{"report_id":"4e995fd4-5139-4b93-94c7-c391070c05f1","version":6,"status":"done","tags":[],"date":"2025-12-23T15:47:42Z","url":{"schema":"http","addr":"ofilmyzilla.vin","fqdn":"ofilmyzilla.vin","domain":"ofilmyzilla.vin","tld":"vin"},"ip":{"addr":"172.67.197.18","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"title":"oFilmyZilla Bollywood Movie Download, FilmyZilla New HD Hindi Movies Hollywood Hindi Dubbed South Indin Mkv Moviez Download Filmyzilla.Com","dom":{"size":29206,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (12430)","md5":"6aebd97a7f1db743209b0c811d2d3dbc","sha1":"508d06828603a81bbb291cb84f294409a6ed294c","sha256":"8c088135bb05d7942f331e2d5d96ff954f503fa6b42dc7d213582b89e82864e7","sha512":"00f6876fc37a656af72c132c9fe6d7799a6453a27fa8f851ee4d5a8a4d928b9fb7233d70ce0beed3e402a2061f7e1e26eee086bbecc5eb74fd041f829ccefaa8","ssdeep":"192:FE8RBKF3/L+/LY/LQ7B6jO9C7d7RGJTUuOK7EhdCvHCi32RWRuJMfMVMWMaZang:FE8RBdD9ElMo7CVviUjEu16ag","tlshash":"1fd253f3f597b04b221ffec8b833670fe613a75ade934d4862fd911a9740aa0d55a050","dom_hash":"domhashf7c503400148b5e947507213e4a20a09","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ofilmyzilla.vin","fqdn":"ofilmyzilla.vin","domain":"ofilmyzilla.vin","tld":"vin"},"ip":{"addr":"172.67.197.18","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-27T15:47:42Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"od.fermataintima.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"ofilmyzilla.vin","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"od.fermataintima.com","ip":{"addr":"23.109.253.230","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-03-21","domain_rank":0,"first_seen":"2025-06-02T03:33:02.703478Z","last_seen":"2025-11-09T12:27:06.58072Z","alert_count":1,"request_count":1,"received_data":1419,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.ofilmyzilla.dog","ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":16,"request_count":8,"received_data":68876,"sent_data":3696,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"ofilmyzilla.vin","ip":{"addr":"104.21.92.177","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-03-31","domain_rank":0,"first_seen":"2025-12-23T15:47:43.569106Z","last_seen":"2025-12-23T15:47:43.569106Z","alert_count":1,"request_count":1,"received_data":30051,"sent_data":484,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.251.38.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-12-21T22:17:33.83847Z","alert_count":0,"request_count":2,"received_data":706225,"sent_data":882,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"od.fermataintima.com/rrluABzqgPpNd3ka/34243","fqdn":"od.fermataintima.com","domain":"fermataintima.com","tld":"com"},"ip":{"addr":"23.109.253.230","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-07T06:17:23.23872Z","times_seen":14968,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-WQX04NMPFZ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.38.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"132c820669ba2f7aa34f2b303089fb18","sha1":"62cd0f91beb5d25b3487f15282de33cc28e8ed3e","sha256":"6b67767c2189d650891257facd555a1fa164fbbe91be482875d81a88fec82799","sha512":"d745dab7beb152f6f367655b713efda103c8d8324516aaa5cd5b456fef0f68ccd8563b60b97134ebb4efbcb2b59065f86f8e9b9d446b310207219baac49d7ea6","ssdeep":"6144:P6Ie7ma2bulKY/1u99xHDmHYmyBFzvnszmxWovPad4FpC1+T:7C8bu7/1mbrnsOWdMpX","tlshash":"c38419ce73c674669392a078503f118ba57b69e2f44cc895f18acce42d746aa4237f7c","size":384159,"data":"","first_seen":"2025-12-23T15:47:48.613331Z","last_seen":"2025-12-23T15:47:48.613331Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-123396143-3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.38.