9fed6d98d594ca1063e3d7ca7a3eca6594d343607b801a9a44a42dc1d4cddc6059ec3","ssdeep":"96:iz2jWYM//yXXQMkTTh+MTzv3w3Jnu/bIFPYjATvuwivcumOGXhm:iV+MqJFPevcuKXI","tlshash":"cde19e4dcc98a581a18edeed3dc29821af871cc049d4d4e2f2f6e74a5a4903b97150cb","first_seen":"2026-01-23T11:55:26.403532Z","last_seen":"2026-04-19T19:17:19.455455Z","times_seen":2,"resource_available":false,"data":null}},"time_used":836,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":834,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/nb.png","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/nb.png HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/parts/other.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/png\r\ncontent-length: 3764\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:40 GMT\r\netag: \"eb4-439c7ac5e9f00\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1c6Di1exo1yQYD66tEKpT4tSbjtSh9tzm%2Fq7%2BaCzwDJ42rqBGJ%2FGi3HrW4OlSRVLLtGfy8lKF1H4NJgES%2F7GfeFbi6zTgftQI3uqsC%2BKNZfThwyP8uodkwY74HPHgg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f05bc603181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3764,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 865 x 28, 8-bit/color RGBA, non-interlaced","md5":"1876ca665933d4cc9a24220c94b2d175","sha1":"c7f35f9bb81a3e907a916f59c9361f40049ca0f4","sha256":"51731f4f1a61c1d5118c268d1f0388ad53b6f54c5588b48e3f48553db4eb2ef8","sha512":"06ee70b6c8a66512b4fd80bb4c78a1c2283671ea7af09fbf0873fb4416c31594b4eeae30494e0647e97935d3a3b792b9a062c66409e0174ba3b59ffed9dc4d79","ssdeep":"","tlshash":"3b718dbb8564a88ff9cc78704cce068157661a3cf766233c94c2b0ee5859e47af604a2","first_seen":"2025-11-02T07:18:05.656958Z","last_seen":"2026-04-19T19:17:19.456316Z","times_seen":6,"resource_available":false,"data":null}},"time_used":767,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":767,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/viewFullscreen.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/viewFullscreen.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/gif\r\ncontent-length: 945\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:48 GMT\r\netag: \"3b1-439c7acd8b100\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=v5nmkJ0UolYsRHCNEC7562%2BVl%2B2ILLBsUCyMDb7M19GwtQP0YY4JKM15oVSetpm9yQdzRGa8c24EOnBIiVRAZfp9pvmOgmEsyljNq%2BMDYLfravf6UGSFaJifa%2BLqbA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f067f2d3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":945,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 142 x 10","md5":"d3c20222d2cff5586c0fe1d336823117","sha1":"d5c03776a4e416bb26d01d233373dce1e0e58fd9","sha256":"a57f67524d4e4bb0c6d1f772dab902becf6f7034d032eac5a4d23360b30ba104","sha512":"116a395fd9903b5610893c56783c6970b26d587c95e97172648c8095cc0e2ad1f7c39ae73e475a929ead63d344334be8ecfd230a8fcfbd44bedffb3977d2f210","ssdeep":"","tlshash":"531175da7394eeb4cbcc7134125eceac7e15a770bbac622008f4a5119cd873624360f4","first_seen":"2025-11-02T07:18:05.682684Z","last_seen":"2026-04-19T19:17:19.457165Z","times_seen":4,"resource_available":false,"data":null}},"time_used":980,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":975,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/listen.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/listen.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/gif\r\ncontent-length: 866\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:32 GMT\r\netag: \"362-439c7abe48d00\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wiTCXYT76UAqt4xKqsfWqoLnALFDGMcJhrIJl71x3Wie1jsfNJMJZZZlGgSh%2Bo51pJi7AvUdbC8GURULGsAhvAYrGnGCr5MdVwtsVJ0wzLqVlMnZneMHLXF4UlORlA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f067f333181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":866,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 117 x 10","md5":"e2ac1d730d533e98c7df1102fb70aec2","sha1":"44dcfac0c663ccc17651b89511cd08e73659ee21","sha256":"00635d789bb584b090b5e7ea7c0d2c0250565cf7ae1949e31a20c4386710971f","sha512":"1e00be4fbedcdd0a4eabeef8b7eec68f2a4537e0e59853792643107bb735f4fd91b8186ae6dd3478b697284f86ea8d87a8cdaec8d42c8fb37de64223a6914bb3","ssdeep":"","tlshash":"dd119446c52c98ace316b83bec1ce6823542885fb0862d32440c6130ed09aa9e87edd8","first_seen":"2025-11-02T07:18:05.668077Z","last_seen":"2026-04-19T19:17:19.457871Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1019,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1018,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/js/jsIncludes.js","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/js/jsIncludes.js HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 8157\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:20 GMT\r\netag: \"80cc-439c7ab2d7200-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VFPLTMSSt2hsCuhsR3%2BISzK6xedR6MjSv%2FSiHZBSIV9KhgBf38CE1KgjaZkc7XEfp%2FhHpr8Q2uJhwZJncTthZqZQCJdUEPKS%2FF0aDOesO6VsMVaWlgiotF9rikCSWQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe29ff3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":32972,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"c0411a88e2d6c283638783dc7170185e","sha1":"7007d712ff07b3e671c527ab4af42b2958811a41","sha256":"d03f7bdd9d128a0f9a9c028d16c1defd3682b4165a6afe7ae1b96fcabc79838b","sha512":"3fa91524c1d287afdb9e1054f70166e744e500365d204099119a8c5e5e410fc3907abd5a0a33f9fe40c23a894b7a01b70a1c63d9ad57cb43763f08b1c01d240c","ssdeep":"768:GVARtA5xtwYJxG6R4q6K6KOOSJFfkE9pHmWR9+6h/R4fZ2oC5X5b5Isv/tDBKcGW:GVARtA5xtwYJxG6R4q6K6lOwJ/9pHjRx","tlshash":"6de23199b3cba62e82db3024983f410ffc3dd55790294469f55895e478b4d0e83a3ebe","first_seen":"2025-10-22T09:39:16.404019Z","last_seen":"2026-04-19T19:17:19.458667Z","times_seen":7,"resource_available":true,"data":null}},"time_used":747,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":746,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/otherimages/epsp/s13e3.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /otherimages/epsp/s13e3.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 4352\r\nserver: cloudflare\r\nlast-modified: Tue, 02 Jan 2024 02:37:44 GMT\r\netag: \"1100-60ded621decb3\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=S7pS29aH6XJhZGJE6McYnMO8l64Gpz9CcwFEtMTVW6YwS5FEo1l8M0V%2By682eZb6Syv4YTtD3CDw8kTY2qHdZ%2F0eYrRVBWCPXqYtcZZxqdN5YrgrEZsf4RbX%2FRxR9g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a283181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4352,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 153 x 115","md5":"c0dd6126027394d5c18303e5222634ae","sha1":"8ba22ac4a185e1dc7c9fd373b44aef93d0f0c8fd","sha256":"8e6d1155f156177e3d41720f3e35a018c0e29cd4b01df881cbefffc3b3d998cc","sha512":"09ba7eff539b0c09508426ed746c757a3f877af8c9c9d27706c57682b91b4e276ccbfdf84598f543e435b549c0f95b25c56cb7ffc453e9d7d5ac9ebadd0343dc","ssdeep":"96:qj4g89KSnQ7uIvURs9I7HWAa5rm2rzy4/4QKmysKsTVntwl:qE9NouIMRb72Fk2F/E+ztc","tlshash":"fb917c4ee3bee096bb268f1c8b9df0374884a144cdd7438a731369680b27895de9c858","first_seen":"2026-04-19T19:17:19.459713Z","last_seen":"2026-04-19T19:17:19.459713Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/v8c78df7c7c0f484497ecbca7046644da1771523124516","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/ads/468.php?show=1","date":"2026-04-19T19:16:52.