{"report_id":"9c661eee-5db1-4bef-aa5e-059a898548e6","version":6,"status":"done","tags":[],"date":"2026-03-17T07:35:33Z","url":{"schema":"http","addr":"www.dikflix.com/","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":0,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"www.dikflix.com/index.html","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"title":"im钱包下载-imToken钱包-imtoken中文版","dom":{"size":13995,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (9965)","md5":"0457ac3fd217c549a01ccf70b0e78b69","sha1":"3c4bf7b293bd43f40088bf683368968aee2f0fd8","sha256":"6d4bcb973d243a62364128fb2e4c0459c25af72cd2100efa8572a2408377624e","sha512":"f032d895ef9e9eaf8fcd7b75f38379d07282ef18e110fe8401e322e3084b8d836e529b69a16b4bf6db1142ff084cf588df92fe2196afcc26bb10c554d191ea02","ssdeep":"192:FdKClJA/LmQ6CnaDAbmHV5mdk/qap/r3FspPF3tMn9F4T2Qv:TKCm6saPnF8N3tMn9F4T26","tlshash":"a852403294d5653b12536de8f0b16f5de0c3821ec66a2c48b3fd8bc69fd1e989d02987","dom_hash":"domhash67b2a411027d4ae93f3ad9176b4c5159","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.dikflix.com/","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":0,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-21T07:35:33Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":3,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-17T07:35:12Z","timestamp":1773732912,"ip_dst":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"ip_src":{"addr":"Client IP","port":46738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-17T07:35:12.545246+0000\",\"flow_id\":1679577096129670,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":46738,\"dest_ip\":\"8.212.139.121\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"imto1ken.oss-ap-southeast-6.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":906,\"bytes_toclient\":6402,\"start\":\"2026-03-17T07:35:12.134278+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-17T07:35:12Z","timestamp":1773732912,"ip_dst":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"ip_src":{"addr":"Client IP","port":46748,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-17T07:35:12.549961+0000\",\"flow_id\":294475912973626,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":46748,\"dest_ip\":\"8.212.139.121\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"imto1ken.oss-ap-southeast-6.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":906,\"bytes_toclient\":6402,\"start\":\"2026-03-17T07:35:12.134458+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-17T07:35:12Z","timestamp":1773732912,"ip_dst":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"ip_src":{"addr":"Client IP","port":46764,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)","source":"{\"timestamp\":\"2026-03-17T07:35:12.572180+0000\",\"flow_id\":507315164810657,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":46764,\"dest_ip\":\"8.212.139.121\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2052581,\"rev\":1,\"signature\":\"ET INFO Observed Alibaba Cloud CDN Domain (aliyuncs .com in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2024_05_14\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"TA_Abused_Service\"],\"updated_at\":[\"2024_05_14\"]}},\"tls\":{\"sni\":\"imto1ken.oss-ap-southeast-6.aliyuncs.com\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"5d79edf64e03689ff559a54e9d9487bc\",\"string\":\"771,49199,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":906,\"bytes_toclient\":1634,\"start\":\"2026-03-17T07:35:12.134561+0000\"}}"}],"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"hm.baidu.com","ip":{"addr":"111.45.11.83","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"domain_registered":"1999-10-11","domain_rank":54491,"first_seen":"2012-05-26T08:38:45Z","last_seen":"2026-03-16T02:58:13.619816Z","alert_count":0,"request_count":1,"received_data":175,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.dikflix.com","ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"2024-12-22","domain_rank":0,"first_seen":"2025-10-24T03:25:23.970334Z","last_seen":"2025-10-24T03:25:23.970334Z","alert_count":108,"request_count":54,"received_data":1777436,"sent_data":24700,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"jQuery:1.11.