{"report_id":"aec8c969-0761-49d5-a1a3-cb214ac3e130","version":6,"status":"done","tags":[],"date":"2026-04-18T12:52:44Z","url":{"schema":"http","addr":"ladlweiaa32.com","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"104.21.38.245","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"ladlweiaa32.com/","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"title":"TIK TOK","dom":{"size":50795,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (34427)","md5":"b483afd9c1aea3fe4219e95e41a02bd3","sha1":"4243f3f2a080c206f7140a666f731820849fa98e","sha256":"b5c196af22caa2d07163314c032f3032410a73fd14025d1eb06fb4da49b20293","sha512":"83823a718a470a276d5e70581b976824f6e9408347b26d405b8bdc9ce93c3ecab3ee094ca93547e354b59a346d5d344cdcd63431fb490b22f32a09c10725a5cd","ssdeep":"1536:pJuzQNGpuzSjMRSP6vq4on8TGsktzTvNDo9TFOZA1uULz:pJuzQNGpuzSjMRSP6vbon8TGsktvi9TX","tlshash":"ab335272f1a3051f226764aa6075f3ba3b7e424ccb039f65a36837a517c6f85dab7040","dom_hash":"domhash2a219cd4bd3d973e22242a273201eea4","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ladlweiaa32.com","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"104.21.38.245","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-23T12:52:44Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"ladlweiaa32.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-07","domain_rank":0,"first_seen":"2026-04-18T12:52:47.999889Z","last_seen":"2026-04-18T12:52:47.999889Z","alert_count":104,"request_count":26,"received_data":5367502,"sent_data":12119,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"172.217.19.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-12T22:20:19.752051Z","alert_count":0,"request_count":2,"received_data":23756,"sent_data":918,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-12T22:16:45.621325Z","alert_count":0,"request_count":2,"received_data":46038,"sent_data":1190,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/chunk-vendors.e4097493.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7933c8db086499706521e5d7db8534a2","sha1":"db13f8c953b0d8cc5f576bee10c755cf3a280332","sha256":"6f595cf12791602e634b58df22348ac96a743d893805ec542b3c727bf79040be","sha512":"dae08be9b4ad518a7c90d67fd8c2591b02376e675f9c3c213e5935f123e08fc0e70f8a140dc55a8ba8a334d3a0c14dae18fce7443af4c352699f5921e76bdd1b","ssdeep":"12288:tPRFdsyKTwtrTlyfz/GLzGHE0VgE0VpgWHksu3L:tPRF+yowtrTly/WHG3L","tlshash":"54d4f9897292b07143e750e5406f010bf33a6969b44e94d8f269e8ea7cb984e517bf3c","size":625466,"data":"","first_seen":"2026-03-21T10:52:55.26085Z","last_seen":"2026-04-18T13:03:14.353403Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/app.01a137ba.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e2050f84f4dadebb42f9f38668f4fb8a","sha1":"2616917388352b882eb08c4645fb67df5d4f4779","sha256":"4ddc3956228241ebcaab42714c111a279f988e11275067c0ed4c9ee3325cfece","sha512":"0d11258c4e1a9cde6b67e2fa9e9da37a9d045f71007054db9fb23c3d0974cc10ee5111f8e9c9c0d4380c9457ea14bef66ba9a3cf1e313fb9f248ca0f71732ce4","ssdeep":"12288:xY/jHZIkw+Fa6WMLsK6WsdYWGUBbtbEYb+XphKlobBh2QjPTwpTeCm0bjSgUsVtT:7MLqp7Qjwn8IGAf/","tlshash":"4ab45b70b1ae476b29c2d401601a3f09b0e91cfee69bc2109d75876d35e6c7056eeb3b","size":526741,"data":"","first_seen":"2026-03-21T10:52:55.26913Z","last_seen":"2026-04-18T13:03:14.368984Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/app.01a137ba.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e2050f84f4dadebb42f9f38668f4fb8a","sha1":"2616917388352b882eb08c4645fb67df5d4f4779","sha256":"4ddc3956228241ebcaab42714c111a279f988e11275067c0ed4c9ee3325cfece","sha512":"0d11258c4e1a9cde6b67e2fa9e9da37a9d045f71007054db9fb23c3d0974cc10ee5111f8e9c9c0d4380c9457ea14bef66ba9a3cf1e313fb9f248ca0f71732ce4","ssdeep":"12288:xY/jHZIkw+Fa6WMLsK6WsdYWGUBbtbEYb+XphKlobBh2QjPTwpTeCm0bjSgUsVtT:7MLqp7Qjwn8IGAf/","tlshash":"4ab45b70b1ae476b29c2d401601a3f09b0e91cfee69bc2109d75876d35e6c7056eeb3b","size":526741,"data":"","first_seen":"2026-03-21T10:52:55.26913Z","last_seen":"2026-04-18T13:03:14.368984Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/chunk-vendors.e4097493.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7933c8db086499706521e5d7db8534a2","sha1":"db13f8c953b0d8cc5f576bee10c755cf3a280332","sha256":"6f595cf12791602e634b58df22348ac96a743d893805ec542b3c727bf79040be","sha512":"dae08be9b4ad518a7c90d67fd8c2591b02376e675f9c3c213e5935f123e08fc0e70f8a140dc55a8ba8a334d3a0c14dae18fce7443af4c352699f5921e76bdd1b","ssdeep":"12288:tPRFdsyKTwtrTlyfz/GLzGHE0VgE0VpgWHksu3L:tPRF+yowtrTly/WHG3L","tlshash":"54d4f9897292b07143e750e5406f010bf33a6969b44e94d8f269e8ea7cb984e517bf3c","size":625466,"data":"","first_seen":"2026-03-21T10:52:55.26085Z","last_seen":"2026-04-18T13:03:14.353403Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/app.01a137ba.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:22.722Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/js/app.01a137ba.js HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:23 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-80995\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Rbdd45Uc8CmFxv0B0zhwqO4F4DDcR0wZ9KZ9J1GQPVZZaPktUlHCQzOBK6f9y4XAkXmFZiiC%2By3LS5E5%2Bf%2FGPBuNSkxIMC%2BljJVPwDcBDzw7uD2V9cbtKtW0EFxfvwis2Xg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce69fe550b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":526741,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (57454), with no line terminators","md5":"1c2fdec8b9f713e2b511a7c3fe264a63","sha1":"b04f60e86c258b98e6a9ebe553aa503495ece9d6","sha256":"bc208f85d297c5a520f6c4730a0164c262961e108e7191ca33b1825df3b214b9","sha512":"5c5dff1ee4802f1a8486f5d58130c4a6e9866e43999fd6d08d0b8937183365344f085a184b6759969fa263b5136556beb58dd17ef3b635dba45d4ca4cad0ea43","ssdeep":"12288:xY/jHZIkw+Fa6WMLxhKzh2QjmmUsVt8IIlCfOU:7MLWjX8Ivf/","tlshash":"c8d42a26f16d03a52db6c5ca76453b947cafccc9c18e811b4dad836c34d9af001e9e9b","first_seen":"2026-04-18T12:52:54.138272Z","last_seen":"2026-04-18T12:52:54.138272Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":498,"receive":702,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/4fbed5092466a29b2b9084add1ee509b.png","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:24.