{"report_id":"ebf14770-dc9e-486d-9e3d-3e5f89d9f437","version":6,"status":"done","tags":[],"date":"2026-04-18T12:32:02Z","url":{"schema":"http","addr":"anitrascafe.org","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":0,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"final":{"url":{"schema":"https","addr":"anitrascafe.org/","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"title":"AT\u0026T Underconstruction","dom":{"size":3559,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (552)","md5":"8d2158404c44400e4b0f703deaac011f","sha1":"fe9ad4af44def9c0e6452cd43f8a28640fa5ae2a","sha256":"ff5c546363a2df95a0637ce4b8e06cc3efec6f4384ad9f9b9f70fcc7610f893f","sha512":"4737e12d1d05da04f2f20cd9fd4c6f22db45f41a456dd42c23111c2debb83a9e115f5ec6763b1cc8885b8ef9a596b033fae3292e105a8d2d0d4e39dbe80a2bb8","ssdeep":"","tlshash":"9171343a488d9e7f514207c6612126cdd25fccb4be32d4f2f7f7472822c6d8aa42a526","dom_hash":"domhash2779f5e8788e6d3149fc43157b606e20","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"anitrascafe.org","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":0,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-23T12:32:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"anitrascafe.org","ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"domain_registered":"2020-09-02","domain_rank":0,"first_seen":"2026-04-18T12:32:03.141944Z","last_seen":"2026-04-18T12:32:03.141944Z","alert_count":65,"request_count":13,"received_data":1295887,"sent_data":6028,"comment":"","tags":null,"fingerprints":[{"name":"ZURB Foundation","description":"Zurb Foundation is used to prototype in the browser. Allows rapid creation of websites or applications while leveraging mobile and responsive technology. The front end framework is the collection of HTML, CSS, and Javascript containing design patterns.","website":"https://foundation.zurb.com","common_platform_enumeration":"","icon":"ZURB Foundation.png","categories":["UI frameworks"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"count.carrierzone.com","ip":{"addr":"66.175.41.113","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"domain_registered":"2004-07-21","domain_rank":880038,"first_seen":"2012-06-29T20:07:04Z","last_seen":"2026-04-12T11:51:52.771754Z","alert_count":0,"request_count":2,"received_data":36890,"sent_data":1309,"comment":"","tags":null,"fingerprints":[{"name":"CentOS","description":"CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).","website":"https://centos.org","common_platform_enumeration":"cpe:2.3:o:centos:centos:*:*:*:*:*:*:*:*","icon":"CentOS.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.2.15","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:5.2.17","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"anitrascafe.org/","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":true,"md5":"6de31530f068766b38a83998d71105ea","sha1":"d3eae37435d2d7e68261229271a10f84cc430e7c","sha256":"9e57c8cdc32ba65ece87bf5b9186784d7a297230ed7557e0934da057be8d4547","sha512":"15fffe92a09984a2dcdda8a9385e2cffa6d3b1670e4de134ebb6f80c9a76f13c9b230510c342ecddce65a0f6a2e9a2d1227d61ba72dc5af81adf0a473607b83b","ssdeep":"","tlshash":"3ed012b309abe96b17f5492cea431a075517c52b79922886a3dc7d207106e2d2885465","size":202,"data":"","first_seen":"2026-04-18T12:32:07.996307Z","last_seen":"2026-04-18T13:16:28.446623Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"count.carrierzone.com/app/count_server/count.js","fqdn":"count.carrierzone.com","domain":"carrierzone.com","tld":"com"},"ip":{"addr":"66.175.41.113","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"853f44f8a3814f75cd4556fbdcbe5d26","sha1":"b3bb2ffd8dda9cf07a163a754595e57678a9f9b8","sha256":"f418e6b5416f03cbc22b24f481582e2d55ee0f7ca6989c562b59f12c9229214e","sha512":"5901fd98de0beed364d6a9f5a1608a135a77fcab7b30943c89d85c38f59dc7d31f3151e19123d2bcee46c243c1be7e5512b05a6f204c0fb4904ab238454d90a7","ssdeep":"384:j6AYfdCKI56PQoz7txzHnz8uZZ8TZqk+TSLBfnEDX0JBI5aYhYH6Mh0tG02RX9QI:j69dCKIFa9Z8TwStcb0JBI50TOm/","tlshash":"daf252d0e7ec326691812040f90d53de2d3f99f37714b842fe989d24a349c3e7a766a8","size":36029,"data":"","first_seen":"2023-03-07T01:12:05Z","last_seen":"2026-04-22T10:08:42.049217Z","times_seen":1372,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"anitrascafe.org/","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-18T12:31:36.