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"domain_registered":"2012-04-01","domain_rank":0,"first_seen":"2024-01-09T10:28:12Z","last_seen":"2026-03-12T09:34:55.975586Z","alert_count":0,"request_count":3,"received_data":6109,"sent_data":1303,"comment":"","tags":null,"fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}]},{"fqdn":"app68.skin","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-26","domain_rank":0,"first_seen":"2026-03-17T07:35:36.494202Z","last_seen":"2026-03-17T07:35:36.494202Z","alert_count":37,"request_count":37,"received_data":3748324,"sent_data":16321,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"collect-v6.51.la","ip":{"addr":"43.174.227.28","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"domain_registered":"2005-01-17","domain_rank":348646,"first_seen":"2021-03-08T16:03:54Z","last_seen":"2026-03-16T04:41:01.468216Z","alert_count":0,"request_count":1,"received_data":354,"sent_data":461,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.dikflix.com/so.js?20240707","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d109972f744d46952f66de49cc82bf3","sha1":"a130e3faa2cf35feff778075302eb7867b4882db","sha256":"ca3d5be2e9aad6bf68b32538d337e5cb3b845b7976e2ede3a4337bd749892177","sha512":"a57995ffa158976181650d02f7a725c8e91be6214254d13710606a42e68764f8c85cb06bd23b62148ece31c7fbb8e9b847a1056099c9ec68898f66bdf1627107","ssdeep":"","tlshash":"b7f0125e6e56ea20552409dce571eaa8a0fda135f555cd6c85ee042515c8fcd090ec44","size":547,"data":"","first_seen":"2024-12-23T19:49:18.361695Z","last_seen":"2026-04-04T22:11:31.256954Z","times_seen":1496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/win.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"introduction_type":"scriptElement","is_inline":false,"md5":"c134ac1dcdd8bf07b0f23c8cfe381551","sha1":"c3c2cc953e3bb4833479ad5807fb0ce2899abb36","sha256":"e38f333bac8fba8589224f4adcbf63ae283ab26a3ecf1a6604596fca8b66b8b6","sha512":"e4fedaaa6582f1b8b6601274ccbed4b199d9b952e473101218e7327ca96589215f8bc1ff2f1ec4700586aeeeea1a0e76cd8ced399268ef0ddfc9a0cf6b59bc9d","ssdeep":"","tlshash":"a5514cdc7be6d24f7b8c5da3ee09afda11b5953ba0c17247c79cb98d20e920ac658044","size":2995,"data":"","first_seen":"2026-03-14T11:15:48.869009Z","last_seen":"2026-03-17T14:25:11.980698Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/chunk-vendors.72f83685.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f98c3f2e30ab7e16271e08cdddd6da27","sha1":"bb1d30f4ef4875a81cbd9c93f05de583aac06e0f","sha256":"cd8bb92a826b0ee3c18b95ee744a5768e34753c866a1a6c15e51d8e874481c58","sha512":"abd215263061d554b699b287c11735a9efae0f0dadb5c9c735167d5a3845d88454c92a1f69d6ca1d372e163817114eb06dd659987afc0719f1d2471460799fa2","ssdeep":"12288:0r2fW0/CNOHtCxSdztgX9eTjDkJI7kcPNQmG2hFm/3e:0r2uV20caXAPYUkcPqmG2hFm/O","tlshash":"2e15195cb244a1bc5ab767b8853b1012b36e95ee70948324f36ecce076710dce2a7d9d","size":961375,"data":"","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-04-04T22:11:31.219076Z","times_seen":1805,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/app.845283e8.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"708c641dec8bfaf92e52dfff28503b76","sha1":"124e681f9faa72c7b733c2c9da173f11f3fe08d7","sha256":"c6dcdab92506282c75a6061a41eb61964662618e7b0768aca18b5d39f97af4f9","sha512":"0d896692d4e2e47792eba7550aaa3ebdef46b2866766691ca9f2599093a6926f2012545e8bae3598200341a94ae58209435c63da2f7acda4a5be53c4df7c3182","ssdeep":"3072:mupUqvDzVgE0j0etKGsW4+whqIAjFnOelEfxM7xd4dCG+/f28/gnUsq0ACGharNm:FpzLzVr0j0STtMM7zuC/2VUsq0JGUrg","tlshash":"c5546c0ba74a3778080336a522df25dce228d4add22685b5fa7dc4d913e1a7d0373add","size":300990,"data":"","first_seen":"2024-07-11T22:37:16Z","last_seen":"2026-04-04T22:11:31.268441Z","times_seen":1803,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/website.f36331df.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2351745189ecbc49f31246648133a36e","sha1":"cefc075826bec506a9b70e959330629e5d979bb4","sha256":"90b6b9cb4d40df8c40b6f81970fe169d7135adfea6e41115329b880c0e917eb1","sha512":"fc4fe9ac08fe536f8aacd2a854d3bf31752ff73737730aff179e354d71e88641733f744919082690117f5b3351faf2105b510d40d092ca84762c990f97d1a432","ssdeep":"6144:eTin01pJVY5y1jEEAHN6J9LRAHwqHmrSGHDsXz0FwG37V1LT82dp5Ilv6iy8t7fU:een1mjERWNDsj0FwG3rZ5oNvqV","tlshash":"ead4f25d58b76ee554dfe01281380c29f03561bb522e9c207f1e4a586f3ce3e3a5bb68","size":650350,"data":"","first_seen":"2026-03-08T12:35:42.860206Z","last_seen":"2026-03-20T14:59:10.008297Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"70e3a62299dc4b491f76b48a1860d60c","sha1":"2c0f2dd6de2a4f14872f391e9697cc34c966de97","sha256":"40c726d7fd4182e8e8dad2feeea156d5ba3a04a5e50ffea8387a2301cb38221e","sha512":"2903563abeaf662dd162b6aad39542aac32f054709039a41ee9f570d80adcb35932c500a386c10bf3fb2fd556e9b5c8ea97eec6e47fa0ef2eef989134bb634bd","ssdeep":"","tlshash":"e79002200e72848f60072582831001c3a0590340021c4004e687c2604f6a84a60c5133","size":54,"data":"","first_seen":"2024-08-19T21:19:08.351854Z","last_seen":"2026-04-04T22:11:31.267134Z","times_seen":1728,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sdk.51.la/js-sdk-pro.min.js","fqdn":"sdk.