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/4fbed5092466a29b2b9084add1ee509b.png HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-18T17:23:18.554491Z","times_seen":13905115,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/fonts/materialdesignicons-webfont.68358e87.woff2","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.069Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/fonts/materialdesignicons-webfont.68358e87.woff2 HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/static/css/chunk-vendors.8bf3b106.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:26 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 396732\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\netag: \"691c1947-60dbc\"\r\nexpires: Sat, 18 Apr 2026 12:53:24 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\naccept-ranges: bytes\r\nage: 1\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RzQ2dezLJvTgKRLlGc9sR8w%2BgFu715gg6EBNTrdgyByAU%2FPFCeaMFUb%2Fcd3lfSxFqIHasfNB8eQmcxKh3xq399mvwGuOfC%2B8fJRuqwacjcgfZqFtQ9VWK2wbI3I9UNEnCqQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7eed240b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":396732,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 396732, version 1.0","md5":"a295367092b36cdefbd14c75fe179be3","sha1":"372ee25ad5727e198a9f04e27a6eddb3b7e0493a","sha256":"c1c004a90e60a31becd3ca261781c3a13a2937b5b26338fd8dd89e10ab562849","sha512":"3827c6d8704d9d45c06b3898a6c7797216c5c372af7e8fd25c6b991bc73d32fbb27ca9a5e26be3d5f5314e5fadda3a25cf7f4b4d67a11107864d86906050ff0a","ssdeep":"6144:evPgGFP608pjs97Cb7ZCSxzvsDek4xXhAahPoAXhK8Qt0FZ9EaWSfioRGxmaM/aZ:ci02Q2PZRx93xAaaWK8q0Nr6oYQ/aZ","tlshash":"998423a4b2d157963ca35ef71eb295b04a3074a6e342d3e19a54cbdc02e50e9372f862","first_seen":"2023-04-08T18:25:45Z","last_seen":"2026-04-18T13:03:14.348834Z","times_seen":631,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Google+Sans\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.19.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:22.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"1A:63:7B:F3:04:6F:4C:E4:F3:15:87:E8:E7:FA:DD:B1:F7:7E:89:49","sha256":"5E:36:5D:D1:35:3B:0A:E9:8A:55:91:DC:12:B0:50:4A:AE:D9:A7:97:06:7C:0D:D7:F0:23:3E:8A:B2:08:19:00"}}},"request":{"raw":"GET /css2?family=Google+Sans\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 18 Apr 2026 12:52:22 GMT\r\ndate: Sat, 18 Apr 2026 12:52:22 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11202,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"28786c9c2229a06a7c0e067d37e778d4","sha1":"ee3cb2655475e3ee361b6616938a367869aa3727","sha256":"288e0478421489bc6e079549070c384ae44548bbc95539337d28f47242f5782f","sha512":"fec2bd5b09a724552c2a954a73dbf1331bb53bd3b81c4f6c6789aef68a151d59ca748a2de4e78b97292cd15205f04e21410c31b2082758fc0ec39f14d37ed6f4","ssdeep":"192:BgsEwRFtEWfNsh8JlWAOWsmkbqGIwVhtD47YeFPxJ:tHoqYCB","tlshash":"9f322e910207a01abe53bcdb33ce6a257f2d11255045d63a9afe0ec59cd786603b1fbe","first_seen":"2026-01-29T15:41:48.899732Z","last_seen":"2026-04-18T13:03:14.367666Z","times_seen":12,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":110,"dns":1,"connect":21,"send":0,"wait":32,"receive":0,"ssl":91},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/css/app.0e5ecd8a.css","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:22.724Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/css/app.0e5ecd8a.css HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:23 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-776\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GYBLAu1IgeRB6C3XavQNxHdrXZ0YRWhrvPiiZiRlsiI4VDXgjuT0ui0W7sCPsfA%2Fq5eNS3ZLlM%2B%2Fvq445I9BOgn6oAGoxvQLboAS%2FWWl5oqoaQRDqgubQOtjEBDs8TYvM4Q%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce69fe5e0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1910,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1910), with no line terminators","md5":"23b89bf2d907579e7b63c73a5e141ed4","sha1":"901ed51a9e8a51d66557440ec7965ba03bc80af9","sha256":"1a2071d556fab03e6ed0395e2696a2b0cce73c6b70ab8d36150c6d18c9e4b0dc","sha512":"394fc236a241069f86d75890fd70e9db45b0dfe458dd9ed8ac8c2fdea5b2a127ba75df517ae20fc773e248c8c0bb5ec3dab80d846114ed136df410e6ab6ce797","ssdeep":"","tlshash":"e4411261b355700e6877d66660dcaa3c0138b247c3930cedb286776e8f561cb7b325aa","first_seen":"2025-06-24T16:41:13.201873Z","last_seen":"2026-04-18T13:03:14.351693Z","times_seen":8,"resource_available":false,"data":null}},"time_used":505,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":505,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/87bcf43d-api/home/siteEnv","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:24.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /87bcf43d-api/home/siteEnv HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nX-Token: \r\nAccept-Country: 3\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:24 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nx-powered-by: thinkjs-3.2.14\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dHetT0VRgVGCUPinbtYgs%2FknPfpFHBgIRTqtayIjR9FJ7r%2FkvaOy3K2HkRAM81vde1Ls8LJ4pB7%2Fy9cKf8FUpTK1Za8ctzJpPTh8XQ0f4GlzN2DYyXF%2FzGndqTHNYm%2FOPpQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ee3ce74ee5b0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":103,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5f9a44f239cc92538408f19e3a61bd28","sha1":"b6eff2fda0797f6ce5e2a6651faaa79c8bf10a34","sha256":"8f5ed4ab3601e02a4696a7cd3902271659fddd76284c5bc146424cffcfe40a75","sha512":"51166656b6d91756d46708468a05cf47968b55ca76926da7d94d3dafab54175c67ba59ba3c46f153cd11f65a8241dc23150f4ea70cb4437db8512dd3d4c6f64f","ssdeep":"","tlshash":"e9b012c8d4c8c2110e032f80dc83450ab0d2119f2074be40c543efc9cd9c1e7e203801","first_seen":"2026-03-21T10:52:55.306869Z","last_seen":"2026-04-18T13:03:14.346691Z","times_seen":3,"resource_available":false,"data":null}},"time_used":508,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/app.01a137ba.