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"47f10a1a2eb6daf7aa985f7a9ca3d840","sha1":"cd89336700e99a7ce66d21984eead10d8c7d06a5","sha256":"bb7ca95f010789d3bc838b077e71409f8528368a7a4191553a78edb420fb95f7","sha512":"0900e8fa05796eece7565c18ab91ac1aa24b09488cae7250f7be3e17707fc5f0f7bc792663a537de8aa7498a87cc3f9ec8c1a9944f83b4003b0c922b6a0fe6f3","ssdeep":"6144:iIeJ92bulKYv9VGDmHYmyBFzfns1RnWC46pJem:Lpbu7lEDnsrWCDpF","tlshash":"2c6408c9b3da74268393a474503f108ba27b79d2e84cc895f185ccd42e74aaa4277f7d","size":320812,"data":"","first_seen":"2025-12-23T15:47:48.616457Z","last_seen":"2025-12-23T15:47:48.616457Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/sandbox%20eval%20code","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"34c08ca3e74026ae2a1166b2b810e003a2866b015aa78402b00a003b1441fe21aaa1a8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-04-07T07:11:56.086128Z","times_seen":777601,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:A1VdZYqhPnjpWx4/eTe8qSMbqaQd6VL2Jyt9LdJoyayCVPVD5wdBfQPfCHiUr3:AXdZYqNjpU4yPqSMbqaQGL2QfdDayCZC","tlshash":"a6a1dc9939fb50210233b1bd1bafa918b23895236208dd61b98c9364bf94437d7f1fc9","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-04-07T07:11:56.082796Z","times_seen":776059,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"859909e273f69863ed1f95286e1f798c","sha1":"3ddefdf21897613f2dea86e2194557d32d0e084e","sha256":"9dbe26e8777df7c1cf0e82435fc081a7685d5a5441fbd4528914e880dcd57ecd","sha512":"12fdc93609ce54c10c261c8b957fb4011e1bb55269cabd806d68afa885ac04f604a3dee0e1f7a2ed9a3b4abed26ac798123d5e09be376f77938fcb6767b25dd8","ssdeep":"","tlshash":"b5c02b8c210a0c7041f737808b3fb700f406321494d06932482963454d30f03db48810","size":153,"data":"","first_seen":"2025-06-02T03:33:06.768241Z","last_seen":"2025-12-23T15:47:48.618646Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"24b14968eb035414d6472a16c3c48009","sha1":"720a6f135616daf6e7b34ef175419b60af3c5310","sha256":"676cbc2083b518c9e968b23061a61d4dcc3c93796b84545a4e2054d719405964","sha512":"6b3b66727e5fbcb1f265e7062e81fa0a6790b03ec8854a409a417c209fdde4c14fa864116a05db569e84eb5d7a35c3f455fc179bd2013d1c32dc55cf75a2ee17","ssdeep":"","tlshash":"c6c09b8c351a8cb295f72741cb7ff605b4423214a5e59a32495d73455d20f17e754854","size":155,"data":"","first_seen":"2025-06-02T03:33:06.771129Z","last_seen":"2025-12-23T15:47:48.619382Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"od.fermataintima.com/rrluABzqgPpNd3ka/34243","fqdn":"od.fermataintima.com","domain":"fermataintima.com","tld":"com"},"ip":{"addr":"23.109.253.230","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"od.fermataintima.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 06:46:54 GMT","end":"Tue, 10 Mar 2026 06:46:53 GMT"},"fingerprint":{"sha1":"53:E4:22:8D:07:B7:F0:6B:1E:99:BB:FF:8F:34:95:81:3D:4A:1E:1D","sha256":"E4:45:6E:66:B7:6D:C0:F5:87:DD:66:42:43:5A:99:17:55:E3:34:42:76:EB:CF:DC:25:D3:E3:75:E4:8F:74:3D"}}},"request":{"raw":"GET /rrluABzqgPpNd3ka/34243 HTTP/1.1\r\nHost: od.fermataintima.