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8a41c9449b73e8ba0224c6be1f0b7e8","sha1":"33d79319d4110bcf5c44c36f7dd4a291972ac546","sha256":"52079c09a7355f4ce3af750602ebb9aebae8238583601f8a06268eecccf13565","sha512":"472d0395a65a3ade2d215559b196a88ffcdacde3ac0f573eb8663b524f201d72c9339bcacbc198d82452a0ac367c0efd407b12795943cdd2755d95a8cf71b977","ssdeep":"768:swetbD3SkE+a/l1jaKUiQU5eqEh9GMXBOXAA/EXBeJMlbJfuPT:BetbD3SVT/3+KUc5eqEh9GMXBYEXBeJ7","tlshash":"dbf23d9577c0317cc3c783ea362b501ae1a69e910059a8bcf345f6907d34e56a37fba8","size":36114,"data":"","first_seen":"2025-03-10T03:40:31.536734Z","last_seen":"2026-04-04T23:48:37.306314Z","times_seen":81598,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"6de30a424ddf05d953c938ca433a579b","sha1":"64a0ed447d69e38e42bbff0e63434d1d2b013ee1","sha256":"0b1ce380ba9a9d402c8e42e7b431a2ed73498acf353e4e7fa8b8e0a6c6d3b619","sha512":"cedf50705c8a47fb975096710c4a2d83affa9c7f3de497e1531506b8b407db552082589778f9de50aaa885881d6fb86aaca5f5f9883173ea68c8b23345533ea5","ssdeep":"","tlshash":"a1b0124f7d82c41090500ddcd161f96cd046726be654c98cc5e44410258cfce090e494","size":103,"data":"","first_seen":"2024-10-25T18:50:30.635213Z","last_seen":"2026-04-04T22:11:31.279026Z","times_seen":2298,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"2ecd5791d23718ca181cdafedb3be0ef","sha1":"0f8d74f4121be6f03476ce3222bc8570705f61e6","sha256":"4f351f75ee32bfa5ea9b948a12e88a5dde8d97e732b423f96d68552a75009940","sha512":"8bdb52367a45f2b601c2f3fa74fb49c75e1e0550556d48fa0386b4e4a51646e74b6a2f282737376f08080f3b28cb0a51b82de7c102880cf68bce6cbe1f4aacb5","ssdeep":"","tlshash":"9b9004375f04dc510c355d4c5577df5d10fc55101150cc3413dd000405417dccc73400","size":40,"data":"","first_seen":"2024-12-23T19:49:18.380071Z","last_seen":"2026-04-04T22:11:31.279543Z","times_seen":2133,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"7003ee2e79ad8feb6bf581f30cfe5031","sha1":"508ad6732e0bebe9bb244a987a1c361cd292cb90","sha256":"1d59fa8b0097de536d13bab5955cb03e898e2e2a7b00d38cc0bd855f66744bbd","sha512":"f08bbd5aec3d9dfffb25f5991fee9dd4a1a3589375c08e4158b44b1033eb8ad1f9c9c45f8891595c6cc17e1d54cf0c40c4cbdca2ec90f0eb70781fd8c674d2f7","ssdeep":"","tlshash":"c2b0124f7d82c01050500ddcc161fa6ce045726b9654cd8cc5e44471654cbcd090e488","size":102,"data":"","first_seen":"2024-10-25T18:50:30.631426Z","last_seen":"2026-04-04T22:11:31.280084Z","times_seen":2399,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a074a9008c8597a84c516a22f789c3af","sha1":"6d55682d1521a6603e4b2454f4b5fef944994355","sha256":"701c0791e545e430b04d14e7596e4e6c9eee7f4cdadeff9befc77fc0a902859f","sha512":"813a6710b9b1ec408ae5c11f5e0a5ed4ad36d21aaa1829225a8e7dcc3fe67e93d6de8083e5f8f72ab51028235729a8b3ffc00a2b9b7800371f8e83112013163f","ssdeep":"","tlshash":"4b8004575f04d4500c3455445474d4dc30d455003150cc3455fd01150d005d44c31400","size":38,"data":"","first_seen":"2024-12-23T19:49:18.384594Z","last_seen":"2026-04-04T22:11:31.280848Z","times_seen":2134,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"78ac2aa5ccc29c90a345c90aab40b442","sha1":"cac604932faa4add2955602b41de8a8bff362ebd","sha256":"53db339b0b80637f13dfc63813d7366c899cebe0db896602886ece619163d82e","sha512":"5c76abfa8f4091277643f4dad57c37d9eb71d33c9691f0e85bc82ac5f303d4e3da4937cbc2354e4d5c5d0022746d7c06f975f209067df2cefa55bd3827d892a7","ssdeep":"","tlshash":"31b01242d0575c0e0170c236ec485418474d4a7d9fa708010dc6ab5c0c99f1405e549c","size":103,"data":"","first_seen":"2023-03-07T01:06:53Z","last_seen":"2026-04-04T23:48:37.31113Z","times_seen":11048,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"8ea3877ae0db4dd2c39f03c0b95939cb","sha1":"d1c3c9141d0521cc4401c29f81cf3f268065cb32","sha256":"acac378766e6365effed4521f0301e1bda13ab580b2a1fec957b82d4819083c4","sha512":"763be8bac55a4565239c21cf6bf367d2684c1db2bb7e7cb85d05317e6a8a0c19bfd8802afbe95290b1d9aec8b8661d6973caeab46e3c1a81c7adccce3d86af6f","ssdeep":"","tlshash":"00c02b250f313222a470c2f93c56feac0912806087a5890c31ef7836c3a720500210d1","size":133,"data":"","first_seen":"2023-03-08T12:37:01Z","last_seen":"2026-04-04T22:11:31.27727Z","times_seen":3294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"d180e5edc020160081c750b37a9650ca","sha1":"5541a8db0b73b588ef8d8096deac227d49d13f83","sha256":"0b985295d52