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:25.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/js/app.01a137ba.js HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-80995\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\nage: 2\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Xy0EpOxAI0qJCUbqVXMLblEVJM66ZefG7eczlG86xpRtd3K%2F10iHYdp1cs%2Bxee0SzHla3lW0e8aA1MrPWOYZShe84LakwFKNhrBaQxEjfHWOcR8cKIUTTWGyIrz08SKIU%2FQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7c2af10b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":526741,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (57454), with no line terminators","md5":"e2050f84f4dadebb42f9f38668f4fb8a","sha1":"2616917388352b882eb08c4645fb67df5d4f4779","sha256":"4ddc3956228241ebcaab42714c111a279f988e11275067c0ed4c9ee3325cfece","sha512":"0d11258c4e1a9cde6b67e2fa9e9da37a9d045f71007054db9fb23c3d0974cc10ee5111f8e9c9c0d4380c9457ea14bef66ba9a3cf1e313fb9f248ca0f71732ce4","ssdeep":"12288:xY/jHZIkw+Fa6WMLsK6WsdYWGUBbtbEYb+XphKlobBh2QjPTwpTeCm0bjSgUsVtT:7MLqp7Qjwn8IGAf/","tlshash":"4ab45b70b1ae476b29c2d401601a3f09b0e91cfee69bc2109d75876d35e6c7056eeb3b","first_seen":"2026-03-21T10:52:55.26913Z","last_seen":"2026-04-18T13:03:14.368984Z","times_seen":3,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesans/v67/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"8B:DF:9C:24:AB:AD:AB:73:3F:51:0F:25:2B:18:76:79:1A:C5:63:A0","sha256":"BF:5C:B4:F2:20:4F:D0:E5:76:81:59:52:5F:3E:D2:4F:8D:33:B3:30:36:84:C8:7E:0E:AB:58:1E:7D:D6:E2:6D"}}},"request":{"raw":"GET /s/googlesans/v67/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://ladlweiaa32.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22184\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 11 Apr 2026 23:51:20 GMT\r\nexpires: Sun, 11 Apr 2027 23:51:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 565266\r\nlast-modified: Wed, 10 Dec 2025 17:14:49 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22184,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22184, version 1.0","md5":"59273bff8128028304bb9e3d453c25cf","sha1":"51e3d3334f3269e3c262f9a9a47590ca73ec871f","sha256":"d2263711c4bed4e203c88ed278049c80d1d3b1fff690be0b3a516749cbb38c58","sha512":"53655fba1f72533014c66442bd7274dde3f02366a70f1f4783f4e22b06a1f70752d511542991bc4997d91938ee2c25571a2c6a537ea7e4af406579ef0bd69b46","ssdeep":"384:dTEX8Wm9sWw25hJf1o6ePOfv9J0ov4n1vZlnb+TmW3PZPHu+aYkxMUzvFb3PZf1Z:dTEjWXfOhPOfvYov4nXlb+qgGlZfZRXd","tlshash":"46a2d0bb2ce4803a8f1271a4fe2c5d0606106e974ef9466e4a39f190395936dcf623f8","first_seen":"2025-12-11T08:56:06.422417Z","last_seen":"2026-04-18T13:03:14.347875Z","times_seen":453,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/87bcf43d-api/lang/env","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:25.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /87bcf43d-api/lang/env HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nX-Token: \r\nAccept-Country: 3\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nx-powered-by: thinkjs-3.2.14\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=83lCV1%2BDm5nf2E0jr3D%2BjAWQ%2B9OQdDhDhBSo2pJsqppP9F%2F5OIbT%2BumbAQ2q4Y1LifTdNQf%2Bqk6pX0qZ%2FL6gWlzQyPLDSrD7dyW%2BreQMz2Cj7zxoZuhsZ28l7JPbGB0QKKY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ee3ce7848710b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":125,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"37c7667e4c2a3384de6db6f94e4cbfcd","sha1":"b89e791f8457ad4233c2e69738fd61984754d87f","sha256":"196d574d23b1ecbe25ed797bd6f1f51a8ee392670e9f5cb88d53bd921413cb9f","sha512":"ac0e574f720f00e654952dfafdf20ad7a84b6ead8fb1c37a2e269a04fe3fb929329cd8a68367d33fad602d4f9c75acd6cdb567dc817a8af100de80b2729cd1a4","ssdeep":"","tlshash":"b4b02b15bc804d3b4c41c38034a015400780117d04103b0050c46e0883441991103798","first_seen":"2026-03-21T10:52:55.29097Z","last_seen":"2026-04-18T13:03:14.352772Z","times_seen":3,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-18T12:52:25.338Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\npriority: u=1,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\ncache-control: no-cache\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Bghz9lUEHPg1pjhkn4rkqWP%2FnyWU3qgLafXmseSZ%2F46wotkY0mja7wqe%2Bvfdvd90XBbpvEskdajMAgjpsaPc1%2FMWSyLLmlVDX%2FMw%2FqsR%2FUsKl8yvnIR8mB8O607MSxNLkV0%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9ee3ce7a59e50b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":891,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (891), with no line terminators","md5":"9520b96e13810d1ae01be27734033632","sha1":"41af22a0974a9aa3e12a6e49d1bc22a2aeeab586","sha256":"fff26358ea8b9a9e11962ae69cb2864f7200a83bac808c87ae09b3ebba5ee261","sha512":"5bff0f635a69ff3c304e4942a28a9c3f953c3f63e1ea64fe694bae1c3541c0e61fe0da48a31e85c7debbe951e58b5e36c49cc71c4e518a598e77a50afb615847","ssdeep":"","tlshash":"9311e342dc10d04e57608ad6ba70b72ec88b9c1d8935dcd0b57504fe9de4fc98a6ac40","first_seen":"2026-03-21T10:52:55.277294Z","last_seen":"2026-04-18T13:03:14.370278Z","times_seen":3,"resource_available":true,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/css/app.0e5ecd8a.css","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:25.