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:37 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: upgrade-insecure-requests;\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"ZURB Foundation","description":"Zurb Foundation is used to prototype in the browser. Allows rapid creation of websites or applications while leveraging mobile and responsive technology. The front end framework is the collection of HTML, CSS, and Javascript containing design patterns.","website":"https://foundation.zurb.com","common_platform_enumeration":"","icon":"ZURB Foundation.png","categories":["UI frameworks"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3525,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (508)","md5":"fcd1fdcc2c7bd98f17cb0f64c49f4a44","sha1":"3a1551e171f496816a6432aad66dd59610224330","sha256":"33a8e1dcb27c61ce0b836761205209d2eeb57538635590f3d95743a7de87c695","sha512":"a329fb112bc4c198d99033e7b55b9a5322f5400283f69ea311076c6469e096f9671e7e6580f08884e39110fb9d190e6d388ab9d185e3fcd3dd01f369377c1431","ssdeep":"","tlshash":"14714527088d9f7f118207c66220268de25fcc75ae32d4f2f7f7452822c6d89e93a517","first_seen":"2026-04-18T12:32:07.969081Z","last_seen":"2026-04-18T13:16:28.437181Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1707,"timings":{"blocked":582,"dns":223,"connect":130,"send":0,"wait":543,"receive":0,"ssl":226},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/img/logo.png","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /img/logo.png HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: image/png\r\ncontent-length: 1078\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Wed, 29 Mar 2017 00:55:32 GMT\r\netag: \"436-54bd4088a8900\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1078,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced","md5":"d9c301c8ed20fb61631c132197161ffc","sha1":"d425430ad89a733ced63aa99f970da7465d000c9","sha256":"74194f2383ab0c9685d714381742df65d62761c82dcb9f9495163ef797025f71","sha512":"24ec27c134240f3def0f5b5d9271ea2e562031a59ba4487ea32673747cf28df1cb3f3c7de71926151c70ee19951535daea869f96567de3a2ac8628140045920b","ssdeep":"","tlshash":"0211ecf2e0600b65da318042df1957fa9a9946403f3766a8783e70b820f4a28b50050c","first_seen":"2023-05-06T09:34:56Z","last_seen":"2026-04-19T01:04:02.397544Z","times_seen":194,"resource_available":false,"data":null}},"time_used":520,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":519,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/fonts/OmnesRegular/OmnesRegular.woff","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /fonts/OmnesRegular/OmnesRegular.woff HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: font/woff\r\ncontent-length: 58084\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Tue, 28 Mar 2017 22:56:58 GMT\r\netag: \"e2e4-54bd260838280\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":58084,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, CFF, length 58084, version 1.1","md5":"4efdf0cf9e5fa09f7ad39221a2f6213b","sha1":"a732a940690fdd31279bb6c5832c18a3904bf416","sha256":"ec0571c5c84d6bd8abf0eb517d0d296ccdbf39cf56ed9b5bd69d8a10f039818a","sha512":"5ae00a62f220c50831db14a1c0cf1a94d671aa9f8e1a496d20175e8ba71444e710873a2da0473778a9e0f46faa56815eb57595d4009467b16fdec40ecbe125d5","ssdeep":"1536:ndywWlwsTsD5VgI1AUBfkoziAeQENLZ2LqL7:ndOwsIgI1LBfkq+d9Jv","tlshash":"b9430221c4f4966a5c8e15fe4cc8cdfdafd32e4c29b602773d46a04b209a7f31a43a94","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.386612Z","times_seen":193,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":223,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/css/style.css","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /css/style.css HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: text/css\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Fri, 31 Mar 2017 21:52:14 