ecb47d69f5559a5c6c83f5ba9ed9d2846fd10b72e213ddf66b120","sha512":"f4e197dcd0828c46e126690e42808159483c5f49701afff670f84f8eb36463c7c670bcf48a00fdc230438a3355721dcc4a3a54835bd97215aa5dacb296614940","ssdeep":"","tlshash":"4eb01271c999e468c125f104e0c48bce26340189b7779f084538aa62508fe942c3c5c0","size":97,"data":"","first_seen":"2023-03-08T12:37:01Z","last_seen":"2026-04-04T22:11:31.281373Z","times_seen":3294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"30b3eaee0019e91d9e850fd89232f166","sha1":"20e52a231408b2579e8efac79fce401c895d02d6","sha256":"d632bcc90af67e7cc064cc04295e9ec7a91cf690f988e5a9240defba960f1919","sha512":"6916c5e312a174e38cd460ecc24dd9e9987118feed2beec5f42ea3e7235c0892210877e5dfba47027839fe5526fc14c1dde2c93d7488af562d79d11150636597","ssdeep":"","tlshash":"71c08cb3146a604cc930c068707809085046ae5dfb03eab069f23ca1224d1e81ae47f9","size":162,"data":"","first_seen":"2026-03-15T14:13:30.748832Z","last_seen":"2026-03-17T14:25:12.082065Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"f8e9ec089869466485725098ee73438e","sha1":"58b6f12e767e397a502771f7dda052a0579e08e6","sha256":"a729d8319ae51adc28cb8c352c50dd88575b7d05a0038d1a29ea56e2672fabda","sha512":"d248e3773a2385eaf906a947bdb018e80b62d190e161f50f073ea7c9954fabbc63690bc9223aa6b6cb1483731a44543d6cb3ba9b919cfe1ae843133679bb8fb4","ssdeep":"","tlshash":"48b0124b7d82c01050500ddcc161f9ace045726ba658cd8cc9f44421654cbcd090e484","size":102,"data":"","first_seen":"2024-10-25T18:50:30.629865Z","last_seen":"2026-04-04T22:11:31.281852Z","times_seen":2298,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"6ba4dbe4dd8d138aa16b1c6c2c73501c","sha1":"1b86c774926d6e214539e79f822a9df0d3406b7e","sha256":"b29221726e4be450fdeea882e7353dc1f03ce77d69b82339f29bb255fbb4bbfe","sha512":"abde95ea9372982e811dd4f9a36165dca639d58c6312042b4c65845022b96d8efe14c80da2c6d33fb1350009aceb4b49f63da64db10cdc9e673656d82bb3210a","ssdeep":"","tlshash":"d680041f5f04d4700c3454445474d45c10d455001150cc3451dd00150d005d44c3140c","size":38,"data":"","first_seen":"2024-12-23T19:49:18.387413Z","last_seen":"2026-04-04T22:11:31.282346Z","times_seen":2135,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"0a3a0b592b9c285e050805307cee87c2","sha1":"125a168e24b2bd38aadb84cbb5f87f316b073c41","sha256":"aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23","sha512":"4097f05a9ce819914160aeba71fa11524f6b291a39b7c948509d756318b600934f1d195980df66bc7731e327979135bfcbe0e9ff3758d779a72481ed623cd3a5","ssdeep":"","tlshash":"a34000000000000000000000003000000000c000000000000000000000c0000cc00000","size":6,"data":"","first_seen":"2023-03-07T01:02:09Z","last_seen":"2026-04-04T23:40:48.587801Z","times_seen":227160,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/demo.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/demo.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:13:40 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04c044-9c1\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2497,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"916d688e15e9166ee9e0ae74336f1c78","sha1":"b34119351ff4e6a915eb3ca7e21db02bf5ae2b7b","sha256":"1faae0656a0d732f1d322fd3037ea3ee59530e7412b831bc0ae624537f16bebc","sha512":"c4c2a8b0c800c8868a358192c7437798a03512caba052b8169a0e274b542db0ff670dcfd2fb08607fd393ed0ba3c4cbfda4dd52142811fd181fcb64d764b991b","ssdeep":"","tlshash":"575189d9ca90704ca2427a1caff002295e6f14a17f0f45bfa463966df3c918a3476bd8","first_seen":"2025-10-24T03:25:35.485029Z","last_seen":"2026-03-17T07:35:43.332106Z","times_seen":2,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/jquery.themepunch.tools.min.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/jquery.themepunch.tools.min.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd96-172a0\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":94880,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24774)","md5":"1bf0636486803e3cd9983ad5264b22b1","sha1":"b7ac889e52c2d0c510d59e41cbdd6a73c71c0c5a","sha256":"a079ffbcbfb4339c7684f5872c8906d4d415c703822e04d81ff92843d6deb3e4","sha512":"65bf251990b8bd8a03ce63b5a69112596eb669415f439ad51781bde46e4f1a9c9aeace66cf91284bd4218fcb00500a1d13997609dd5b2cc5768b0918f00125f0","ssdeep":"1536:qxW4OHKIvcNgCP7PB13U2sm1RtQ0sCzlSlOo8+ZMzz3zAcbZjE9e:qPIv2P0jm1R2Czcc+Zi0He","tlshash":"50933aca7221702105d721a6507f0683b33b98ea790d896cf258d9de3d3c9c962bbf75","first_seen":"2023-03-07T01:38:26Z","last_seen":"2026-04-04T13:51:56.947082Z","times_seen":380,"resource_available":true,"data":null}},"time_used":987,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":987,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/fonts/fontawesome-webfont.woff2","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.327Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/fonts/fontawesome-webfont.woff2 HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/skin/css/font-awesome.