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflareinsights.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 17 Apr 2026 18:57:25 GMT","end":"Thu, 16 Jul 2026 19:57:22 GMT"},"fingerprint":{"sha1":"AB:25:45:8F:55:B6:2B:26:B5:B1:EF:90:E0:60:64:9C:56:47:0F:B5","sha256":"47:83:31:CC:5E:02:0E:51:A7:52:AC:83:1B:8A:A8:4C:74:11:A5:F1:61:8D:C5:6D:29:3C:9D:6A:C9:29:AF:7F"}}},"request":{"raw":"GET /beacon.min.js/v8c78df7c7c0f484497ecbca7046644da1771523124516 HTTP/1.1\r\nHost: static.cloudflareinsights.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://stansdad.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\netag: W/\"2026.2.0\"\r\nlast-modified: Thu, 19 Feb 2026 17:45:24 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: 9eee3f06faa45687-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31169,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (31169), with no line terminators","md5":"4f67ea9205c3ca7c9e04582d3b9bdd1d","sha1":"d3b68ad3eb88d3db3d843211d4905143c3bff281","sha256":"4b77eae349a8cbcea7133cf3640a64ebf1f69d54d8f6469d7be6fdc188ca4ca4","sha512":"f034bbae022b026821045c28393ba371fe83f6b5ef1fcc66f0943525ad3587d417f04cd795d8accee7d86b82057ca74b50a4d3ae74855cb0e4504393ad943c42","ssdeep":"384:BXi1f+hZCIy1f84QDRuT9WKw00QmLnivMt+BERzR0c744BKJKe0620vFjOkcXo9g:+V584QlIrw6OPIJJtFjj09N","tlshash":"bce218eeb591b13603f7a072447f210b733ab56264494408e21bd6c22c78eeed257fad","first_seen":"2026-02-19T19:35:51.221473Z","last_seen":"2026-04-19T22:58:51.072834Z","times_seen":43595,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.agoda.com/deals?pcs=1\u0026cid=1818886","fqdn":"www.agoda.com","domain":"agoda.com","tld":"com"},"ip":{"addr":"96.6.17.27","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:53.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.agoda.com","organization":"Agoda Company Pte. Ltd."},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Sun, 19 Oct 2025 00:00:00 GMT","end":"Tue, 20 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:0A:E9:BB:0B:F9:C4:49:EC:D1:5E:19:10:79:96:43:14:55:5A:13","sha256":"B9:52:D8:7D:21:50:2A:D7:41:C9:E4:57:BB:38:AE:1F:8D:43:48:6A:B1:C6:9B:C9:1F:C1:8B:29:F4:96:E6:E3"}}},"request":{"raw":"GET /deals?pcs=1\u0026cid=1818886 HTTP/1.1\r\nHost: www.agoda.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=utf-8\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET,POST\r\naccess-control-expose-headers: ag-correlation-id\r\ncache-control: no-store, no-cache\r\npragma: no-cache\r\nag-correlation-id: 52cdf621-1f62-4a72-af85-a3973bf12804\r\nstrict-transport-security: max-age=2592000\r\nx-content-type-options: nosniff\r\nrequest-context: appId=\r\nx-ua-compatible: IE=edge\r\nx-frame-options: SAMEORIGIN\r\nx-forwarded-gateways: am-pc-4f;am-pc-4g;\r\nx-envoy-upstream-service-time: 22\r\nx-envoy-upstream-address: user-5ccfd98699-m99cs\r\ncontent-encoding: gzip\r\nvary: User-Agent, Accept-Encoding\r\nx-envoy-datacenter: am\r\ncontent-length: 28029\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\nset-cookie: ASP.NET_SessionId=atuvthqrqvgmo5ou2libdtdh; domain=www.agoda.com; path=/; SameSite=Lax; secure; HttpOnly\nagoda.version.03=CookieId=2486d91a-55bb-4719-be73-96441925bba1\u0026DLang=en-us\u0026CurLabel=NOK; domain=.agoda.com; path=/; expires=Tue, 20-Apr-2027 00:00:00 GMT; secure\nagoda.landings=1818886|||atuvthqrqvgmo5ou2libdtdh|2026-04-20T02:16:53|True|19----1818886|||atuvthqrqvgmo5ou2libdtdh|2026-04-20T02:16:53|True|20----1818886|||atuvthqrqvgmo5ou2libdtdh|2026-04-20T02:16:53|True|99; domain=.agoda.com; path=/; expires=Tue, 20-Apr-2027 00:00:00 GMT; secure; HttpOnly\nagoda.attr.fe=1818886|||atuvthqrqvgmo5ou2libdtdh|2026-04-20T02:16:53|True|2026-04-21T02:16:53|x4E1tQeoJSHV+5Rl; domain=.agoda.com; path=/; expires=Tue, 20-Apr-2027 00:00:00 GMT; secure\nagoda.attr.03=ATItems=1818886$04-20-2026 02:16$; domain=.agoda.com; path=/; expires=Tue, 20-Apr-2027 00:00:00 GMT; secure; HttpOnly\nxsrf_token=CfDJ8Dkuqwv-0VhLoFfD8dw7lYx7rh9JRl9dYQU2NHa2diAvfirZ-YTH-J-W6CbtyolXwdkegflgnI3y2W6cuNxoAvrn6AT1f71rt6IEoanj3ZJ6yKakTtzx8JaRwRigTHJp7LeugfGVSenWwNDF7MUBg_A; path=/; secure; samesite=strict; httponly\nt_pp=ym+ToqrfaPxTVvIv:X6hwT0dOczz3pGhvVfL+sA==:aW0AGTCIjolkP9aJJR9Udwz18eutB3C2G6pltQhY2jfhZv2jqNFNncD01hB78FzmBzilIgKBwIhzh5dHLtF8j68BC7qW0Byx8VDdpfpFm1S909svTD3QP2ayXDZTFlfQK2nu8KmB0a1kI1Jdg3qMCJFjmRviSTcH8s19q0U6Mq0vNe2HSGT1OyVMxKoQfGnV5iPcbXVMTUGmrqj2NnIQrrLUzDucxZ3Zk8/hoILGAnxFSOJpufs=; domain=.agoda.com; path=/; expires=Sun, 19-Apr-2026 20:16:53 GMT; secure; HttpOnly; SameSite=None\nagoda.user.03=UserId=1e685206-a410-4a28-be59-c6dfcfdd83e7; domain=.agoda.com; path=/; expires=Mon, 19-Apr-2027 19:16:53 GMT; secure; SameSite=None\nt_rc=dD0xJnVpZD0xZTY4NTIwNi1hNDEwLTRhMjgtYmU1OS1jNmRmY2ZkZDgzZTc=.pnAoHObueOZG1JDROniIawf6gWGYN9Tj78u+Q1TqxaE=; domain=.agoda.com; path=/; expires=Mon, 20-Apr-2026 19:16:53 GMT; secure; HttpOnly; SameSite=None\nagoda.analytics=Id=-7806463672380829718\u0026Signature=-4121560733628842914\u0026Expiry=1776629813232; domain=.agoda.com; path=/; expires=Sun, 19-Apr-2026 20:16:53 GMT; secure\nagoda.prius=PriusID=0\u0026PointsMaxTraffic=Agoda; domain=.agoda.com; path=/; expires=Mon, 19-Apr-2027 19:16:53 GMT\r\nakamai-grn: 0.9e4f2417.1776626213.18c80944\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Microsoft ASP.NET","description":"ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.","website":"https://www.asp.net","common_platform_enumeration":"cpe:2.3:a:microsoft:asp.net:*:*:*:*:*:*:*:*","icon":"Microsoft ASP.NET.svg","categories":["Web frameworks"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T22:59:56.465105Z","times_seen":13951399,"resource_available":true,"data":null}},"time_used":195,"timings":{"blocked":70,"dns":63,"connect":1,"send":0,"wait":51,"receive":1,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/js/addFav.js","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.562Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/js/addFav.js HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 198\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:18 GMT\r\netag: \"131-439c7ab0eed80-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J5lzNNdcfCyTcS8Ow%2F9dPZr7glQ1W4SaOQGxlvNQ53CPF9LZ9e%2BrgwJjZkwMZQ%2BjreVc3s%2BCVYubvhUiUBpUREeA%2FgGzdWULN3QQYU9ufGMfapLFuzeJ8MVAEeb8pg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a043181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":305,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"3507d6e17ac7bcb3c3ff1be66e8d8452","sha1":"b6706a3bbf8f14dd1917f2511a75ad8ce17a832e","sha256":"893a4706e632c8870f385eafd5c1aa581a6dad2e9978b65bea91912e287a64e8","sha512":"daffe993946c448c6cebfc7678a8e9c1b71eeeca2b237a9714bd475059923b39ceaa549be4b0c04db88753b24f1f5e0f763a4fed20f983713ceafcf045407a27","ssdeep":"","tlshash":"8ee0c25d0849a66748f776a8af33d614fc7a47152481e020f98547813c71b97d521de9","first_seen":"2025-10-22T09:39:16.716394Z","last_seen":"2026-04-19T19:17:19.461109Z","times_seen":7,"resource_available":true,"data":null}},"time_used":843,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":843,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/flag.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/flag.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/parts/videoRelated.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/gif\r\ncontent-length: 97\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:28 GMT\r\netag: \"61-439c7aba78400\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vqg%2BO7l931qYBEFtL8FIK5wcj8GBtXmUahQEFPN4yzxMBYXRNqfVXN%2Bk617SU8bSfO5qeoPlNQiHsgFwwhJq%2BSDDN1vGz7Rc9qvoEE640Rc%2B2NZ6T7GX05NBpV7MEw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f05cca93181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 15 x 13","md5":"b22ad26b3190da664d711c9972c91aa3","sha1":"01842576005608cfdc566e8b49efd1d2ecdca8fb","sha256":"bc6b2df488e230cca3fd073d49ab993aaf9774cfd659b0903d365319116ec6b4","sha512":"d57609d7d7277ead62cb5c2613312ee36e9d09288fb1bb6d1e340e725dcdf40ae78ad2041a2a8ac48d33bc4a8610f0065804340c2a2ff34eeaafa62ea6c2e6c4","ssdeep":"","tlshash":"37b012c59b403959c51281300a3d5278a9151ca09f14e559895535041cc900b4098b00","first_seen":"2025-11-02T07:18:05.669862Z","last_seen":"2026-04-19T19:17:19.462064Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1059,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1059,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/headerLogo.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/headerLogo.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 22648\r\nserver: cloudflare\r\nlast-modified: Sun, 01 Apr 2012 22:59:53 GMT\r\netag: \"5878-4bca608148c40\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eZedVt03xeC43HVZ%2B%2B7i79vJrZCF6iNbDHNLuYopMC5QekGnHPKcZ4qr06avo1uXPV%2BaI7HCB2uam%2F9W%2FxaaT8osNfujX%2Bss1lrI4vUCoWpBzIZRbMvvOFNJOcKQUw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a073181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22648,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 860 x 150","md5":"9647aed010e6175bd1f80ee4f739d65d","sha1":"ff9cd180d532e916adb2b84cab91cabdc8800cfa","sha256":"49c772cb26cb7f9ac196beefdad144655bf637297cd8027ec5cd2d5ed848afe3","sha512":"4a7edb4b78b77e92f55327a0c3c11532700151591409687e6f2db48e8c2749568b58dc38dad068a48eaa67cdf49a226642637d8986f1f2bd8e3dbceaf22d5a46","ssdeep":"384:dPwQtPb16UpYNv9PEcxG6ewwOSABuCie6RcXacinxd9+HO/JQVIrq888nng8OPLm:d4FvNvGX/OSCuCieykinxOOaVIrqXLhs","tlshash":"d4a2e12d217093639750de242de1d9416b57cc214578de9fec68b9891d362f0df983ce","first_seen":"2025-10-22T09:39:16.41907Z","last_seen":"2026-04-19T19:17:19.462923Z","times_seen":8,"resource_available":false,"data":null}},"time_used":215,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":195,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/navigation.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/navigation.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 579\r\nserver: cloudflare\r\nlast-modified: Sun, 23 May 2021 19:23:50 GMT\r\netag: \"59e-5c3043b960dbb-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1k%2F3DpaW8Tn%2BDdI20jvWZTwpil0mgLM3jd69IY%2FuwbROyIMLBjHmS%2BOtwkQlcxauBi0hfocPFZWc2JNtTj8xQi2kKNTsxouqWJizQ%2FU747DhGFSr5j%2Fcb6yYc9ukuw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f00193e3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1438,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"f084d31e8cc3165b9c8432d069b3d1a8","sha1":"3d1fb46945e40f313d4364bee3d3d2c97fee82dd","sha256":"41c0f3b4628347748b978aa5a9c0d0377962a5444852d3b38544e69c575ef0de","sha512":"8bdd85b7cb1f4050550474518f4fd541b0a3dffce9c9b9563b44a633913d36c3b3d8b46bc5cd6a53169a6a7dd208845c96629e4b9f59698a7443b12a3e01091b","ssdeep":"","tlshash":"2921126af7592006a31b7aa6b7b41f1e1f238061ab075bb475e29310c29547937363c4","first_seen":"2025-10-22T09:39:16.832425Z","last_seen":"2026-04-19T19:17:19.463905Z","times_seen":7,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":201,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/randomVideos.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/randomVideos.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 563\r\nserver: cloudflare\r\nlast-modified: Wed, 24 Oct 2007 23:54:05 GMT\r\netag: \"5dd-43d45d5274140-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zy0KPs1jsEYnBfneFJK%2Bn%2FGhFwpA%2FIvddTwR4vLZpB5%2FiJTCY6q%2FiW8bMbFZXeREIf3uKadMyZrrq4dWHB2xKyXe%2FdYYl88aSipfnCXzqnF9c5X6UIbqNHg2orZQrw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f00194c3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1501,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9236587cc7383789464a855740ede3b7","sha1":"424f812eda7fdc5091254e8997588588faeca3ee","sha256":"e28db5f17baf8f68fcf8a7fb7354d064ea715bdf5807b3d9a77ddb4bbdcff42d","sha512":"d6b318272f341dc1657bd9ed86286615a271e545bb0f3450ee49576b3e6877a0625d9b40b1a3d5c5572023d36524ce261e25d2edff7487768f66f4beecbdb06c","ssdeep":"","tlshash":"cf31112a3b813881d54a64a0fde0ef5e3b1b62066a05ce61b8e6381cc3490f538777cd","first_seen":"2025-10-22T09:39:16.79241Z","last_seen":"2026-04-19T19:17:19.464769Z","times_seen":7,"resource_available":false,"data":null}},"time_used":786,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":786,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/v8c78df7c7c0f484497ecbca7046644da1771523124516","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/episode.php?epid=213","date":"2026-04-19T19:16:53.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflareinsights.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 17 Apr 2026 18:57:25 GMT","end":"Thu, 16 Jul 2026 19:57:22 GMT"},"fingerprint":{"sha1":"AB:25:45:8F:55:B6:2B:26:B5:B1:EF:90:E0:60:64:9C:56:47:0F:B5","sha256":"47:83:31:CC:5E:02:0E:51:A7:52:AC:83:1B:8A:A8:4C:74:11:A5:F1:61:8D:C5:6D:29:3C:9D:6A:C9:29:AF:7F"}}},"request":{"raw":"GET /beacon.min.js/v8c78df7c7c0f484497ecbca7046644da1771523124516 HTTP/1.1\r\nHost: static.cloudflareinsights.