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1824,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"ea181648afb80afb1355ba59bd1326ae","sha1":"bf9329e7aebd3f8765a67943d51dc6c4472590ce","sha256":"72670bd5a79d4d481358763a286d63d37323579a23cffde95b16919d79ce78f2","sha512":"4e274bbc524bf6900e7495299410a8d2be72f3307fd889874f5793010d2661771c3d9e183a50b1b878e7350730a105c2efdfb16a793182360c61fca8920b66b5","ssdeep":"","tlshash":"69319918ea101446f0716bfee7337f54d6044013820282f8fad8a16cdfb409a96adfcd","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.390033Z","times_seen":185,"resource_available":false,"data":null}},"time_used":521,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":521,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"count.carrierzone.com/app/count_server/count.js","fqdn":"count.carrierzone.com","domain":"carrierzone.com","tld":"com"},"ip":{"addr":"66.175.41.113","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.carrierzone.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 19 May 2025 00:00:00 GMT","end":"Tue, 19 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"74:33:88:6F:50:57:62:96:54:F2:6D:4A:08:C6:2F:6E:25:62:60:1E","sha256":"11:4C:08:A9:F5:C1:C7:90:84:3B:D9:53:CB:75:1E:DC:AD:A9:D3:55:A4:91:E4:E1:DE:09:8B:E9:3D:7F:86:93"}}},"request":{"raw":"GET /app/count_server/count.js HTTP/1.1\r\nHost: count.carrierzone.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 18 Apr 2026 12:31:38 GMT\r\nServer: Apache/2.2.15 (CentOS)\r\nLast-Modified: Fri, 08 Jun 2012 10:17:02 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 36029\r\nKeep-Alive: timeout=10, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CentOS","description":"CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).","website":"https://centos.org","common_platform_enumeration":"cpe:2.3:o:centos:centos:*:*:*:*:*:*:*:*","icon":"CentOS.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.2.15","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":36029,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"853f44f8a3814f75cd4556fbdcbe5d26","sha1":"b3bb2ffd8dda9cf07a163a754595e57678a9f9b8","sha256":"f418e6b5416f03cbc22b24f481582e2d55ee0f7ca6989c562b59f12c9229214e","sha512":"5901fd98de0beed364d6a9f5a1608a135a77fcab7b30943c89d85c38f59dc7d31f3151e19123d2bcee46c243c1be7e5512b05a6f204c0fb4904ab238454d90a7","ssdeep":"384:j6AYfdCKI56PQoz7txzHnz8uZZ8TZqk+TSLBfnEDX0JBI5aYhYH6Mh0tG02RX9QI:j69dCKIFa9Z8TwStcb0JBI50TOm/","tlshash":"daf252d0e7ec326691812040f90d53de2d3f99f37714b842fe989d24a349c3e7a766a8","first_seen":"2023-03-07T01:12:05Z","last_seen":"2026-04-22T10:08:42.049217Z","times_seen":1372,"resource_available":true,"data":null}},"time_used":1763,"timings":{"blocked":622,"dns":114,"connect":128,"send":0,"wait":128,"receive":379,"ssl":389},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/img/baner-underconstr.png","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.578Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /img/baner-underconstr.png HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: image/png\r\ncontent-length: 773463\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Wed, 29 Mar 2017 00:30:58 GMT\r\netag: \"bcd57-54bd3b0af1480\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":773463,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1900 x 308, 8-bit/color RGB, non-interlaced","md5":"19cda2e3e1e0eb2cb87f1a4f580148bc","sha1":"07e522a2092d1ae1a347b9399162d4cc65740035","sha256":"1a20bb7b0e89db93853f0eb68932b7745ba0fbb442f29641f1f1b324e64d19ad","sha512":"296e7b5383b9776632d81dff8ced625cfddc9829963bedf6de1174976982251f26b54f277f73c9d50ee3f8f90baf8fcefc418f00910e2e2c627207678a0a10d3","ssdeep":"12288:bJbBLjeqDNjylVyTfy2sTk9P/X/f2xwNad+Mh4OR7HM0LHx5rdoyyLB5ZlTjXlmH:bJFne20PyzhsT2P/PJc+lORLdHWNp8","tlshash":"58f4334c9480ca71cd522c38d79912f3e1a2c99da9bdb3c99774e81892f42b4df1c9b7","first_seen":"2023-05-06T09:34:56Z","last_seen":"2026-04-19T01:04:02.393601Z","times_seen":193,"resource_available":false,"data":null}},"time_used":516,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":134,"receive":382,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/foundation-5.5.3/foundation.min.css","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /foundation-5.5.3/foundation.min.css HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: text/css\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Tue, 06 Oct 2015 23:41:14 