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/css/app.0e5ecd8a.css HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-776\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\nage: 2\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o3tJYJc%2F7ZvRg26cwKeLw3CKuahuVkWW3hsXwMexgkO7x7yHTeNierW68GsMbmU33eXAA%2F2vJeKq8UQq5y1VftYd3At0tteb3POjHc6Y2iKYQqFX5dTii2SUFmZibT7dJdo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7c2af30b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1910,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1910), with no line terminators","md5":"23b89bf2d907579e7b63c73a5e141ed4","sha1":"901ed51a9e8a51d66557440ec7965ba03bc80af9","sha256":"1a2071d556fab03e6ed0395e2696a2b0cce73c6b70ab8d36150c6d18c9e4b0dc","sha512":"394fc236a241069f86d75890fd70e9db45b0dfe458dd9ed8ac8c2fdea5b2a127ba75df517ae20fc773e248c8c0bb5ec3dab80d846114ed136df410e6ab6ce797","ssdeep":"","tlshash":"e4411261b355700e6877d66660dcaa3c0138b247c3930cedb286776e8f561cb7b325aa","first_seen":"2025-06-24T16:41:13.201873Z","last_seen":"2026-04-18T13:03:14.351693Z","times_seen":8,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/47b48d1f60400ed28fb5c174a6257467.jpg","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/47b48d1f60400ed28fb5c174a6257467.jpg HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:27 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 05 Apr 2024 11:37:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"660fe278-25a9\"\r\nexpires: Sat, 18 Apr 2026 12:53:26 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y5JVVvdxb0wXBdIRHddkywIlKQfPfTbqYQpAVlemyu4II3L6ZpY70GYly9NoahlKKrYJk709uwMxWWT7qZwyi%2FWAbWQXN%2FUhr%2BvUisiuCr42hjsQjidNo7x05TG%2BzgFWy8M%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce81ceb50b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9641,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 240x240, components 3","md5":"356a5ea28743eb900fc28c36da143da4","sha1":"a8693eb983d47a61d1e76a820b9aa6cc1fb9fbd1","sha256":"3a6bb9bd950b2ec642d1c3bc522e8d09691d68e905f9cf6d745d186155f8a984","sha512":"4854e24228dfbb615ede01241fb3b65c1dc5a69fd5c48d8c2c6ff7f86d74b844091c1d3e62416f464fe56231eeb5b16ce0b6e139964147929c3f2998ef33e963","ssdeep":"192:pkyViv3hO1Z4sgIUgIuMy4N+RLysVjAv8Ku7otoi0owxalC2s6:iO1Zfa3ULzVjm8KuM502","tlshash":"2012af474ad9bb3bfd9e393c72300c510409f0da99308bb9d58186362c7fc65b5a1c0e","first_seen":"2026-03-21T10:52:55.274217Z","last_seen":"2026-04-18T13:03:14.37545Z","times_seen":3,"resource_available":false,"data":null}},"time_used":503,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":501,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-18T12:52:22.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:22 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Iem3M1L%2BuI4Y%2F1rds%2BaBfqkTvxoOL0%2FelLxAyHsFJeJLv7dqJLKxMJPv5NgygP39wZbjUCDSUxreOw9Rpb3d6jlZbjfE6btuT%2BtSru02ddTTH0gpg4Si%2Fol6fCOF52TCVpE%3D\"}]}\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9ee3ce65f8d03181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":891,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (891), with no line terminators","md5":"9520b96e13810d1ae01be27734033632","sha1":"41af22a0974a9aa3e12a6e49d1bc22a2aeeab586","sha256":"fff26358ea8b9a9e11962ae69cb2864f7200a83bac808c87ae09b3ebba5ee261","sha512":"5bff0f635a69ff3c304e4942a28a9c3f953c3f63e1ea64fe694bae1c3541c0e61fe0da48a31e85c7debbe951e58b5e36c49cc71c4e518a598e77a50afb615847","ssdeep":"","tlshash":"9311e342dc10d04e57608ad6ba70b72ec88b9c1d8935dcd0b57504fe9de4fc98a6ac40","first_seen":"2026-03-21T10:52:55.277294Z","last_seen":"2026-04-18T13:03:14.370278Z","times_seen":3,"resource_available":true,"data":null}},"time_used":572,"timings":{"blocked":48,"dns":29,"connect":1,"send":0,"wait":477,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/favicon.ico","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:24.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: image/x-icon\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pbR6ZT0mk70eqXE3TXI%2Fmv%2FDx8wSJahgtUh4nyJEuDx04t3hz7dRIJvO3dioPe8tA2Kq1avHt730Ww7AJ5sRSHpb1ZhBOiscCF19kQxJlaaqpvL7BUQu7WWHuDuwhDumor4%3D\"}]}\r\netag: W/\"691c1947-1d806\"\r\ncontent-encoding: br\r\ncf-ray: 9ee3ce76ef850b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14216,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 8 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"07e2d82d5c83f374780e860bda62a97e","sha1":"905ed33bbc256097c537ac790db05b82f24472dd","sha256":"bb5d7d029f5658f28feb21d625f256d4783780df1958e4ba8bfb4fa192af0f76","sha512":"9c11e0547dbf525aaa8a16312b226530c45ad1c105c4059aad2acbae9c99ffecb82a43d2619eaca84a9e65b5fd846f1ed6659606bd880aca6f46fe1f31981532","ssdeep":"96:wQKZj35SVDWOMsC2rXm7gM68V6IanJTK4SOYrQBh2egsSB4zhtd6lensMW:wQKZ3ktEsNXSgMwnJTK4SOYkova1S2sp","tlshash":"26527344be992b67d6dcc9763e92c69e825f2c83b78d3753a0e0be7338c1e280345016","first_seen":"2025-10-16T06:56:18.294553Z","last_seen":"2026-04-18T12:52:54.158235Z","times_seen":5,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":482,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Google+Sans\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"172.217.19.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:25.