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://www.ofilmyzilla.dog\r\naccess-control-allow-headers: content-type, gyfr29qt4j80vdr0zhsj, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Wed, 24-Dec-2025 15:47:20 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJxjYGBgEuEXZMosEOSxNNSzNNAzMdIzNDURZEwXZPLzF2RKzhNk88svKk%2BsFGQsEmQyMBZkKsoT5PYvzslXcM4vzSsBiicLsoD4goyZgnxOOZkVCsH5OaUlmfl5xYJMQMzpnJiUk6rvEuwjyFjAxijIVJIPIotTRBgEGcvYJASZchJ5HHw%2Fv9qcvuAnkJPP46BavzE63G61IFNBsSCLgaGpIQCHOyne; expires=Wed, 24-Dec-2025 15:47:20 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-07T06:17:23.23872Z","times_seen":14968,"resource_available":true,"data":null}},"time_used":280,"timings":{"blocked":124,"dns":86,"connect":17,"send":0,"wait":23,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"od.fermataintima.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/images/fev.png","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.343Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/images/fev.png HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 653\r\nlast-modified: Thu, 06 Sep 2018 06:39:12 GMT\r\nexpires: Sat, 21 Feb 2026 09:44:50 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nage: 21750\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NBmEo%2Bd05XgJQqZConyiaRYS4SsPN11rgOlicXbxWm0kAUFHVtpZOWzt0Z71EChc6am9S4CBrPcikrU1L3XKhWyhaXc1qPPUiEmmwUy8S8E8\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b28ff342a7a56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":653,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"5ad12582e3ca901894737c3dd44a5eb2","sha1":"3811ee746f69176ff8c7b610ae5c4ce80e0ec50b","sha256":"e4f0c87893305615c526a1b7aea7dddc50e711d1bfa97b19bc04419968ff177c","sha512":"09d0f8028e852284587cac2a639d6b2c8e095decfc03bcc2cba00e688e34d6db29125fa8ddf8600a58e1f68d1923e9be06d00d6f1e4df004c4ac438b15152ac2","ssdeep":"","tlshash":"12f083fef0b43d78a11e10f9b417c043a43f4a9b41f5003eb9069c5009ae28880ed64a","first_seen":"2023-05-04T23:53:38Z","last_seen":"2026-03-28T08:53:53.596443Z","times_seen":51,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-23T15:47:19.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 15:47:19 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\ncontent-security-policy: frame-ancestors 'none'\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: EXPIRED\r\nx-server-powered-by: Engintron\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W4JTz2MbnuIgmsgSHV9xIY9RIEmH%2B4MhNzahNhKZyBurJV%2FiZpfQMc8cqL975%2F2picb00WSKUncLhoFQhLiqOp4O%2BJ%2FrOTiXZzoURe6moBlI\"}]}\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9b28ff300f7e56c4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29299,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (12430), with CRLF, LF line terminators","md5":"bc5fb279420a7cd59d2969a0272ca80d","sha1":"ac9ef3eff5134c52130d8cb7749ceeeff76cbe18","sha256":"e12ce86b2fbe14341e2ac7de8df40bf8a0357f7f696dcd3f89715f1b3e8da1df","sha512":"513cea6a44e2f09a1584997fae558cb2fef4b3523ad727776bd8c267ac1519baff60e9df59a98c0f505447728cf3b967243ee10bee47f77506450ac1446181c3","ssdeep":"192:CEEPcxaFK/L9/LZ/LC7B6jO9C7d7RGJTUuOK7WhdCvHCi32RWRuJMfMVMWM5uQa/:CEEPcxwD9ElMo7CTviUjEu1na/","tlshash":"80d252f3f597b04b221ffec8b833670fe613a75ade934d48a2fd911a9740aa0d55a050","first_seen":"2025-12-23T15:47:48.60124Z","last_seen":"2025-12-23T15:47:48.60124Z","times_seen":1,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":27,"dns":21,"connect":1,"send":0,"wait":151,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/css/mfilmywap.css","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/css/mfilmywap.css HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 16 Jul 2024 22:48:23 GMT\r\nexpires: Wed, 21 Jan 2026 12:49:48 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nage: 97051\r\npriority: u=2,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6c0uZao7AIIA6FW1X9v1rNRC6FnGLpPzuSy2Uox6n1wIg%2FyRMLKLKWAOmQTcN8BnUavGnQ7sxpkRtYpS5yvln0Z%2Bp6TY8BrkMSE6TPNpVHon\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b28ff325a6956a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":7749,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1291)","md5":"24409bd912b1ff83564c06d8e12f502f","sha1":"1c7e2e0c7e83ff0a2a4c4c96ebea2c207a6645c7","sha256":"835aef93e3f7a5a5e0775a3cbc12a2e03aca85e00d502254d5da525e071a0b40","sha512":"03efa60e65d34f203d224f14c9c591bb4bd8823c6fab433b17c1992da92c857c0efc14101216ef50387ffa86c8540eeacd198aa1eef57df7d4dedf6f4318a51d","ssdeep":"192:yseufcNGmSNEHwE2PCdKFfvJHVstjfFFsf:yaBdha8RinF6","tlshash":"6bf13323aa5a110ab13fa4b5f053fbda626d4343d41b9b78bae57134dc860e52373b0c","first_seen":"2025-06-02T03:33:06.752908Z","last_seen":"2025-12-23T15:47:48.604601Z","times_seen":2,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/images/oFilmyZilla.png","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/images/oFilmyZilla.png HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 4391\r\nlast-modified: Sun, 03 Nov 2019 04:11:36 GMT\r\nexpires: Sat, 21 Feb 2026 15:47:20 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kA0lRNUbVtDmnzPH%2BDY8mnhokXQHweWDEsgv0nAYpbsC4oSEoO85w0Jtw7GkVOT68Mgf1F75Gy90a9GN3Tk7yhsxzL6zISeykYuu5etxAVU6\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b28ff326a6b56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":4391,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 233 x 45, 8-bit/color RGBA, non-interlaced","md5":"eb7330a42858e521b70eda081472a2fa","sha1":"0f84ef906396382fc5b203647a0ae3c09595b856","sha256":"537bbd115621e30bff34132dd47c2d35c6fdc2a32bb14973371d907ef4dbcc0f","sha512":"7d4e32650e35a640f71066a1ae47f839c222c9c20967295a01c8561679125f7d9739787a919606d0deda50b5f0a6c456921fc7078df27d03c2fa5a21bddf559c","ssdeep":"96:OZSLlQqYq1gYU21AOWFbQa8mo0p5c0jdb10Nl12ZTB5JtzlA/:OZSLlQqv6Y51AXJ8rW/jdh+QZfzlA/","tlshash":"60918edca5ce5c73f3712cd112a61861e0356c6f0644dfb24029b5bc969ee6a1d38c12","first_seen":"2023-07-29T19:11:21Z","last_seen":"2025-12-23T15:47:48.607384Z","times_seen":5,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":86,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/images/update.png","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.076Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/images/update.png HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 150\r\nlast-modified: Mon, 03 Oct 2016 12:57:28 GMT\r\nexpires: Fri, 20 Feb 2026 12:49:48 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nage: 97051\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uZooVbyE6bGX4I%2B9nfi1rIupYFyaBxFwYBgaVVZq1QWvmigmQoe0wPOOeKdKr1noTm357PF9hXaxbyvDIdWyk87jMJR89O6ixAeHY0DYir57\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b28ff326a6c56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":150,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 10 x 10, 4-bit