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":165184,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"08e7aeb94b7fbb0bfd91dd8bd1a8b53d","sha1":"587e2fedff8f2c0a761fd9f3201f392764704c5b","sha256":"35376cedab550837a894b5336dc978e65c7880960efa135709a5f5c02d874077","sha512":"72d3919282553c894b411e4a7ebe21eb899ff7c5ef760ee1e06dad2808f1041fabea9a47e90c11f30ee5858a96aa345108e056dcee057c40df7a84de4976a1c4","ssdeep":"768:4t9FbW3ODImnvomSpZowR0YsL1VCNLxQYxUf2JTgxIIUZ7pDczAtw5:4t9FamImnvotpZowR0pCRxxNJTgxE9W","tlshash":"aaf3a791749037092123c73169e37e98373f2a40de325b69f29a66f5cbcb8881617ed7","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.396183Z","times_seen":257,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":133,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/css/media.css","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /css/media.css HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: text/css\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Fri, 31 Mar 2017 21:52:44 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1033,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"9bc3659b3760ba2cee8dc3927ebaf2e9","sha1":"edcb34430509b1a4bcb55b841aa19cf5222c641c","sha256":"2d8d66481051e017b1ce6570576ed28e50c695f945419f49ea86ce5f5c995086","sha512":"c5c760501219ac657c4e385a39e39eeffcbc2b72c512c12e9b6d3d1dce3b04e20c64a017f052efaa25e32c8bdd1fe4b909ae4e8381bec67b1752bfb2603b3080","ssdeep":"","tlshash":"1411e1139e201046ea36a6fb9240bf24a5418653f50be4f1f5c9606ccef61cb11bef8d","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.3916Z","times_seen":185,"resource_available":false,"data":null}},"time_used":520,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":520,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/img/items-underconstr.png","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /img/items-underconstr.png HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: image/png\r\ncontent-length: 150691\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Wed, 29 Mar 2017 00:31:52 GMT\r\netag: \"24ca3-54bd3b3e70e00\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":150691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 568 x 248, 8-bit/color RGBA, non-interlaced","md5":"89945406064e99e1c861b66d882b9948","sha1":"7851c82c34a8dad6af47de1fe76a9cc960786b64","sha256":"8176286c7a17849d233e08b0913bb64858816fff4fdc3bdec8e68807697cb74f","sha512":"b9b350834a511d2450bdc606578253a099d4314e9e8e89cd62c131c8bdb2925a2f5385c2775edaa0c768009c20d3d4270d9869d5b631439c3325a4ca7b44daaf","ssdeep":"3072:S/bFBhn7Y39PnLBj4Z6QIVGOuYbLzHqCec6Shf8cHBH/lrV:Wf1SPlj4ZOnXLj9OIf8wV","tlshash":"8ee312f7610cdd38aaa98399736d25a059938fb7e18cf6632345610135dc5b1c39633e","first_seen":"2023-05-06T09:34:56Z","last_seen":"2026-04-19T01:04:02.396853Z","times_seen":194,"resource_available":false,"data":null}},"time_used":649,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":389,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/fonts/OmnesLight/OmnesLight.woff","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /fonts/OmnesLight/OmnesLight.woff HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: font/woff\r\ncontent-length: 74032\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Sat, 04 Feb 2017 04:00:20 GMT\r\netag: \"12130-547ac6fd91d00\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":74032,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, CFF, length 74032, version 1.2","md5":"014e46d4c33c288c930e7088c87517c3","sha1":"3d11f6318018da8321a0dd141af9084cff00aa24","sha256":"a4295eb5c848db7071f0fde712e9e1606ec969bae06f01a867d6a11209aad409","sha512":"ab22af85e2072eed7b26b6b8e5db7596344f57d3ab70836d3365cf28df1548becc393e888d9cc7c78ae1e17f22daf4b9ee5a9d09134bcba9b45d1fc5e5d32079","ssdeep":"1536:hEQtSeOqXDB8v3aA7wfyqwJdNWQPuyXSFhrQAiysnz/3cH5C6iC3t:/tnORvKA7wfyqwdNWQPuPTQAizni5C6r","tlshash":"c27302fe8e1a29a3b280c62e25c0b96bd1f34430c9c65ad0f489316bf0dd5e8d46756f","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.387449Z","times_seen":193,"resource_available":false,"data":null}},"time_used":351,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":220,"receive":131,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/fonts/ClearLight/ClearLight.woff","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /fonts/ClearLight/ClearLight.woff HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: font/woff\r\ncontent-length: 33260\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Sat, 04 Feb 2017 03:59:20 GMT\r\netag: \"81ec-547ac6c459600\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33260,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, CFF, length 33260, version 1.0","md5":"04ad821ddaf346be4fd430d5ee632dea","sha1":"f4b5f07baf09c6ed9d67b56d57004b5aa9bc01df","sha256":"d93ca21e219546dfa906ea6ff3243aef42125b6d8f031b2878d9bb6049699c6a","sha512":"560a8bf0574c53e9b9caca44bfb0efec4d0edbbcc1449cd1082c4b2b734c7b8fd5bf9e948c72618166c291fb84a17ad1506d1db6d0e609b9568633e5c1075627","ssdeep":"768:MW7pEqRvn2/AgZIMGA0liFvL4bim8OY4ZyoQlTYVZv6t:MA3v2oqIMGA0lavLkimE4UlS16","tlshash":"bfe2e113bc59ba8ce9d85560b5c2bae52300fba27d4cc5b72ba41500e6e1b32b77501f","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.394555Z","times_seen":193,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":217,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/fonts/ClearBook/ClearBook.woff","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.601Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /fonts/ClearBook/ClearBook.woff HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/css/fonts.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: font/woff\r\ncontent-length: 26396\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Tue, 06 Oct 2015 22:50:24 GMT\r\netag: \"671c-5217774906c00\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26396,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 26396, version 1.0","md5":"9fbb5ca3045cf8fea4eb30472e0e09ba","sha1":"bc4e0e519853d9a2074acf10837198ed9c2c057b","sha256":"6c49bc3a965c9896bd2827a4d26b30830911a881178d76faabdeb4623baa6638","sha512":"6266098e1e4695f968a09dc5bf3b94084eb39bb08b366100b1b14fdddd5b9a33a70839db828745534986e401ce34509d4bc01dd963014684ef5f5fb39b895ee7","ssdeep":"768:0XvIcB2XGTz+dSeEeJxTdwWAutorewY9BWodf5eVk:0XvrAK3e/JxTdqu+qwY7Wodxee","tlshash":"9ac2e19e89ce3feb75524bb70e900750cd58ee3b4524e960759c0f94762a6e0a539c3c","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.383347Z","times_seen":194,"resource_available":false,"data":null}},"time_used":239,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":211,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"count.carrierzone.com/track/ctin.php?t=1776515499194\u0026custnum=fd14d35901b3aefd\u0026sname=anitrascafe.org\u0026pagename=index.phtml\u0026group=%2Fservices%2Fwebpages%2Fa%2Fn%2Fanitrascafe.org%2Fpublic\u0026version=%24Rev%3A%207840%20%24\u0026js=1\u0026jv=0\u0026resolution=1280x1024\u0026color_depth=24\u0026campaign=\u0026referrer=\u0026page_url=https%253A%252F%252Fanitrascafe.org%252F\u0026plugins=PDF%20Viewer%3BChrome%20PDF%20Viewer%3BChromium%20PDF%20Viewer%3BMicrosoft%20Edge%20PDF%20Viewer%3BWebKit%20built-in%20PDF%3B","fqdn":"count.carrierzone.com","domain":"carrierzone.com","tld":"com"},"ip":{"addr":"66.175.41.113","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:39.199Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.carrierzone.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 19 May 2025 00:00:00 GMT","end":"Tue, 19 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"74:33:88:6F:50:57:62:96:54:F2:6D:4A:08:C6:2F:6E:25:62:60:1E","sha256":"11:4C:08:A9:F5:C1:C7:90:84:3B:D9:53:CB:75:1E:DC:AD:A9:D3:55:A4:91:E4:E1:DE:09:8B:E9:3D:7F:86:93"}}},"request":{"raw":"GET /track/ctin.php?t=1776515499194\u0026custnum=fd14d35901b3aefd\u0026sname=anitrascafe.org\u0026pagename=index.phtml\u0026group=%2Fservices%2Fwebpages%2Fa%2Fn%2Fanitrascafe.org%2Fpublic\u0026version=%24Rev%3A%207840%20%24\u0026js=1\u0026jv=0\u0026resolution=1280x1024\u0026color_depth=24\u0026campaign=\u0026referrer=\u0026page_url=https%253A%252F%252Fanitrascafe.org%252F\u0026plugins=PDF%20Viewer%3BChrome%20PDF%20Viewer%3BChromium%20PDF%20Viewer%3BMicrosoft%20Edge%20PDF%20Viewer%3BWebKit%20built-in%20PDF%3B HTTP/1.1\r\nHost: count.carrierzone.