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 56780\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:18 GMT\r\netag: \"5b04bd9a-ddcc\"\r\naccept-ranges: bytes\r\nserver: nginx\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":56780,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 56780, version 4.197","md5":"97493d3f11c0a3bd5cbd959f5d19b699","sha1":"1075231650f579955905bb2f6527148a8e2b4b16","sha256":"aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c","sha512":"bfe4679bbe5d1db21f6ecb2d6c2810dd02d3b698efdd50004cc355c1d0bc51de8dd102707c796b26e8250c600b4b64db88b67d3f28157777b68e36ad7930bfc0","ssdeep":"1536:zxwdj+K8kLkunGAASpdw6hsxD/G+zSIoiCQN+n:zxmVY6dwJThoiCQE","tlshash":"eb430269f84b577202275a0509ee0d34ef804962eef247fbb1fb90c5d6309ac1ea1b56","first_seen":"2023-04-05T09:41:17Z","last_seen":"2026-04-04T23:23:03.297437Z","times_seen":22260,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/settings.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/settings.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd94-14feb\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":85995,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (374)","md5":"183fb5aa5375be514fa4e17dd1f78008","sha1":"2a28cd1137f0fc98afe360de37c33d6df5f01773","sha256":"12b7cac3cf44f21b7a6afebf8ad387a4e159945e002955d324d48ebb3b1f2819","sha512":"5524882e5bea8ba928d6d39712dcf4b7ffb772304712a3be0052014f2f16b86339367cbe951061d6b4e0f762e8ea54aff5f962783025dba23c4d8a6d4266255e","ssdeep":"1536:4VuIDoANxRDE6qJhVqWfLpUWL2zzYTn5BHsrthShe:4VuIDxxRWJ7L2z8Tm","tlshash":"3c83c562ef465c05b21bc5097ec2aee9627dc2339d030e9eb84375bcd3cd6e60266749","first_seen":"2025-10-24T03:25:35.511192Z","last_seen":"2026-03-17T07:35:43.338306Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1012,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1012,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P40311405OO.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P40311405OO.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:38:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e23e-5977\"\r\nexpires: Sun, 12 Apr 2026 12:34:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22903,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3","md5":"48938d48f32701aacb04eac9c6625696","sha1":"210b40ba7bad42803b91b6604581954f2089d078","sha256":"8f300fc9a06ca227ae12a344bde5636a527e8e27bc83d3ed22f1ca7ca0ecb75a","sha512":"8797d0625ff2b7d8d17715cf1e0a4cfba52058e98412b3f896bebc19dc02efdb29f45ea74ed07b74bcbf4214c924a9a32826b0af89949a31f2bb2fa3c94c7cd4","ssdeep":"384:amYOHkJTWXzq2ASf8/9zIL/vrTt5kCAEfl9DscvApUw4D+CmoL6HD:amYOHkVAq2AJ/9a/jxYEfl9DJ6Uw4D+1","tlshash":"42a2d16e224299d6fee46e360d165f34a6e7aa1cb3504f8d07f68c74d12462c14ceef2","first_seen":"2025-10-24T03:25:35.536576Z","last_seen":"2026-03-17T07:35:43.342039Z","times_seen":2,"resource_available":false,"data":null}},"time_used":826,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":826,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P403114001O0.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.958Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P403114001O0.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:38:37 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e23d-2ddb\"\r\nexpires: Sun, 12 Apr 2026 22:26:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11739,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3","md5":"2d6515c4feb9de03114aee863007b264","sha1":"8f404e8b82283e8479ec521be32862754d00daf6","sha256":"0b71ad6a700ea5ef499bc7e0676d2abad604c4ed26407c9345a5a15ad561033d","sha512":"eb3528f3b59781b0c24ef746375dce2237b7a96861537c5a8b623af6126f99a771c4aacd7ce47e4c39e44042d09b7089886613113f4bd8166f5f9b161479f486","ssdeep":"192:Ng8BN8pCIKuBzoY1B5wGfqvtiAh8yYy9cTq7HuNuC6Lcn:68OhBzosB5wGfqH8yf90qj5C6L+","tlshash":"3b327cab1209a9f5fea3743200b74e1015e413ee83dba85a1be654bd5ca16c99f1181c","first_seen":"2025-10-24T03:25:35.52069Z","last_seen":"2026-03-17T07:35:43.344614Z","times_seen":2,"resource_available":false,"data":null}},"time_used":825,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":825,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/win.