colormap, non-interlaced","md5":"306394cadc51c9a7a8a56dd2d8984a12","sha1":"d7a1d0d61c9b9c5b25f3c1a6c1c5721bb83bc5c1","sha256":"3e629df716a244a7e2e8b994f700bd19d8e362f3b3e25f1cf6ed284cbf62c697","sha512":"45a05a0a2dc1ad6cbf60e65e0fda785e9d5b9dcabd92ad5a7b944f39d4163c3977eac189be41e91c4d0462d8832791b836f10f9f07112e99352998085eeb0ab5","ssdeep":"","tlshash":"89c08cc2a626ee20e2608122810980029c3b021c2211ca6340a19b381a8320085c9513","first_seen":"2023-07-06T19:03:35Z","last_seen":"2026-01-16T19:48:14.883273Z","times_seen":5,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ofilmyzilla.vin/","fqdn":"ofilmyzilla.vin","domain":"ofilmyzilla.vin","tld":"vin"},"ip":{"addr":"104.21.92.177","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-23T15:47:19.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.vin","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Oct 2025 14:19:50 GMT","end":"Tue, 27 Jan 2026 15:18:21 GMT"},"fingerprint":{"sha1":"F8:1B:01:34:16:2F:58:16:D0:C2:40:2D:26:EE:17:C7:FD:B5:57:70","sha256":"68:53:B4:BB:59:BD:73:E3:D4:B1:F4:3E:B4:77:83:2B:B2:55:54:29:72:31:2A:C8:92:E5:43:2C:00:8F:34:7F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ofilmyzilla.vin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 23 Dec 2025 15:47:19 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: https://www.ofilmyzilla.dog/\r\nserver: cloudflare\r\ncontent-security-policy: frame-ancestors 'none'\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: MISS\r\nx-server-powered-by: Engintron\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o8fI2eZlWwhCLVZDL7yfiMXzujnpbOzNLVFNJxFBFf%2FJmNe5yNpiawJmeL9bjl6AE1oPmBAUDsG46glfxtM2Ef3GvlV3MdPbn%2FmlN7Q%3D\"}]}\r\ncf-ray: 9b28ff2e1a24b503-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":29299,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-07T07:11:48.946741Z","times_seen":13452227,"resource_available":true,"data":null}},"time_used":421,"timings":{"blocked":79,"dns":51,"connect":1,"send":0,"wait":263,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"ofilmyzilla.vin","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-WQX04NMPFZ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.38.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:49:27 GMT","end":"Wed, 25 Feb 2026 15:49:26 GMT"},"fingerprint":{"sha1":"2C:B9:1B:62:2A:F9:04:B9:16:E2:30:B0:A8:B2:85:0C:68:BC:79:25","sha256":"AE:CB:A0:2C:92:1E:CB:D2:CB:6C:0D:37:5E:A2:4E:27:AE:4E:CA:0C:EC:53:D5:50:E6:C1:3D:EB:17:C1:F2:C9"}}},"request":{"raw":"GET /gtag/js?id=G-WQX04NMPFZ HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\nexpires: Tue, 23 Dec 2025 15:47:20 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 132172\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":384159,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"132c820669ba2f7aa34f2b303089fb18","sha1":"62cd0f91beb5d25b3487f15282de33cc28e8ed3e","sha256":"6b67767c2189d650891257facd555a1fa164fbbe91be482875d81a88fec82799","sha512":"d745dab7beb152f6f367655b713efda103c8d8324516aaa5cd5b456fef0f68ccd8563b60b97134ebb4efbcb2b59065f86f8e9b9d446b310207219baac49d7ea6","ssdeep":"6144:P6Ie7ma2bulKY/1u99xHDmHYmyBFzvnszmxWovPad4FpC1+T:7C8bu7/1mbrnsOWdMpX","tlshash":"c38419ce73c674669392a078503f118ba57b69e2f44cc895f18acce42d746aa4237f7c","first_seen":"2025-12-23T15:47:48.613331Z","last_seen":"2025-12-23T15:47:48.613331Z","times_seen":1,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":63,"dns":1,"connect":7,"send":0,"wait":27,"receive":29,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/css/styles.css","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.070Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/css/styles.css HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 03 Nov 2019 03:22:05 GMT\r\nexpires: Wed, 21 Jan 2026 12:49:48 GMT\r\ncache-control: max-age=2592000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\ncontent-encoding: gzip\r\nage: 97051\r\npriority: u=2,i=?0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=96ipveTe2rrAl3Ln%2B%2FnjQSq4xj6%2FuHFR4g1%2F8%2B0sujaYm526GARNZIzwgLIGymSicXS3puZnJ%2FT7uvGPccr8ioLlJTtJTBayQkJ0n3y68VWH\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b28ff326a6a56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16948,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4084)","md5":"fd243b62cc8d3ada8c962aa698a8b590","sha1":"0d1b30f6436872c1d29c3e426a79c38e218545a6","sha256":"3f5e42d3a9ddb720c1226138c56a0c751d835538ac40ea95a8fce1019bb27864","sha512":"aca98a3c7c1a8eee673675341a7590a1ab8886cd9366fd7943bda2ec3ba1f9e3546f12fa08c72c03f1c37f77a842c8eda39cc7dced8baea40bcdad2d7e2c3a4d","ssdeep":"192:IWb5Ww5G9TYcPm9zYchVkzJWbXTriHYu8FmVf688EcfGARlGUVOSaQWJsp1:Ia5nSu9eQqaEcuAn5VOSaQ2sp1","tlshash":"1672ee61f550a017381bc458b8a5fee7232116c7c4066fb9fdaaa0f5ca491de3723b1e","first_seen":"2023-07-29T19:11:21Z","last_seen":"2025-12-23T15:47:48.614607Z","times_seen":5,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/images/arrow.png","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/images/arrow.png HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 2851\r\nlast-modified: Mon, 03 Oct 2016 12:57:28 GMT\r\nexpires: Fri, 20 Feb 2026 12:49:48 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nage: 97051\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=thGM4axV3c4hLNyOkwL8BjWSHmaO21LMUbi6REQUznAqWp%2BVKtB3iXVBSemK%2BJWaExKjafT7Xc%2BS6hiwSAAIqQaiXae5r93rdlcaJBtWDBVT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b28ff326a6d56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]}],"data":{"size":2851,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced","md5":"e882c48b92224ceff2ae285c946b3332","sha1":"86781de9874acd014b3fd0a32e9ae1914c04a64a","sha256":"3839e1ea58f1104a315e41c0a7bc2ab712e3304a3198096d0132dd003fe7fe8a","sha512":"33321b59e3a10de01a659e95d1084677b459d34a638aaf76f5ca22c6d867be4d48dd2f6c251414d39d4e6d39174b2320966244d556a6d144fbd0ed76b1799069","ssdeep":"","tlshash":"ce518cafc9b0a09fb8dd79120dce0242e739227c9a57363ce0c1a9de1495d076f65076","first_seen":"2023-07-06T19:03:35Z","last_seen":"2026-03-27T04:37:21.281092Z","times_seen":62,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.ofilmyzilla.dog/templates/images/hot.gif","fqdn":"www.ofilmyzilla.dog","domain":"ofilmyzilla.dog","tld":"dog"},"ip":{"addr":"172.67.153.35","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ofilmyzilla.dog","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:47:40 GMT","end":"Mon, 09 Mar 2026 18:45:25 GMT"},"fingerprint":{"sha1":"07:81:32:D7:9A:FC:6C:3C:D0:27:3E:FB:53:A1:DA:8E:A4:99:42:08","sha256":"A9:F5:E5:ED:50:A4:5B:7E:8E:92:76:B4:04:3C:E3:09:CC:1A:89:82:B3:5A:59:85:EF:5D:30:8A:93:8C:5F:D2"}}},"request":{"raw":"GET /templates/images/hot.gif HTTP/1.1\r\nHost: www.ofilmyzilla.dog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\ncontent-type: image/gif\r\ncontent-length: 152\r\nlast-modified: Sat, 18 Dec 2021 15:19:14 GMT\r\nexpires: Fri, 20 Feb 2026 12:49:48 GMT\r\ncache-control: max-age=5184000\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-nginx-upstream-cache-status: STALE\r\nx-server-powered-by: Engintron\r\naccept-ranges: bytes\r\nage: 97051\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Z9qdugaYj3VFnadFr73QKivwjJFdIK%2Bw0gj7KDYR4dq7R4HW5d3PJEqr1YhvjoFyMCheBPiZ%2FLqrJCBnz3BLfeh6WGsl73GeL%2BxtTGcZO9n%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b28ff326a6f56a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Engintron","description":"Engintron is a plugin that integrates Nginx to cPanel/WHM server.","website":"https://github.com/engintron/engintron","common_platform_enumeration":"","icon":"engintron.png","categories":["Web server extensions"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":152,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 22 x 11","md5":"1c3d68c688c79d6c078f1cb0bb5c7d10","sha1":"f145d056e277041aa4129fe7d9dce44736785349","sha256":"9733310b3f270734c03f091d49c23fc7061a336de394c321a2ffea826332564c","sha512":"ac9eb195162b52be3c9156b85e65e5e80dfa9e58a305eeca5e18df7644b53f51e0fb6dfc248023e6502b9766b7071efec9e8162f5b999668ab98345f8eef0123","ssdeep":"","tlshash":"a4c08cc7f90c4095d8b51cf64f48554cc6beeea0e80b300d300c25a3282917b1a07046","first_seen":"2023-04-08T12:29:13Z","last_seen":"2026-04-03T00:30:14.811549Z","times_seen":67,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-23","alert":"Sinkholed","trigger":"www.ofilmyzilla.dog","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-123396143-3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.251.38.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.ofilmyzilla.dog/","date":"2025-12-23T15:47:20.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:49:27 GMT","end":"Wed, 25 Feb 2026 15:49:26 GMT"},"fingerprint":{"sha1":"2C:B9:1B:62:2A:F9:04:B9:16:E2:30:B0:A8:B2:85:0C:68:BC:79:25","sha256":"AE:CB:A0:2C:92:1E:CB:D2:CB:6C:0D:37:5E:A2:4E:27:AE:4E:CA:0C:EC:53:D5:50:E6:C1:3D:EB:17:C1:F2:C9"}}},"request":{"raw":"GET /gtag/js?id=UA-123396143-3 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.ofilmyzilla.dog/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 23 Dec 2025 15:47:20 GMT\r\nexpires: Tue, 23 Dec 2025 15:47:20 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Tue, 23 Dec 2025 15:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 111294\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":320812,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (5911)","md5":"47f10a1a2eb6daf7aa985f7a9ca3d840","sha1":"cd89336700e99a7ce66d21984eead10d8c7d06a5","sha256":"bb7ca95f010789d3bc838b077e71409f8528368a7a4191553a78edb420fb95f7","sha512":"0900e8fa05796eece7565c18ab91ac1aa24b09488cae7250f7be3e17707fc5f0f7bc792663a537de8aa7498a87cc3f9ec8c1a9944f83b4003b0c922b6a0fe6f3","ssdeep":"6144:iIeJ92bulKYv9VGDmHYmyBFzfns1RnWC46pJem:Lpbu7lEDnsrWCDpF","tlshash":"2c6408c9b3da74268393a474503f108ba27b79d2e84cc895f185ccd42e74aaa4277f7d","first_seen":"2025-12-23T15:47:48.616457Z","last_seen":"2025-12-23T15:47:48.616457Z","times_seen":1,"resource_available":true,"data":null}},"time_used":216,"timings":{"blocked":80,"dns":0,"connect":20,"send":0,"wait":25,"receive":20,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}