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://stansdad.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\netag: W/\"2026.2.0\"\r\nlast-modified: Thu, 19 Feb 2026 17:45:24 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: 9eee3f0a58045687-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31169,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (31169), with no line terminators","md5":"4f67ea9205c3ca7c9e04582d3b9bdd1d","sha1":"d3b68ad3eb88d3db3d843211d4905143c3bff281","sha256":"4b77eae349a8cbcea7133cf3640a64ebf1f69d54d8f6469d7be6fdc188ca4ca4","sha512":"f034bbae022b026821045c28393ba371fe83f6b5ef1fcc66f0943525ad3587d417f04cd795d8accee7d86b82057ca74b50a4d3ae74855cb0e4504393ad943c42","ssdeep":"384:BXi1f+hZCIy1f84QDRuT9WKw00QmLnivMt+BERzR0c744BKJKe0620vFjOkcXo9g:+V584QlIrw6OPIJJtFjj09N","tlshash":"bce218eeb591b13603f7a072447f210b733ab56264494408e21bd6c22c78eeed257fad","first_seen":"2026-02-19T19:35:51.221473Z","last_seen":"2026-04-19T22:58:51.072834Z","times_seen":43595,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/nSearch.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/nSearch.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: image/gif\r\ncontent-length: 697\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:40 GMT\r\netag: \"2b9-439c7ac5e9f00\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yAIsWJnJ%2Bt3bxLN7Z6gFSEmmGtE90XB3wH8ighocsukot2GW32HiMOY20WUcgPL63T8pmV%2FUQrj1Wc9xXoY14y6N1NrL0DynWUENsmK6BRLTyA9wkze9i%2FZE2Zsr7g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a193181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":697,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 115 x 26","md5":"7d1f9173f7b9da09f5882514b7d2534c","sha1":"0d91698ac50b51e52c3cf038730e453b278b420f","sha256":"1d046fc0a5245fd9e41993be359eda2e567d69bea9535ad488a1688768437783","sha512":"bdb02b048b1cbdd883809d09bee8ef07fa53f700310a2aec8907266438f0778e1c9efe28530826e72bbd59ec54e2e92fd4a17a392bdf38242eb452ea47ec9338","ssdeep":"","tlshash":"4a0123a7dae6a0c1d80780f41f4c60072494baea4e3af22e544181523a54da5d0223ff","first_seen":"2025-10-22T09:39:16.771509Z","last_seen":"2026-04-19T19:17:19.465514Z","times_seen":7,"resource_available":false,"data":null}},"time_used":784,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":784,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/leftPanel.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/leftPanel.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 146\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:08:04 GMT\r\netag: \"a3-439c7adccd500-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wPNKFjhw15bVpXqM2%2FgVmcazy0HIN0IN7%2F8tM7N8QCm1RoF3VY%2FAmYRk68%2BIrZo6Lds3sMuumX3CCbA6mOl4rfM5v47%2FMCP7NxlCuq%2FPDpwa%2BeeWdG0SoAQZvygzjQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f0019433181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":163,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"5c1bf4c8b678777fb06149e4ed14626e","sha1":"c3c9962d297e3cb2b171798b560b511b9b57b43c","sha256":"d47d2d36180d99fab1c0b9daf28db82b5a5bf7878a532e595316c1e40e539cc4","sha512":"5c3fa2f04567694e7cee6d4eb31bfd0da716e6492b97f58b1e4363fa8044eb405aeb06cf5bf23ee4f0f792ce71a79425eb67119f61a9180337d5637644cfb41e","ssdeep":"","tlshash":"66c08c0686d23044c8c16108367415e8ea3722276da76aa935a80210e68d8f920258d7","first_seen":"2025-10-22T09:39:16.460672Z","last_seen":"2026-04-19T19:17:19.466412Z","times_seen":7,"resource_available":false,"data":null}},"time_used":802,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":802,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/littleStar.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/littleStar.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 230\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:32 GMT\r\netag: \"e6-439c7abe48d00\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=53%2FJ5JzZuduy%2FVuR8wViDHPsjdYVlTcgAT8tXyY7yU9gIQsdHsGtbC631zdiF9ppS2YLNNsN%2Bpnqorr6tGj2PDcklmcLrrSiYOGAgr4GTz9J5pxsRq%2BSQptyvnBqrA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe3a403181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":230,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 18 x 18","md5":"5fff19c07696e3797c41f955d32995b9","sha1":"07e603b8287816c32aa3299a568cac206693270a","sha256":"bb1c8fe452051326142d9432ebf169fcad2acb8cfda45593ca80c071e2b40b71","sha512":"5ae6679e59ce670dc647f86452e39aef6d3cb175e04d90505d175aaf6ecfc54e8358d66045b77afa5d6a75248afe9f3bad8d1561d9a208d9991b475750e85fdf","ssdeep":"","tlshash":"f8d0224b8eb35a11c2a641f99e0aad1b981c069c95aa03c2283cc0a178c6d1a180f1ed","first_seen":"2025-10-22T09:39:16.634385Z","last_seen":"2026-04-19T19:17:19.467313Z","times_seen":5,"resource_available":false,"data":null}},"time_used":228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/otherimages/epsp/s7e9.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.571Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /otherimages/epsp/s7e9.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: image/gif\r\ncontent-length: 8282\r\nserver: cloudflare\r\nlast-modified: Tue, 02 Jan 2024 02:37:39 GMT\r\netag: \"205a-60ded61d2e993\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=27T4ijovorklKlLr2mKBUV%2FYYA2ihDGc0RoNvgGSKE5QMEy0kaHJcfHPzQKnPyKD4PxRhh9pRstNdMcc%2Belazt1rpCpF%2Fsuyp0ONRnv9mLE3drRuNd05DpjE1O%2BKkw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a213181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8282,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 154 x 115","md5":"3944ea5349c6204a55b11bc0517d4fbd","sha1":"9b3d82f827a8857b8a681f3c55eeca03174f3d59","sha256":"02a7f11f342bac008048e6c1b32214ec2d31ead2ec5de945e094185455fff75e","sha512":"11c5c55b39209372db6c61e5b3f5b90cde329c5ed523a5157f11cd6d1c9dfb42b9f95afe7565560f28c3b6ff4a9197f408946e470ee31d56bcad902a1a9007d6","ssdeep":"192:vlWopQ3ZBeZbjh5HtLVstMnAkuQ9UuT5Crw8trEgZPM:vk3De5j/JyCF9/Ck85EgZPM","tlshash":"ad02bfe9b8017aa444a4233584697478c87e271f42781a1363cba3cb9acd43907cbf0f","first_seen":"2026-04-19T19:17:19.468162Z","last_seen":"2026-04-19T19:17:19.468162Z","times_seen":1,"resource_available":false,"data":null}},"time_used":805,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":804,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/favicon.ico","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:54.