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:12.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-6.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:15 GMT","end":"Sat, 02 Jan 2027 02:51:06 GMT"},"fingerprint":{"sha1":"71:AA:B2:AB:13:43:B4:24:14:D4:17:18:6C:6D:8C:8A:EF:6C:D2:1C","sha256":"9D:B8:09:0A:5D:43:59:9A:AE:6C:F3:99:ED:13:80:FA:DF:21:7D:65:AE:F9:B0:47:DA:3F:24:41:84:58:15:5A"}}},"request":{"raw":"GET /win.js HTTP/1.1\r\nHost: imto1ken.oss-ap-southeast-6.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Tue, 17 Mar 2026 07:35:13 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nx-oss-request-id: 69B90431147C0231308F4DE3\r\nLast-Modified: Sat, 14 Mar 2026 09:09:24 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 11192391334522734749\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: wTSsHc3Yvwew8jyM/jgVUQ==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":2995,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2995), with no line terminators","md5":"c134ac1dcdd8bf07b0f23c8cfe381551","sha1":"c3c2cc953e3bb4833479ad5807fb0ce2899abb36","sha256":"e38f333bac8fba8589224f4adcbf63ae283ab26a3ecf1a6604596fca8b66b8b6","sha512":"e4fedaaa6582f1b8b6601274ccbed4b199d9b952e473101218e7327ca96589215f8bc1ff2f1ec4700586aeeeea1a0e76cd8ced399268ef0ddfc9a0cf6b59bc9d","ssdeep":"","tlshash":"a5514cdc7be6d24f7b8c5da3ee09afda11b5953ba0c17247c79cb98d20e920ac658044","first_seen":"2026-03-14T11:15:48.869009Z","last_seen":"2026-03-17T14:25:11.980698Z","times_seen":9,"resource_available":true,"data":null}},"time_used":1925,"timings":{"blocked":859,"dns":38,"connect":204,"send":0,"wait":205,"receive":0,"ssl":617},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/css/app.43874d60.css","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:13.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /css/app.43874d60.css HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:40 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1780-a2b5\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32603\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sQf%2F%2BRGekfdWem88DAkwS58RF%2BYsU1vzNtbSgrT9Df9Jo9pWzOBSjpWVBHkCoVJTXmyqPnbnVmM2o2ixri0trzMj%2BruJ4M53Rgc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d7fd9257e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":41653,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (41653), with no line terminators","md5":"1233f1606ab2a281b898d03302622eb2","sha1":"cc554f4a401b68e53b8c499557984d460641d5f7","sha256":"53b41273fab622eba8d934ba8c0156ce0dd9f8f80c5ddf463c198351038fc990","sha512":"94ff2c796a6437961aa849067558bb4aa363510b9ae983beb75f6910a478a0d6642ff0653997423b23d02192a3c0d01aac51ebac94448aeee84cf43ed0b35aaa","ssdeep":"768:XTosIaPkIdsJIbIIExNuGZEOR+8f65WKmXjZFsOMtSIYLrou7S+w4tJCEjlKQ:jtPrsk4NuGZEOw8f65WXXjwQKQ","tlshash":"8813cb107754343df1778b6aa4e1ea6ca730c543c25785efe352b914cae61a7322bb8c","first_seen":"2023-06-10T15:06:02Z","last_seen":"2026-04-04T22:11:31.180446Z","times_seen":1811,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/app.845283e8.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:13.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /js/app.845283e8.js HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 20 Jun 2024 04:36:16 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"6673b1c0-497be\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32603\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OScMnJ38WGxmE54Jar5DSIZBCKWoAFDJx2KMBWmOxZunbmbiANChCwyPLTPvIrPCGmeyAybwRqrb%2BOhVTRRuIkIagTVVgEQS1pI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d7fda257e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":300990,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65294), with no line terminators","md5":"708c641dec8bfaf92e52dfff28503b76","sha1":"124e681f9faa72c7b733c2c9da173f11f3fe08d7","sha256":"c6dcdab92506282c75a6061a41eb61964662618e7b0768aca18b5d39f97af4f9","sha512":"0d896692d4e2e47792eba7550aaa3ebdef46b2866766691ca9f2599093a6926f2012545e8bae3598200341a94ae58209435c63da2f7acda4a5be53c4df7c3182","ssdeep":"3072:mupUqvDzVgE0j0etKGsW4+whqIAjFnOelEfxM7xd4dCG+/f28/gnUsq0ACGharNm:FpzLzVr0j0STtMM7zuC/2VUsq0JGUrg","tlshash":"c5546c0ba74a3778080336a522df25dce228d4add22685b5fa7dc4d913e1a7d0373add","first_seen":"2024-07-11T22:37:16Z","last_seen":"2026-04-04T22:11:31.268441Z","times_seen":1803,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/website.f36331df.