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"1A:63:7B:F3:04:6F:4C:E4:F3:15:87:E8:E7:FA:DD:B1:F7:7E:89:49","sha256":"5E:36:5D:D1:35:3B:0A:E9:8A:55:91:DC:12:B0:50:4A:AE:D9:A7:97:06:7C:0D:D7:F0:23:3E:8A:B2:08:19:00"}}},"request":{"raw":"GET /css2?family=Google+Sans\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 18 Apr 2026 12:52:25 GMT\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11202,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"28786c9c2229a06a7c0e067d37e778d4","sha1":"ee3cb2655475e3ee361b6616938a367869aa3727","sha256":"288e0478421489bc6e079549070c384ae44548bbc95539337d28f47242f5782f","sha512":"fec2bd5b09a724552c2a954a73dbf1331bb53bd3b81c4f6c6789aef68a151d59ca748a2de4e78b97292cd15205f04e21410c31b2082758fc0ec39f14d37ed6f4","ssdeep":"192:BgsEwRFtEWfNsh8JlWAOWsmkbqGIwVhtD47YeFPxJ:tHoqYCB","tlshash":"9f322e910207a01abe53bcdb33ce6a257f2d11255045d63a9afe0ec59cd786603b1fbe","first_seen":"2026-01-29T15:41:48.899732Z","last_seen":"2026-04-18T13:03:14.367666Z","times_seen":12,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/4fbed5092466a29b2b9084add1ee509b.png","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.214Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/4fbed5092466a29b2b9084add1ee509b.png HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:26 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Fri, 24 Jan 2025 08:38:13 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67935175-3dd4\"\r\nexpires: Sat, 18 Apr 2026 12:53:25 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UoUs4Izh8u31APF5SUVgDCkEd3ghyFwoYrios7LTJRPb0w%2F%2BwJSUdEAdN3lb421CqwKnIbWRhCiRnfikT6CZAK7cL8RCjDrl%2FAx%2FQ7dOMim11w0dS%2B4diF6t65Od0EbGLyc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7fddab0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15828,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 571 x 607, 8-bit/color RGBA, non-interlaced","md5":"35a68e533309cd9891e3d0e248b21e86","sha1":"7a0e89cfba9536b8909a593c3543ccbd7ff93ecb","sha256":"7c8753b682eeef36e56573001555832c0a6be98c6140646b70bf2867762f7c37","sha512":"7590ffaaa408926bde811e5929d121504103df24bdbe3d85fdb002f39dbc47d0eea2a01b15a6a72c918f2165e8927b8a7ff63c52c1753f8f2d04918c35bed660","ssdeep":"384:5kqp5/rb9WBYXEkY33/+nL9U5HD41bDfLWTWda:5nlJWBYXEl33/8Lsj4d/WTWg","tlshash":"d462c09738a9e21d09219c7947516b138e2185af0eaf4c7859af363c17947dfcb5c306","first_seen":"2026-03-21T10:52:55.300023Z","last_seen":"2026-04-18T13:03:14.374636Z","times_seen":3,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/chunk-vendors.e4097493.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:22.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/js/chunk-vendors.e4097493.js HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:23 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-98b3a\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FSXrup2CtTdDsWuZv0Y2Z0BRDPyVqLKjaCEWlJUXo5ke2SJl5%2FmQLNaDdqSkjr88oIbI1TQ0dxJs626FzHc0qbjzhGcCW2Pm2h5kl9TkkoSVrqL3ADEUfUim7uE0uINMmjY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce69fe520b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":625466,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (36098), with escape sequences","md5":"3c5740a515ae4a3557442de099c94fbc","sha1":"39705c2d232147a6588a1840c07799bb8de321a8","sha256":"a48ab116055b9d12ccbdf29a85a5188b47f393eaa30567ce46d1bc7c58d10265","sha512":"9d7944cc5887a0ef109f7510d985e1bee8c266d194f413d3261b91f8655448b600648be2afb41cce3dcf0005080971988b6d918824c9ccb9706d3d422fb4ab15","ssdeep":"12288:tPJFdsyKTwtrTlyfz/GLzGHE0VgE0VpgWHksu3L:tPJF+yowtrTly/WHG3L","tlshash":"28d4f9897292b07143e750e5406f010bf33a6969b44e94d8f269e8ea7cb984e517bf3c","first_seen":"2026-04-18T12:52:54.160857Z","last_seen":"2026-04-18T12:52:54.160857Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1238,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":512,"receive":726,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/css/chunk-vendors.8bf3b106.css","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:22.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/css/chunk-vendors.8bf3b106.css HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:23 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-10ddc8\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dZvnfq0na2aBfBeugmf7S6rNEomGsli381Bn3Kqn6cRAKyYXtP%2B7ifndLrQePIXOK9%2BOFWLLElQFolzB%2F2n3s53GNMVSj%2FXTfdYO5%2BFozRH%2BiqsqgzzRhPn2MKG57nJr0yE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce69fe560b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1105352,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65443)","md5":"60cd88f0f3c4888c703db004e1f880cc","sha1":"e99ba11a6387c74e98057e1631c133af3cffbb3e","sha256":"4729300a776c82c9de86e9f1572ec6c73a05014e2b6473dce5e6f7eccf8e547a","sha512":"e9fd7d79074aa0318a6e3945d3b398e257cf2e2296b4cfb15616e1eb53c96c97f67a0b7cfe00d4ffa49cdc5402527ed11df47687bb7d4dfd93e0f2fa3fd582bc","ssdeep":"6144:33h16SAS+ozqQNa5Lv2gLjKgi26525QXgf/eZL3VMdlTqnsGvFHh5cxRIl3h16S7:d261guZLFMdlT6PcjIHBSpZo","tlshash":"ca25ace2f28910c75773d52bc340f7bca53fb6adc6816c62e50a6a1d46c229f178391e","first_seen":"2026-03-21T10:52:55.298283Z","last_seen":"2026-04-18T13:03:14.377912Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1195,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":494,"receive":701,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/87bcf43d-api/home/index","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:24.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /87bcf43d-api/home/index HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nX-Token: \r\nAccept-Country: 3\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:24 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\nx-powered-by: thinkjs-3.2.14\r\ncontent-encoding: gzip\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sAsp%2FXd57%2Fhe9hNR6NB%2FyTw1rkoN4ZVSx57ToW1aDwvJa3aC5MNwGVjWt4fr5rmTCcxjo9j8Sv3BFn%2FLUOnMElb5o5dK7JaqhMefDb8U1iyCWQY6%2FPyhpaVihdJhR8Vti54%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce74ee5e0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2152,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"51c6cd312af3368e06a36049cd91964e","sha1":"784da53d5e67f6dc3644888d35203c08b05ddd3f","sha256":"69177fa1e49ec870713040935fbd5ea01bf3d225cda46cd6b50f5071fc903fdf","sha512":"6a42ebcc3e06ccb6d1190f62cdb1ac062dcfdac15e200daa3d6732964ff3063b6daab1d99517e391718653a8edf24e8aadeb8d738b0719fc9768f2f58b26694c","ssdeep":"","tlshash":"24410f8d962cdca4d4f8d9806ddf76e45accb02248ce5f8c0fdace39c26c1b88409726","first_seen":"2026-03-21T10:52:55.284847Z","last_seen":"2026-04-18T13:03:14.354366Z","times_seen":3,"resource_available":false,"data":null}},"time_used":509,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":509,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/2ff0e44401802e362ac4faa526b495f5.png","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.506Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/2ff0e44401802e362ac4faa526b495f5.png HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:26 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 23 Jan 2025 18:15:01 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67928725-2c1f8\"\r\nexpires: Sat, 18 Apr 2026 12:53:25 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xzxOUsnNKvBEpEzyOMuUJj3LhStny4k%2BFOyFEmloZ0X1NmlQ7zZlq2TStkV9gnkmArRIgiYyDCg%2BI%2FnujfAaorClScHMBLxjpa%2BsF9CJ50MMxGt%2FrKs8AnrgzF1u3xFGpjs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce81ae9f0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":180728,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 320, 8-bit/color RGB, non-interlaced","md5":"6daef843098336cc0abf7d166bd09ed2","sha1":"8ebd487855603532c1fa3ff6fad5d41efd0919e4","sha256":"c698eaae68eddb55a99b52880bcc5ff82ae7cf485e28d5459769a76a4c3095da","sha512":"ea8e0c2616ab2310910bd518438ae0989252299fc9636dc52faf4541cd4bd2fa52d4ae79ef699e6cf97bcc2fc6914bf098dce2d10e0cf2e3c85b01e9f7a20d4d","ssdeep":"3072:DUdXTesFumBIH/mxVzLtrUCtKCq7rNADBPjt2OJd4/52gv4oH9nBMi0Q/H3PNQct:odXS+IHOxVHNUzCgpADBPjt2O37e9TPB","tlshash":"5f0412c15648951a2221b33af277bad15455eb05d9af0b7fc174c470afbbcb8212e20f","first_seen":"2026-03-21T10:52:55.271803Z","last_seen":"2026-04-18T13:03:14.379057Z","times_seen":3,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/39e9d9ba292fd66a3c3709436652ee08.png","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/39e9d9ba292fd66a3c3709436652ee08.png HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:27 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 08 Sep 2024 13:27:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66dda62e-37ba\"\r\nexpires: Sat, 18 Apr 2026 12:53:26 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eluxdR9TpO1Mi1S8%2FYDVNG87iL4B6%2BUW%2BJV7D9lDQAJJKie0us18mXgSx19vU18PPGlCI6sTHS3M9yRZtUe9hZzxusqBa3Spb8fabzgw8weEQoIkDmOWh6umXViMT%2B8Ph6k%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce81debf0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14266,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 499 x 500, 4-bit colormap, non-interlaced","md5":"4294bb1d31ee70189f33583f192affd1","sha1":"e61e929d6601a7b4fa3d51b1fbeeda292aacbc57","sha256":"10e16d2da59c45ca99ee389d636dc491566d17eea9df52fd9535d7d92bf64a5f","sha512":"869664436a5c4242c01f272d2104d7bc4d4c56e2715985cf96bec29dc10fd483d7a3b4dcac2991d09fa861168962a3d8f4c1e339a2194dd70a2f92c368f4f3d6","ssdeep":"384:OddBGnQJ9gp19TaOdu+cjGbNs6PKH7HFE1z:Ku19TDiKbNsHH7A","tlshash":"df52cf495d59fe69e84a02e287a8a21bf770d3f0c978950a552b1f0e23f9bc24416f30","first_seen":"2024-07-18T15:25:32Z","last_seen":"2026-04-18T13:03:14.372506Z","times_seen":8,"resource_available":false,"data":null}},"time_used":729,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":496,"receive":233,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/js/chunk-vendors.e4097493.js","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:25.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/js/chunk-vendors.e4097493.js HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-98b3a\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\nage: 2\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PqIsemzFvibtDW8x1xOG267v3ZcKXxj4Vpm9z3V3RlmuWptF%2B0zW1t%2FcEaHLVG5i3vNpkx%2BGN5PrWL3pTQUK4KaEgyRR90rvt3YhnVJLkOX84LQ7yXHbYaRyRZBUzczlg6w%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7c2af00b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":625466,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (36098), with escape sequences","md5":"7933c8db086499706521e5d7db8534a2","sha1":"db13f8c953b0d8cc5f576bee10c755cf3a280332","sha256":"6f595cf12791602e634b58df22348ac96a743d893805ec542b3c727bf79040be","sha512":"dae08be9b4ad518a7c90d67fd8c2591b02376e675f9c3c213e5935f123e08fc0e70f8a140dc55a8ba8a334d3a0c14dae18fce7443af4c352699f5921e76bdd1b","ssdeep":"12288:tPRFdsyKTwtrTlyfz/GLzGHE0VgE0VpgWHksu3L:tPRF+yowtrTly/WHG3L","tlshash":"54d4f9897292b07143e750e5406f010bf33a6969b44e94d8f269e8ea7cb984e517bf3c","first_seen":"2026-03-21T10:52:55.26085Z","last_seen":"2026-04-18T13:03:14.353403Z","times_seen":3,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/cf139907b962979f792c9009e7a3b68b.png","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/cf139907b962979f792c9009e7a3b68b.png HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:27 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-573c\"\r\nexpires: Sat, 18 Apr 2026 12:53:26 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dliOSOOMbVMxo4f88aqAx8J%2BDAR1x6IfoukJRlpRd1u1FbRcsNK5ogizXlncZvTHna01U3pJ7xs2y97vSSkLtY9o0TR1%2BTYGHoIaQxuhdNN8R4lkEdDJ2RdN2p3h1%2B5thR4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce81deb60b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22332,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 480 x 407, 8-bit/color RGBA, non-interlaced","md5":"4f659f96245616bce237e33cac67dd65","sha1":"06ead6efeacaa946705a9e5370a509da1f2a8c90","sha256":"df4264434a99bece0f3b0969c3e7f8f979ade7772ad5e250f6e797e13a7a7114","sha512":"43f3bcc5f76def788b666bd74fe26e2b9456e42b69b3d6075e3c860f7a6573b7493c1271a68540adb0438a809a09373e678fa940f18667aa90dd8efefb647976","ssdeep":"384:dCZV8KtRa9JGlmVc1pXPMFr3NjOkimLQPvVcD/HleQMR2gPbgSQOGvO/pR:KZtR7lmu11MNSkifPvKbFep2cgTOmepR","tlshash":"1fa29e4bf06460d0da1ca67c7bf756b5bf151a14385bdb1f6fd0c8a81f2aca2e1a214c","first_seen":"2024-08-20T03:08:18.794905Z","last_seen":"2026-04-18T13:03:14.365472Z","times_seen":10,"resource_available":false,"data":null}},"time_used":740,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":500,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/f343da9872aa8ee4b5ed6266d5e7f071.jpg","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.540Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/f343da9872aa8ee4b5ed6266d5e7f071.jpg HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:27 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Sun, 08 Sep 2024 13:25:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66dda5bd-7d0\"\r\nexpires: Sat, 18 Apr 2026 12:53:26 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ALQf%2BV4q0l2yPVxeLeB%2BiqMSHUwGAqA%2F8i24Dlrdr%2FE1e5oMHzsusiHk%2FNFzjp844LWfVBoeRTXBIjYxNMOf4Z%2BhpBYlB0iZyLkW69VaUdm6YM%2BYl9tboxkYWKKmxEHtG5Q%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce81deb80b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2000,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 150x150, components 3","md5":"6b309ec4d55db4103bdbdaf2f1744383","sha1":"30b317861a7972a0389222a2f98795f851db8610","sha256":"f569ce398e885f0bcbfaabc7ee835fccfd83ceb33a5240bb2f3d442a098e6e8d","sha512":"fe7355546d81e3abd64b30b65abff3ac1fc921c7ea23b93f76d6006e9355023e02b41e92be3d206417202489574107fbd9afaf9ac036c36f3fa0ddf03aca7eb7","ssdeep":"","tlshash":"d0411ba789113363c81721377e44aea9f75c05caf932c7d072453575ccacd8124f4e46","first_seen":"2023-12-17T17:13:07Z","last_seen":"2026-04-18T13:03:14.350558Z","times_seen":18,"resource_available":false,"data":null}},"time_used":499,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":499,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/upload/05ede2d63cad1e6ac33a9b44de44efda.png","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /upload/05ede2d63cad1e6ac33a9b44de44efda.png HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:27 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-7a8\"\r\nexpires: Sat, 18 Apr 2026 12:53:26 GMT\r\ncache-control: max-age=14400\r\ncontent-encoding: gzip\r\nx-cache: HIT\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KZwTcMznMBFDR7lylNRvWsj33zb0YC7xWxAu3nq%2BRDIyEoCjgqVOM7%2FdvOdSgw2s2fTSstCxuX%2FVlo03W7KTvDyeU%2FNXR%2FsLdzpg78Ah8ZKBOljLgddgoCBIPo9MV6zDb9U%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce81dec20b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1960,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 225 x 225, 8-bit colormap, non-interlaced","md5":"6ef27318a45386506e50a9330a8ffdcc","sha1":"400d929f1f85cf0e5f5cffc770d11a115132b3bc","sha256":"8290ed4aedd86d3a9a98c7be2c200da18cf32340ac3c02a67c65f631b8748d8d","sha512":"c031a7d1763a6ffc0eedaa37332e43de201dd811db81a495072a837218c9199871fca1a06a68d5be089b2fef6d8e9065088f25500113b03b1202eeafb970ef69","ssdeep":"","tlshash":"5f411bd1b221d61ae568c232e4396b0138a1dac4b0454a09397abf5b0ca5b16f95237e","first_seen":"2025-09-27T12:32:59.769484Z","last_seen":"2026-04-18T13:03:14.345021Z","times_seen":9,"resource_available":false,"data":null}},"time_used":483,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":483,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/favicon.ico","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:27.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:27 GMT\r\ncontent-type: image/x-icon\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=71fjVCnjQhuuzdsm8tXOuwhLomiU8oWFXMKlElUTSQmMCywQerc53uYakrDT%2FJ6aoDgvPlsRjodnoB%2B7dfZSg8GWfmyB%2F%2BHAaSqUAjx3XN8GQUaS1E6dL7NVABxyMW%2FBzEc%3D\"}]}\r\netag: W/\"691c1947-1d806\"\r\ncontent-encoding: br\r\ncf-ray: 9ee3ce8649590b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":120838,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 8 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"7c97ec471aba094c1b03bdee601a8e52","sha1":"364b17ef0977aa19acde6eda214e99f28bee522d","sha256":"b8db27d6783e33501b242449bcd2d48bc1322ec88d9b9cc6ae6b22d082761525","sha512":"4df687aeea4702b53fae4eafd1921e5229c5e354babaaa4ddec92bb93d6892017bd2efceea170d17dfa4ad539ca37d5f4ee27fd19137a2454450e8af79415d69","ssdeep":"768:RBTKvT2vC5uSESZXlTm0ENRjpHq0G5RzbQObWlzptOIpJ2iVSU0do:rTKvT15HVTlEM0IbnbWYIsU0do","tlshash":"06c3ba547d89a767c6dcc6727e55caae826b3d87bb84335771e0bf7b38a1e280340406","first_seen":"2025-06-24T16:41:13.196795Z","last_seen":"2026-04-18T13:03:14.349693Z","times_seen":22,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":242,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/fonts/materialdesignicons-webfont.68358e87.woff2","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:24.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/fonts/materialdesignicons-webfont.68358e87.woff2 HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/static/css/chunk-vendors.8bf3b106.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:24 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 396732\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\netag: \"691c1947-60dbc\"\r\nexpires: Sat, 18 Apr 2026 12:53:24 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UUEBncAvxSbEBFWvrpYcovsdn6WXTEbcwfEA%2BnQGfH1f1N8y5IFAqO0LexWNJ66S9rGheHt8988qTn4XlPxWKAVURginz%2FZAQE%2BjbXeOCUE8KulCIcVj41aDEzH0UCtJkwo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce743dac0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":43121,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 396732, version 1.0","md5":"1afc1e85af7a2f64721e9e151578efbf","sha1":"bd041e1ce3c481061dec7921ddc24f5390047439","sha256":"fdca2ddc3ff5b7cdc2176062c48d92cb6d695b969e2a4c26b60f43716f260025","sha512":"9de2593d724a8776f8d0eb9344fe9810231c078c659dc5fe9e3a1b548cfaa68dd874f704f6978465b32b8d3ca17a63515ebf9d924880ebb7cfdc0974bf6a80e1","ssdeep":"768:evTb3MGoCfgGMA63v2vznC0EE9HasF4IfyAP0/wA7y6Nbl+0nrQCLA:evTI6gGa2vznC0EE9H36ayA8D7TTdM","tlshash":"8f13e167d7cbcb05fcea2ee19ed544f48650e66206b343f32668d64841de162c0ab4ef","first_seen":"2025-04-04T11:44:16.351569Z","last_seen":"2026-04-18T12:52:54.174924Z","times_seen":2,"resource_available":false,"data":null}},"time_used":964,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":501,"receive":463,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/static/css/chunk-vendors.8bf3b106.css","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:25.