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:55 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:04:56 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4mCqz8xA73GyJUNokArm3BjRkxoyq0xNDdoKX98WsvI2Oz75gm5HG9qiWO6L5KD4P4FoSVKuVOZSVeF4%2BnD6V77RwqUpQbiztvntRDMbkmKnAeLc62ct4D%2FjBq982A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\netag: W/\"47e-439c7a2982e00\"\r\ncontent-encoding: br\r\ncf-ray: 9eee3f10ad403181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"471a3383e0797bc2a3d8fdb7d95538dc","sha1":"a86894c8c482d25f5c2465f4e7492250e9738372","sha256":"c28d3b03902736fe61a5591a77dcd89f55d6dcc0849adae8bad28950b4ee2e25","sha512":"3f7f472d3b865e9c205d647175627e8184ad580403149056a13e1836b5bb96caa2b838745b4496757a5b6a31b219a35ae0c7f6f002876d6230f21964dabe008b","ssdeep":"","tlshash":"6621f34ffd11da5dcb485c32c20a57f435f8ac60c850c95344483e99b476a0519da0b9","first_seen":"2025-11-02T07:18:05.648704Z","last_seen":"2026-04-19T19:17:19.468951Z","times_seen":7,"resource_available":false,"data":null}},"time_used":743,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":742,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/master.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/master.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: text/css\r\ncontent-length: 158\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:08:00 GMT\r\netag: \"174-439c7ad8fcc00-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rL8Vm9cDYhcQuY8C2nAHbxpIMuQDEwD9%2FY2TvQCWSs4w%2B3HYA9RSw1qAQOO910qF2rPZu4jvWC5Jlm%2FigkNwHUpyl7%2FstgC4W0bybmlQeQA%2BxavW6w5V7HppDfgXkA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe29fb3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":372,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"92101e44f32fcef15e6e84e8067fb403","sha1":"d55225cb628ccfba1180c0fc1746c6d302cbcce2","sha256":"ad2d6153582ae41b35c7f984aa94be3341214576875ecbefd772f7a660c68f5d","sha512":"998f5d688e9afce818e8ed70203d2d87e944ead25b2b19c9b6a59f7f83d8bac57a5c3cdab4574d6497356ff970cb98bcee02c3a04e50a91df2ff90338940dcf3","ssdeep":"","tlshash":"93e09242eb5137c7f6d68016b14a732026e84c0c4bf6f18166f302b026b68aa8031054","first_seen":"2025-10-22T09:39:16.72605Z","last_seen":"2026-04-19T19:17:19.470101Z","times_seen":7,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/header.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.863Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/header.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 436\r\nserver: cloudflare\r\nlast-modified: Sun, 01 Apr 2012 22:16:15 GMT\r\netag: \"530-4bca56c0909c0-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q7eZvJfqtrwTEIysXZNROJQkYLAN%2BfSML0fmwwF1dg499ipRw9kuzh4JiqbLC8vG2Fa%2Bt123e1X4IDsr0b9K8q3sSn1ckLQlNTHNo5WtPqtZV4w00k8R95poKwdF9g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f00193a3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1328,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3e14975183b111dbd07447e1d1515f33","sha1":"8cfd5c41946a715d47ff8a5ea4767991ffa51710","sha256":"bea1f73f5e29e713faa21df557d477421d84c06cfdc5f11cd11a84e314be3f8b","sha512":"78e54501da7d3b2f1b8d4c41cbbd035d18a13743655854bfac212793d47970fa78840899eef81047fc795051d0f4c7371462b9f686703984cb914a0b02139c0e","ssdeep":"","tlshash":"d0219c7ea11d328b5019f2a1bca9ea18a10f4009b94f4c05bdb9fc6ed2d41dcd07339b","first_seen":"2025-10-22T09:39:16.449686Z","last_seen":"2026-04-19T19:17:19.471033Z","times_seen":7,"resource_available":false,"data":null}},"time_used":824,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":824,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/rightPanel.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/rightPanel.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 158\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:08:06 GMT\r\netag: \"bf-439c7adeb5980-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uOlC9zsPxPqKpxqvnLNj4Vu5YnrODClfNxkUpndJmZ43Nfzyec5PSj0mvh4ZPfGfdeA5%2BHMEzyg0tfQNq1MCWJprHb2eVgBtE3gh%2FnfPQp6Da6%2BFzdKm4CcA7V%2FGYQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f0019473181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":191,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"f207da83b817f3303b858e1040c9fbe4","sha1":"93ec638f75e16644ea3145f11769a2d50ab15bb4","sha256":"4a76f4a1541aa9e701dea7dabb4eadf76ffde476474d96b86f9abec54c24b8f8","sha512":"6e8a8f3e307f7fc46fbc4aa3ffc6a0568bf01a20908621bf6cb498ec715aaa527686849d386e325da4d8de5bb185481ad0cab6956559bc8c3ed227aeba4dea34","ssdeep":"","tlshash":"73c0c0b5a2301384b504338ffdf04078de1080c21a1f063478e9f115e146cb01c311c3","first_seen":"2025-10-22T09:39:16.658768Z","last_seen":"2026-04-19T19:17:19.471863Z","times_seen":7,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":195,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"agoda.com/deals?pcs=1\u0026cid=1818886","fqdn":"agoda.com","domain":"agoda.com","tld":"com"},"ip":{"addr":"103.6.182.20","port":443,"asn":45530,"as":"The Offices at Central World, 27th floor","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"agoda.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 05 Sep 2025 00:00:00 GMT","end":"Mon, 05 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"41:2F:2E:56:36:25:0A:07:1A:E1:0A:97:73:0B:B3:71:33:2F:96:FD","sha256":"9E:FF:B6:5D:3C:B2:57:72:37:8F:6E:04:B3:D8:0B:9A:8B:F1:D1:D1:C4:61:9F:C8:3B:F6:1B:DA:11:E4:8A:F1"}}},"request":{"raw":"GET /deals?pcs=1\u0026cid=1818886 HTTP/1.1\r\nHost: agoda.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.0 301 Moved Permanently\r\nLocation: https://www.agoda.com/deals?pcs=1\u0026cid=1818886\r\nServer: BigIP\r\nConnection: Keep-Alive\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"F5 BigIP","description":"F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions.","website":"https://www.f5.com/products/big-ip-services","common_platform_enumeration":"cpe:2.3:a:f5:big-ip:*:*:*:*:*:*:*:*","icon":"F5.png","categories":["Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T22:59:56.465105Z","times_seen":13951399,"resource_available":true,"data":null}},"time_used":1501,"timings":{"blocked":619,"dns":28,"connect":262,"send":0,"wait":263,"receive":0,"ssl":324},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/ads/468.php?show=1","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /ads/468.php?show=1 HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nx-powered-by: PHP/5.5.9-1ubuntu4.21\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lkou%2BUUzd3OqWbm10xO0aMCKxJdk7pivg7Rz2F6c8%2Ffps2Nx053Z70Mj5SHtRBD%2FLNq55QQ7qpkd%2Ficxru3zwCUtY49p9dLaxKRqLwueE9izeIeGPBOekvGDJgw4lQ%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9eee3f059bed3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=176,cfOrigin;dur=9, cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"PHP:5.5.9","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}],"data":{"size":1490,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (503)","md5":"6dc43704a3bd169ab172c09d9ad0c909","sha1":"116cc071dc5fe936f8d26f1b79138562249cf996","sha256":"4b74897983f338b9dcbeb8ec76a64b2c0ad033aac66e9db67c07f5940c4e355a","sha512":"6c6676996e7515ae2081f65febfb78de937eeca5537e1ed9bbae6fa685bd08561e54dea2910a5670f946c1427b56f41ce368b4fa049295c44038d0e3f0e26abd","ssdeep":"","tlshash":"4f31a48ef4045270c093829833ebfb462b3980ef67548ca060baa452c1e262980335df","first_seen":"2026-04-19T19:17:19.472926Z","last_seen":"2026-04-19T19:17:19.472926Z","times_seen":1,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.stansdad.ch/includes/images/containerBack.jpg","fqdn":"www.stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/containerBack.jpg HTTP/1.1\r\nHost: www.stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 2000\r\nserver: cloudflare\r\nlast-modified: Wed, 14 Mar 2012 20:26:02 GMT\r\netag: \"7d0-4bb39c8b9ea80\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JnteEJwQhfg6tP3Te7rS76QY%2FetenmYlwJPJJCFLtzWtOk60N3Lix0ZOTxI3WSi3ULzPpSq%2B%2B%2BqFlzQjrxb6tZsn9HNtQRjQjmj3t4wLJV4D6%2FKssg9UTsjY1hrwuHVwIAE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f067f1f3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2000,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 4x386, components 3","md5":"647a3b1d0f8300a282c92330123f3e98","sha1":"bff3f3ad289391098c0dfa007ceef0d2c6b692ed","sha256":"445e78331fa6ee5804eb1b3407b591a63aca7eb934ffc5c1d27f5850da7b9c4c","sha512":"961da87a755c97d8d4561942514ef9308b10e41653d0934c57b62717507d96a801cc019d18a00b1dc0ebd71516f9f7dd19f65c7896fef850b29071371a5ba634","ssdeep":"","tlshash":"0641b716b5232249d9c1dc7147e2481e661b4b54e5d3a43ba09fc463d1201bb792a9df","first_seen":"2025-11-02T07:18:05.678456Z","last_seen":"2026-04-19T19:17:19.473916Z","times_seen":6,"resource_available":false,"data":null}},"time_used":947,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":947,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"www.stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"www.stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/report/4/15/","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-19T19:16:51.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /report/4/15/ HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nx-powered-by: PHP/5.5.9-1ubuntu4.21\r\nset-cookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=185,cfOrigin;dur=20\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pRN%2F01t3a2T6SQ%2BhaYIEAmajThd4NML5%2BKSjarhF13b7pHZDzGqLzIic4vI4zjmsIMoDhJpdQV7KteHd%2FdHPKuQT%2FtYWBNKbgIgGxvhV7BPyUy8Wpg9TAd3%2F50kO1Q%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9eee3efb8f8f0b31-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"PHP:5.5.9","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}],"data":{"size":118440,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (442)","md5":"bdd39766ce15197a5f2a8a38c2a4bdc6","sha1":"c1470a9d67b1e816499fbcf85b7a400f5c8054a5","sha256":"4a28a7a0c8e900cc4ae725342d1b8add50b645d60e3e3bcb78adf28595fd3e8e","sha512":"b702d0e809da0d607863b7716e1aca7f88797aeacd7a7c4e122d66eeae7561fdc9f15f5b065b4221d954ecf7d867d4f6bcc1dc1c94d75bff6d822857e90738a0","ssdeep":"1536:Nrk4utO4fbIxgOWPsx2HD4uSnKVGV6R2F:pScHWPy2HD4uXRa","tlshash":"b2c3bd10595dd1b736aa9bde07b9720936f20721a182bd9cfcacdff16319d01e1260fa","first_seen":"2026-04-19T19:17:19.474928Z","last_seen":"2026-04-19T19:17:19.474928Z","times_seen":1,"resource_available":true,"data":null}},"time_used":333,"timings":{"blocked":51,"dns":28,"connect":1,"send":0,"wait":229,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-H7WR354D7D","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:35:14 GMT","end":"Mon, 22 Jun 2026 08:35:13 GMT"},"fingerprint":{"sha1":"BA:9E:A9:01:73:30:25:9B:9B:28:25:39:24:13:22:55:3E:F0:57:C3","sha256":"9D:AB:4E:BD:B4:98:3A:1E:70:9C:42:A2:E1:DA:0E:18:3C:BB:D8:2A:58:08:F5:85:3D:36:0E:1A:7A:27:AC:5E"}}},"request":{"raw":"GET /gtag/js?id=G-H7WR354D7D HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\nexpires: Sun, 19 Apr 2026 19:16:51 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 150755\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":445293,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5929)","md5":"0f397eeab4dde3df38d5bd992b4e98f6","sha1":"212f263202f89be9832fab452fbeed1d14e7268d","sha256":"7374bd806a54e673b50baeaef684635d3c0bb471b882738c6db11b5c57df0b63","sha512":"0131ad42fb2d453f33a138f0e986e3c970e8d35fdd9d24a82063568b027a67bb5848f767717995c76007aeee8072b1e18f05ecad650a08ec1b426c405d40ad74","ssdeep":"6144:j4OjKgsCA4MRBRfrJPj8B3v0yIjwcHRpLUgW1w01V91XX:3st4MtfrJL8M5BOn","tlshash":"949419cdb3c674665397f478903f018ba57b28a2b44cc89af189c8e42e7465a4277f7c","first_seen":"2026-04-19T19:17:19.4758Z","last_seen":"2026-04-19T19:17:19.4758Z","times_seen":1,"resource_available":false,"data":null}},"time_used":396,"timings":{"blocked":134,"dns":1,"connect":15,"send":0,"wait":55,"receive":49,"ssl":138},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/episode.php?epid=213","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /episode.php?epid=213 HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nx-powered-by: PHP/5.5.9-1ubuntu4.21\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IM8okK3ES3m8vFUdzR1IhMYMlqrsbD0GF2yoVvAm7SvcvLTTV8wXHzkm%2BwgMVhkQ%2FhOVOpIqB4VWGLFhNiw%2Fq2MxmhoYac%2Bj%2B3SeJpj2fXWDRElGD5C3Jkvgcdb6Tw%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9eee3f059c143181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfCacheStatus;desc=\"DYNAMIC\", cfEdge;dur=2,cfOrigin;dur=741, cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"PHP:5.5.9","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:2.1.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare Browser Insights","description":"Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Analytics","RUM"]}],"data":{"size":2351,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (545)","md5":"4fda4c731bb0ae38c17a6e9839e9df9b","sha1":"55f3374f38a16449a3816687df4bca530ce960ec","sha256":"5218277bd0e578890b8582a039ea4863815610297f2778d4df06408126529ea5","sha512":"974398ce83cfb6f0500c0465505d9b5428f4235e4a5efb585c8359667044f24c2704a39197f32b2dc83f79493d0719ffa3f514fb42d5021c5f0b1721a89e345f","ssdeep":"","tlshash":"f841b6e299d2a21d901740ceb161bb0d3f26541be327ce2175fd7131cf46aa249233ae","first_seen":"2026-04-19T19:17:19.476637Z","last_seen":"2026-04-19T19:17:19.476637Z","times_seen":1,"resource_available":false,"data":null}},"time_used":749,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":749,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/css/parts/other.css","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.872Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/css/parts/other.css HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/master.