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 18 Apr 2026 12:31:39 GMT\r\nServer: Apache/2.2.15 (CentOS)\r\nX-Powered-By: PHP/5.2.17\r\nSet-Cookie: CTCNTNM_fd14d35901b3aefd=d78c701850039ee900a8607338b5fc06; expires=Fri, 17-Jul-2026 12:31:39 GMT\r\nContent-Length: 42\r\nP3P: CP=\"NOI NID ADMa OUR IND UNI COM NAV\"\r\nExpires: Thu, 01 Jan 1970 01:23:45 GMT\r\nLast-Modified: Sat, 18 Apr 2026 12:31:39 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nKeep-Alive: timeout=10, max=99\r\nConnection: Keep-Alive\r\nContent-Type: image/gif\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.2.15","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"CentOS","description":"CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).","website":"https://centos.org","common_platform_enumeration":"cpe:2.3:o:centos:centos:*:*:*:*:*:*:*:*","icon":"CentOS.svg","categories":["Operating systems"]},{"name":"PHP:5.2.17","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"bae3474ef15712706e514d9c40c3d1d5","sha1":"b93948c072d6fd3dd9a2720cd837784a9c9ca337","sha256":"5b27cb8a843da7b4f70f68d669798596541491654185df0bd45867d951a31947","sha512":"0c0652cd1d848d3af5836b664505520f0122c672103489453079df1db9eecdc290e3ec8a4a1bd8e45c051696a89e9b1ae173904ee6ee2d9e86a774b631bfd2a2","ssdeep":"","tlshash":"a4900413f7c14440c155d03007170740175cc05005540313405d104c5c753551c03010","first_seen":"2023-05-01T16:06:11Z","last_seen":"2026-04-22T10:08:42.049956Z","times_seen":1428,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":157,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/css/fonts.css","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:38.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /css/fonts.css HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:38 GMT\r\ncontent-type: text/css\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Wed, 29 Mar 2017 20:57:20 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1435,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"30f03ba4b7fbf11a9284c72f308a3f4c","sha1":"a7e3a2e6a6a35bf3005431676ea0b568b7afc5e5","sha256":"915167ee5888d931885e84b7ba2009635769178f58d9f4c5285738123a8976bb","sha512":"d43899f831520b5016859d03ece48f2c03acb261d3d2024117f586aaf240672eb4fdb4f9ca95c4b6a670dda2da946ed32b60bca1e5cec2bfa5280ed9461a1756","ssdeep":"","tlshash":"da21a218a20dfa3395602c1be1f46fe10f4d752f7145988799388ef75cb1e6092d1ba7","first_seen":"2023-04-10T07:25:20Z","last_seen":"2026-04-19T01:04:02.388289Z","times_seen":185,"resource_available":false,"data":null}},"time_used":521,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":521,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"anitrascafe.org/img/favicon_2.ico","fqdn":"anitrascafe.org","domain":"anitrascafe.org","tld":"org"},"ip":{"addr":"216.55.149.9","port":443,"asn":30447,"as":"INFB2-AS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://anitrascafe.org/","date":"2026-04-18T12:31:39.299Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anitrascafe.org","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 18 Mar 2026 00:00:00 GMT","end":"Sun, 21 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D9:F0:52:83:36:9A:ED:34:B8:D4:1A:64:1C:36:E3:E2:12:A8:1A:F8","sha256":"A4:47:38:1D:B0:D2:5F:05:5E:14:61:30:25:91:89:B7:2F:0C:C7:23:08:9C:75:B9:7F:E1:70:4A:7D:0B:84:0E"}}},"request":{"raw":"GET /img/favicon_2.ico HTTP/1.1\r\nHost: anitrascafe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://anitrascafe.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 18 Apr 2026 12:31:39 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\ncontent-length: 1150\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Wed, 29 Mar 2017 00:57:52 GMT\r\netag: \"47e-54bd410e2c400\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"8cc5501351f013de0ce76fa0a2c59d50","sha1":"ccc13ea6e1bf7ca9fe31b0dd997981fa8ec6a2e1","sha256":"42938b72e2ec54515eb9c49145f42b8728cfc0b70170f80aef58ce93032b1c1d","sha512":"bb41b6338f83027723f628d0724eb533a2bca18956776c985bf2d6e03267d1e3c6e1c45f0a8a1316726f847dcdd16c1570ab0e8bafffa03d5dd663b0fad385ca","ssdeep":"","tlshash":"b221cc05b9128dc0ca214f7d9976bef51b3bac7669ac212b06d0332d6df2027c943171","first_seen":"2023-04-15T03:34:22Z","last_seen":"2026-04-19T01:04:02.381173Z","times_seen":1471,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":133,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-18","alert":"Sinkholed","trigger":"anitrascafe.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-18","alert":"Phishing Block","trigger":"anitrascafe.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}