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /static/css/chunk-vendors.8bf3b106.css HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:25 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 18 Nov 2025 06:59:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"691c1947-10ddc8\"\r\ncontent-encoding: gzip\r\nexpires: Sat, 18 Apr 2026 12:53:23 GMT\r\ncache-control: max-age=14400\r\nx-cache: MISS\r\nage: 2\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FEAHciOYQHrUsO%2FR8B%2Fl7YsAwvzA1UOSfmz1YfbpOh6w79e9mnx%2FCjrJwkQddpaqQFdh9MW4jPyAODUoCcKGUbe82DkmllJE6RqTwREB1QbyhFrftif%2B4i5MCSwe%2BxF88F0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7c2af20b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1105352,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65443)","md5":"60cd88f0f3c4888c703db004e1f880cc","sha1":"e99ba11a6387c74e98057e1631c133af3cffbb3e","sha256":"4729300a776c82c9de86e9f1572ec6c73a05014e2b6473dce5e6f7eccf8e547a","sha512":"e9fd7d79074aa0318a6e3945d3b398e257cf2e2296b4cfb15616e1eb53c96c97f67a0b7cfe00d4ffa49cdc5402527ed11df47687bb7d4dfd93e0f2fa3fd582bc","ssdeep":"6144:33h16SAS+ozqQNa5Lv2gLjKgi26525QXgf/eZL3VMdlTqnsGvFHh5cxRIl3h16S7:d261guZLFMdlT6PcjIHBSpZo","tlshash":"ca25ace2f28910c75773d52bc340f7bca53fb6adc6816c62e50a6a1d46c229f178391e","first_seen":"2026-03-21T10:52:55.298283Z","last_seen":"2026-04-18T13:03:14.377912Z","times_seen":3,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesans/v67/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyk.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"192.178.25.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:24.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Mar 2026 08:36:48 GMT","end":"Mon, 22 Jun 2026 08:36:47 GMT"},"fingerprint":{"sha1":"8B:DF:9C:24:AB:AD:AB:73:3F:51:0F:25:2B:18:76:79:1A:C5:63:A0","sha256":"BF:5C:B4:F2:20:4F:D0:E5:76:81:59:52:5F:3E:D2:4F:8D:33:B3:30:36:84:C8:7E:0E:AB:58:1E:7D:D6:E2:6D"}}},"request":{"raw":"GET /s/googlesans/v67/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyk.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://ladlweiaa32.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 22184\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 11 Apr 2026 23:51:20 GMT\r\nexpires: Sun, 11 Apr 2027 23:51:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 565264\r\nlast-modified: Wed, 10 Dec 2025 17:14:49 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22184,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22184, version 1.0","md5":"59273bff8128028304bb9e3d453c25cf","sha1":"51e3d3334f3269e3c262f9a9a47590ca73ec871f","sha256":"d2263711c4bed4e203c88ed278049c80d1d3b1fff690be0b3a516749cbb38c58","sha512":"53655fba1f72533014c66442bd7274dde3f02366a70f1f4783f4e22b06a1f70752d511542991bc4997d91938ee2c25571a2c6a537ea7e4af406579ef0bd69b46","ssdeep":"384:dTEX8Wm9sWw25hJf1o6ePOfv9J0ov4n1vZlnb+TmW3PZPHu+aYkxMUzvFb3PZf1Z:dTEjWXfOhPOfvYov4nXlb+qgGlZfZRXd","tlshash":"46a2d0bb2ce4803a8f1271a4fe2c5d0606106e974ef9466e4a39f190395936dcf623f8","first_seen":"2025-12-11T08:56:06.422417Z","last_seen":"2026-04-18T13:03:14.347875Z","times_seen":453,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":110,"dns":1,"connect":7,"send":0,"wait":9,"receive":7,"ssl":98},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ladlweiaa32.com/87bcf43d-api/home/index","fqdn":"ladlweiaa32.com","domain":"ladlweiaa32.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ladlweiaa32.com/","date":"2026-04-18T12:52:26.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ladlweiaa32.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Apr 2026 09:36:06 GMT","end":"Mon, 06 Jul 2026 09:36:05 GMT"},"fingerprint":{"sha1":"6D:68:D7:59:20:63:44:2C:58:F5:D5:E9:2A:5B:CA:D5:E5:80:A4:9B","sha256":"C4:C1:45:EC:8F:0C:FB:D3:6D:DE:A8:9E:50:BD:46:2D:90:5B:0A:BE:85:C1:1E:9B:98:E5:1B:4E:70:91:EB:24"}}},"request":{"raw":"GET /87bcf43d-api/home/index HTTP/1.1\r\nHost: ladlweiaa32.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nX-Token: \r\nAccept-Country: 13\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ladlweiaa32.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 18 Apr 2026 12:52:26 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\nx-powered-by: thinkjs-3.2.14\r\ncontent-encoding: gzip\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Q9mxfcsMSjA%2FLKugIFjAu9%2BROusmTw5xlvoQNHCK%2Fxt3gjY01tC7rhHTbJ4shV000gt7qM%2F2DaCUF1wDkgXvn3uICuqemJ%2FjytggtG2a5UP1u8sEG94tDCw9LW%2FL8DvIrAk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ee3ce7f6d6c0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4482,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4e86f432982243892e8783b99981240a","sha1":"41fa909dd462ddb5261ad8965769fc09018b637c","sha256":"3b311eea8555d3506121b5b864a0195b1f33fc0fbd92d13159388ff93e13c6ae","sha512":"92d3bc921f744785fa3c0b5196bd42fbb7485d0c969a894f70394d37b0d2824b89c601c089450c1368b326634c15b5e46b60f8970b67fea3beeff452e25185c1","ssdeep":"96:nFT0WL30gz0j0VpP0agNH0xjWL0kq70VkybNJ/ZlqTfbcHcBg7pZRwOzozKzrz6B:FYWL0goj0VpP0aSH05WL0kq70VkyBJZM","tlshash":"5791541a453c8ef5d2f4cb502ddb31945bfc722609ca8f8c1bf9cf68829c5a4854631b","first_seen":"2026-03-21T10:52:55.293863Z","last_seen":"2026-04-18T13:03:14.371245Z","times_seen":3,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"ladlweiaa32.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"ladlweiaa32.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}