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/css\r\ncontent-length: 874\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:08:06 GMT\r\netag: \"b08-439c7adeb5980-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jHk8RijetyZqBcK7P8TquxSFWJqSoBzjsKE5o8DnucEadZdLJKGNs8VswWIeFMtwsQOHTe0f37HVgt7QOZRWNbDti2lzalDTu8IfYbFDUO3hfDsBH8QL3AzAWm95dw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f00195e3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2824,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"6701160b1040fbc4ace2f656a13cfbb0","sha1":"c417bbdefe171ef7d07f2a3d050bc02a950babdf","sha256":"e23f07487f96b7160264cc689bb13c7eb1a98a022174146e95ebd7965954c899","sha512":"eb31f39b523d03dff333b7599205ffeefc3b52cabe6490cbf4d39f0f79740219b14332f99713f670a020322f6a255e73e9354995f59ec656a4c156e87ac06da6","ssdeep":"","tlshash":"8551a16deb95308fe21ba5e5fbf02b526f4254216f0e4679f5d4a328d2c44bc353268c","first_seen":"2025-10-22T09:39:16.688233Z","last_seen":"2026-04-19T19:17:19.477565Z","times_seen":7,"resource_available":false,"data":null}},"time_used":196,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/nHome.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.566Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/nHome.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 551\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:38 GMT\r\netag: \"227-439c7ac401a80\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZTmGkdhVaOx7S0SCFEr10112ojokrxNqErkx3ZPWnXziEmuK0EzIKH4tXHUgSXbemW%2BqboeH0JFsi664tEm5iQdVHWjJ%2FvrXRI28BtkRqu8JniMZFcrJ4i2tdpcFOA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a113181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":551,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 90 x 26","md5":"b6d506d8094d998b716fe85c6e012d90","sha1":"230b5e578baed3d75fc11f6713934fd990e861b9","sha256":"bbfa0e3715c8410faeed09a80c3d0c2ccfd2d0465d5d5e74e5c7d01d64b38efc","sha512":"309f5c661a0181f71c9121d5354921e47838eb40d0731ec43afd0b555515faad8c638ee540935ccb92b6d516c32032708d8c784950197c3c2286a8cc3f34d654","ssdeep":"","tlshash":"06f00e06ca0adc9df6900938ee9d2106e001dfc2bc29c83ab0742512874bc16fa87ae3","first_seen":"2025-10-22T09:39:16.662644Z","last_seen":"2026-04-19T19:17:19.478322Z","times_seen":7,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":231,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/nContact.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/nContact.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 734\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:36 GMT\r\netag: \"2de-439c7ac219600\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HM1KMqrjArfkxaBeAAnDvNfDlxKAQZpHDCUR0fPkBPEyIMZsGtGDXu5QfkwJUO2R8EihWgiHwtQ2fwUm6Tt%2FFNdDUodltbb8KJqQg841pkrOGxbGMXjE0H79LKRcJw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a173181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":734,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 115 x 26","md5":"579e2ce861f890ff323ab7eec7592a5f","sha1":"7d81f75d6609c4360335e48bcc7fe7ef593e01dc","sha256":"069a77a164459f7b42b108ef328eac61a74ad6fe22b0f21ba42eec5a652d4921","sha512":"e63b6200fc988738cbac7e0af2e16aced3c7091586c3ab3108118322278b4f1584262c8ce1cf7235b78fb23a8870e5eebb00a6de8b1a3a090b171f576aef2ba0","ssdeep":"","tlshash":"db019412d2b000cbc3fe6033fc2e9101ea82ab1c1ee40ea673be3fe05044662082857c","first_seen":"2025-10-22T09:39:16.508417Z","last_seen":"2026-04-19T19:17:19.47912Z","times_seen":7,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.cloudflareinsights.com/beacon.min.js/v8c78df7c7c0f484497ecbca7046644da1771523124516","fqdn":"static.cloudflareinsights.com","domain":"cloudflareinsights.com","tld":"com"},"ip":{"addr":"104.16.79.73","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflareinsights.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 17 Apr 2026 18:57:25 GMT","end":"Thu, 16 Jul 2026 19:57:22 GMT"},"fingerprint":{"sha1":"AB:25:45:8F:55:B6:2B:26:B5:B1:EF:90:E0:60:64:9C:56:47:0F:B5","sha256":"47:83:31:CC:5E:02:0E:51:A7:52:AC:83:1B:8A:A8:4C:74:11:A5:F1:61:8D:C5:6D:29:3C:9D:6A:C9:29:AF:7F"}}},"request":{"raw":"GET /beacon.min.js/v8c78df7c7c0f484497ecbca7046644da1771523124516 HTTP/1.1\r\nHost: static.cloudflareinsights.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://stansdad.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400\r\netag: W/\"2026.2.0\"\r\nlast-modified: Thu, 19 Feb 2026 17:45:24 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: 9eee3efe5f875687-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31169,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (31169), with no line terminators","md5":"4f67ea9205c3ca7c9e04582d3b9bdd1d","sha1":"d3b68ad3eb88d3db3d843211d4905143c3bff281","sha256":"4b77eae349a8cbcea7133cf3640a64ebf1f69d54d8f6469d7be6fdc188ca4ca4","sha512":"f034bbae022b026821045c28393ba371fe83f6b5ef1fcc66f0943525ad3587d417f04cd795d8accee7d86b82057ca74b50a4d3ae74855cb0e4504393ad943c42","ssdeep":"384:BXi1f+hZCIy1f84QDRuT9WKw00QmLnivMt+BERzR0c744BKJKe0620vFjOkcXo9g:+V584QlIrw6OPIJJtFjj09N","tlshash":"bce218eeb591b13603f7a072447f210b733ab56264494408e21bd6c22c78eeed257fad","first_seen":"2026-02-19T19:35:51.221473Z","last_seen":"2026-04-19T22:58:51.072834Z","times_seen":43595,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":10,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/containerBack.jpg","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/containerBack.jpg HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/includes/css/parts/globals.css\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 2000\r\nserver: cloudflare\r\nlast-modified: Wed, 14 Mar 2012 20:26:02 GMT\r\netag: \"7d0-4bb39c8b9ea80\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5EQ0ORKLn%2FrRIYuNj0P1wbtti%2FPfykPdjFgGuSi7DjVzwl0GCZn9ebbdOZdU8QmVGyhYBFRcdpNjvx%2FJMFf5kRQ3HJyBqTCpIguiBD%2B8aIROO346P2g6I0%2FQ%2Bdcb7w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f05ac543181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2000,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 4x386, components 3","md5":"647a3b1d0f8300a282c92330123f3e98","sha1":"bff3f3ad289391098c0dfa007ceef0d2c6b692ed","sha256":"445e78331fa6ee5804eb1b3407b591a63aca7eb934ffc5c1d27f5850da7b9c4c","sha512":"961da87a755c97d8d4561942514ef9308b10e41653d0934c57b62717507d96a801cc019d18a00b1dc0ebd71516f9f7dd19f65c7896fef850b29071371a5ba634","ssdeep":"","tlshash":"0641b716b5232249d9c1dc7147e2481e661b4b54e5d3a43ba09fc463d1201bb792a9df","first_seen":"2025-11-02T07:18:05.678456Z","last_seen":"2026-04-19T19:17:19.473916Z","times_seen":6,"resource_available":false,"data":null}},"time_used":795,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":795,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.stansdad.ch/includes/images/headerBack.gif","fqdn":"www.stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:52.