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:15.414Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /js/website.f36331df.js HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:15 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 08 Mar 2026 04:16:22 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"69acf816-9ec96\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32604\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0s%2BGT4shDZHVUNvVBkIuTahgPgA5OB3FaTuhZBz%2B5yQdTFVwPddkfltUumk3jE0RaQRvWbxrtUDPGc8oSUmLQRCHBhL0E2cxCyY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51e15a2c57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":650390,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3378)","md5":"2351745189ecbc49f31246648133a36e","sha1":"cefc075826bec506a9b70e959330629e5d979bb4","sha256":"90b6b9cb4d40df8c40b6f81970fe169d7135adfea6e41115329b880c0e917eb1","sha512":"fc4fe9ac08fe536f8aacd2a854d3bf31752ff73737730aff179e354d71e88641733f744919082690117f5b3351faf2105b510d40d092ca84762c990f97d1a432","ssdeep":"6144:eTin01pJVY5y1jEEAHN6J9LRAHwqHmrSGHDsXz0FwG37V1LT82dp5Ilv6iy8t7fU:een1mjERWNDsj0FwG3rZ5oNvqV","tlshash":"ead4f25d58b76ee554dfe01281380c29f03561bb522e9c207f1e4a586f3ce3e3a5bb68","first_seen":"2026-03-08T12:35:42.860206Z","last_seen":"2026-03-20T14:59:10.008297Z","times_seen":12,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/style.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/style.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:13:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04c027-2aede\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":175838,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (387), with CRLF line terminators","md5":"e9a6a87a1352b00411a6dd7bb5b75ba6","sha1":"525d32920ff9eed3ebd55cf2f7731bd05c7ba178","sha256":"105fd98fb2a7327c26962c524747b4fcae514c97dd8e99f35e298bc9728a967e","sha512":"fb4d3f0a5248114a32fb3112fcc97765ed2c5b8c1987b043ad8ff4e813a898db5d2714c503c21bb7de4ad8170fff1a7faf4b441cd96ef2cc2268f1189e4daf04","ssdeep":"1536:/BZmHMAIh+xVM1LdJM20oEJgRf7M6GsyGBhOyBBPIK/DtY:/BZmHMAIh+xVM7wJgk","tlshash":"a604f218ef99318eb10bf5f5f7f14b68ff1900b19f0e4638b6b5216492469a8287e2c5","first_seen":"2025-10-24T03:25:35.504415Z","last_seen":"2026-03-17T07:35:43.351853Z","times_seen":2,"resource_available":false,"data":null}},"time_used":467,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":467,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/qrcode.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/qrcode.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:14:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04c068-6ec5\"\r\nexpires: Sun, 12 Apr 2026 22:27:01 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28357,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"d5c8d50c1c94c228357a505cd4189615","sha1":"3192050cf26d573cbdc1411503641b302646e348","sha256":"07d1d9dc855ecb1727ac06c2e3b59787fb870a27cf132f244f4a4a6280fa8ab0","sha512":"2803260cd5aac302db6729ce4073e7aa8962260ab5a98b584c1107a883f2494aaa48bcd1961ee59d36bb705e8f4959a947b0848521956d49375ca8736808cee2","ssdeep":"384:e4/jCmRVEdieUOvCK6PLlS+BskKhBbPAJYLTDLfsZUyAxiyp1yGilAgAWQuxqnGV:eKYPhvB6PpSFhdPAJMXLDhxiyJ+QuyQn","tlshash":"80d2e0d9db2d04e2a8a8bcb621600834588587f9d74e248b1ed6623f5dfbc5e013a19b","first_seen":"2025-03-07T16:53:12.444822Z","last_seen":"2026-03-28T15:17:05.798331Z","times_seen":55,"resource_available":false,"data":null}},"time_used":820,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":820,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-zcash.e0621e3f.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.416Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-zcash.e0621e3f.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-1315\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Cvw2NKsPavtBtfEVB746YfOrATvjbmT9wTdNGUJ6TXhppFcqj5Ww1XTc%2FEMi68kD7Jr8YnVgqJ8aQmTqCa1iZOaTbMXCZlqW9eo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51daec8257e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4885,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e0621e3f132f88ac5d4fe5dc005cf561","sha1":"0747109ee5cf812557b6af0b8832b5672f7a4460","sha256":"aa7c92f1c6cec8e53faf4e069e61f6d267078e4b464f71c3a040109d3e22e2d2","sha512":"273ff59a8975038eb4539488546afe2a421592eeec75ae8a3b3e23c28481ed29facf205ddc01d2cf83daf154a6a9be03634d766647284de5e1d8666af896c45a","ssdeep":"96:f8wbk3jtS576Zv3O8aMtDHbFO5SpF84BiJWeaK7O1FgogY8h33V:f8iR0v+8/tjbFO5YK4UpRcgogY8h33V","tlshash":"f8a198dc3f364cf9bc4093bedb1204e83441a9aa7d821a95d3741e0f34864649e98dd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.223625Z","times_seen":1700,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"collect-v6.51.la/v6/collect?dt=4","fqdn":"collect-v6.51.la","domain":"51.la","tld":"la"},"ip":{"addr":"43.174.227.28","port":443,"asn":0,"as":"","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.51.la","organization":"广州有啦网络科技有限公司"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 