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/headerBack.gif HTTP/1.1\r\nHost: www.stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:53 GMT\r\ncontent-type: image/gif\r\ncontent-length: 42869\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:30 GMT\r\netag: \"a775-439c7abc60880\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9fldNgjHP4cYVaVwUpyimgKvlROfPqF1ZF9%2FQoSDUBlFJ9T4AzrLmG%2FrArwq50MhS%2FWtXx3PB3Unc6PVLmRD9sBkQBSgB6q7SdBDgFYQgE1D3xogeejVAF5t3NfYsDw3V7s%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3f067f203181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42869,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 860 x 150","md5":"7693db96222bdbd3d29dac1b44d2be21","sha1":"cdafdd18a96eeb7b6e3e4ca52d2fc7c4474534a7","sha256":"15fbfc94b4483019a117a8f8b7e925f78256a670ebf2d87d0f1d7c1aef7d7611","sha512":"a85f218d9f05dc7f0e287b181f64f071ebc858ed7d5b5648bab6e5bc9fe925e1167f13ff50aa66f6e42014153fd9f2e278ffe036edff9ce090ea433f9cf93223","ssdeep":"768:mgTA697ZEo4QhKnpJ9nweWu6uA5iQoGMAXdr+JmhEguf7RyACQsqvPuX:/TApoXhKpJNweEiQoGtFGCQs3","tlshash":"1f13010c9728a9b5d564029d8defa5c491ef41e7b07166b0c0c2a0fe736e3e0b415a4e","first_seen":"2025-11-02T07:18:05.660302Z","last_seen":"2026-04-19T19:17:19.480021Z","times_seen":6,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":232,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"www.stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"www.stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/includes/images/nBlog.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /includes/images/nBlog.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 531\r\nserver: cloudflare\r\nlast-modified: Mon, 10 Sep 2007 13:07:34 GMT\r\netag: \"213-439c7ac031180\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aFnMHkLvdZBumFJAJaKXTLPKhA3yMHT9%2BQOuLNcPYhuyxnXs%2FUZCmvTKRYIdbhLPbXR4z6hHIQSw4qFfypSHTVitu4tjs8ZRYgCT8ciFJYv1cM7lVefO9IfjEOBU3g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe2a1d3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":531,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 83 x 25","md5":"c397e43258f074a2ef104528939b0504","sha1":"e65d0ec969cf8638c3755ae783bc0c6cb164ec35","sha256":"93329756bcbbe2159b5d9c355c4edb0f5a3ba6b865d576fe7769c4b525ea357a","sha512":"685515834090745b63bf831141651bf905230b7bab5c99940c15d05fcef2288558673488b9df5c2f3bd001926d49d0e4ea1ad5d522eab9bc86a6bbd5e89bd720","ssdeep":"","tlshash":"8df00e605b494dcedb5e46f4fd9a41051cb07a52aa6049bc25a392448d0185604e0075","first_seen":"2025-10-22T09:39:16.741121Z","last_seen":"2026-04-19T19:17:19.481067Z","times_seen":7,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stansdad.ch/otherimages/reboot.gif","fqdn":"stansdad.ch","domain":"stansdad.ch","tld":"ch"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.576Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stansdad.ch","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 03 Mar 2026 05:03:27 GMT","end":"Mon, 01 Jun 2026 06:01:54 GMT"},"fingerprint":{"sha1":"CE:75:2E:C1:73:5A:A2:78:80:6C:84:F2:24:B2:F2:93:BA:03:00:F1","sha256":"FE:94:D6:89:16:7B:81:DD:C0:61:CB:9A:1A:2B:59:A2:57:6A:9C:59:FD:06:D7:DF:3B:82:6C:2C:6E:C0:D6:0D"}}},"request":{"raw":"GET /otherimages/reboot.gif HTTP/1.1\r\nHost: stansdad.ch\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://stansdad.ch/report/4/15/\r\nCookie: PHPSESSID=o1fqutpstf7amahv8agb3srtv1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Apr 2026 19:16:51 GMT\r\ncontent-type: image/gif\r\ncontent-length: 1064\r\nserver: cloudflare\r\nlast-modified: Tue, 02 Jan 2024 02:37:11 GMT\r\netag: \"428-60ded601f5d93\"\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ydvOTrTXaXG4qqWLQ40T5uZQyE0CDoHBL1u9864CcbJxZSWRvrOStYboHx5x5hzgPuO8dxPJ5iwoT5AGAbRj3SsxbZSToPeDv%2BW%2Fpb5WwE7Eg2atgtfGkHWh8Yd%2BLg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eee3efe3a3c3181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1064,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 52 x 60","md5":"681f901ad906063d1cd5b17bc1509ed0","sha1":"526ee18e870e37f4bce639672f5dcebc52ea90e4","sha256":"7c6a217def9673e8f6680904b7f9baa087ba40e0f8d0099e0e0a52bfaa45d025","sha512":"22f81bff498968f4e45b3873b333934584b8ce1896510bf3f40cfcce84886f20515c542de92a23f80d2534148b6ac286fe8ecfd4fb5879f28599dadc5c1d5d0b","ssdeep":"","tlshash":"4d1182b5d209a67dc18302bab95919143a83811e0be6e84fbe924f4054ea139e29d2c3","first_seen":"2025-10-22T09:39:16.802156Z","last_seen":"2026-04-19T19:17:19.48196Z","times_seen":5,"resource_available":false,"data":null}},"time_used":225,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":225,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-19","alert":"Sinkholed","trigger":"stansdad.ch","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nethcdn.com/w","fqdn":"nethcdn.com","domain":"nethcdn.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://stansdad.ch/report/4/15/","date":"2026-04-19T19:16:51.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nethcdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 31 Mar 2026 03:36:40 GMT","end":"Mon, 29 Jun 2026 04:34:07 GMT"},"fingerprint":{"sha1":"79:78:AF:01:B6:0B:AB:1E:72:8A:AE:93:85:77:C0:61:F0:31:67:93","sha256":"A6:08:5E:8A:AA:D1:7A:8F:00:A6:A4:69:43:DD:74:51:EC:03:88:9A:6B:7B:6A:C6:BF:91:17:E4:BF:B5:DE:1A"}}},"request":{"raw":"GET /w HTTP/1.1\r\nHost: nethcdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Sun, 19 Apr 2026 19:16:52 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: https://agoda.com/deals?pcs=1\u0026cid=1818886\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nset-cookie: qwerty_w=0; expires=Tue, 21-Apr-2026 21:16:52 GMT; Max-Age=180000; path=/\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3BxdH77XwWuHE%2FkHen5Vm40U0FmoYpvjHFNVkIW%2BbgN2jn521FSAqdSYV9wE6z9FGarLoN7vc%2BnelmCfB%2Fm4NA38RKgoiyFd69kEIIKLYOA0lEnavgeTZJHjLq43Tw%3D%3D\"}]}\r\ncf-ray: 9eee3f00d8e376ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T22:59:56.465105Z","times_seen":13951399,"resource_available":true,"data":null}},"time_used":382,"timings":{"blocked":52,"dns":33,"connect":1,"send":0,"wait":278,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}