18 Mar 2025 04:08:22 GMT","end":"Sun, 19 Apr 2026 04:08:21 GMT"},"fingerprint":{"sha1":"AE:CB:32:71:EE:EE:E6:72:A4:88:B2:9F:4F:C4:E5:B5:A8:C2:73:6C","sha256":"7C:F1:09:2F:6A:8C:5B:F8:63:DF:D3:32:B0:F3:F8:E7:01:29:0E:F2:55:8B:4F:6C:58:55:8E:44:E9:EC:15:F4"}}},"request":{"raw":"POST /v6/collect?dt=4 HTTP/1.1\r\nHost: collect-v6.51.la\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 553\r\nOrigin: https://app68.skin\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 210 No Reason Phrase\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://app68.skin\r\naccess-control-allow-credentials: true\r\nserver: TencentEdgeOne\r\ncontent-length: 0\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\neo-log-uuid: 1229739223706282351\r\neo-cache-status: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"210","status_text":"No Reason Phrase","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T23:47:04.105988Z","times_seen":13351467,"resource_available":true,"data":null}},"time_used":278,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":275,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/simple-line-icons.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/simple-line-icons.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:11 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd8f-2b23\"\r\nexpires: Tue, 17 Mar 2026 19:35:11 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11043,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2600)","md5":"99f122dff8b793f81029b898077dc96b","sha1":"a13ab4871c15dc0f30456aace279cec7d88a92d3","sha256":"b4e6971c6b77559fc0995a22b491c81fd5843b30185a442d070d158a7f1b01a3","sha512":"6473e32c66ddeda86bed7bb1ada42d2d1f9e4c85961ccb5d8293ab937aa3d05f8e8e7cd810ba75bc738f84e2c2123817c9023cc7644b347d14bd9a5b0ad3aff5","ssdeep":"96:kD8D9BlsHN9JW8+yXVONiuTsC0BWG5ueV/s8nclfW8jhZX4nJwg+r38uBnWnyoyi:yC9nALW8XntCsL6buDi0+P8","tlshash":"34326aacdd0da9a21781e4d16b413e00df1df3298ccb6c6be413b82ca7f2a5595d23d8","first_seen":"2025-10-24T03:25:35.564651Z","last_seen":"2026-03-17T08:02:18.200417Z","times_seen":4,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/jquery.themepunch.revolution.min.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/jquery.themepunch.revolution.min.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:33 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bda9-1aec8\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":110280,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65207)","md5":"ffe1c73b9a8b71bc5ef55def6611613c","sha1":"4886d3dd3b126a2120ae7d689bf686fc5443c6ff","sha256":"403d21fbf3debe97eac17b5fdc973dfac4c152bfe69d605dad006eabc18fb3fe","sha512":"56bda6dbeeb9871803c0632d53a6c97e9f5e306f3a4214d7b450d28fcd0b65e4b531839bba522607acc0ded83970a86b56d960c49547190f07ba740cded7d4a9","ssdeep":"1536:Bzx3MDoyX0JwGl1tdGcRD2XzAW9itFjX9Lnt5/KaF4mT7Kq7KlkGsEhGfaorIdQm:Bz9d1nXKcd4iDu","tlshash":"6eb32a597640247692e7b257925e910923b2bc3b8b03c90536b7c4700fb9c8a7f6bf9d","first_seen":"2023-03-08T13:23:12Z","last_seen":"2026-03-24T10:55:20.853744Z","times_seen":37,"resource_available":true,"data":null}},"time_used":989,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":989,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/site-img80.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/site-img80.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:31 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bda7-4fd\"\r\nexpires: Sun, 12 Apr 2026 22:26:51 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1277,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"624755fd3868cf90d36e45f7b155d594","sha1":"208f917219369d312af9d63ba1a2b7f66f16987f","sha256":"657751a912bc4c755daf2010a091b135155aa6f4b8706025e668f0a01fd3a24f","sha512":"5f9f76d97809134bcb7949833cc90d4bf544765af25352c0ac92cb9df92e8df1efaa6efcdfd31ee82b023507fe3da20cf62ff8bd9471b62c849fdbc862f2abdc","ssdeep":"","tlshash":"85216219f6106903a21aa9d128e2c11b97120c80d9c4e6e7adceca1f2d259b7d54c6db","first_seen":"2025-10-24T03:25:35.558118Z","last_seen":"2026-03-17T07:35:43.359782Z","times_seen":2,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/banner.ad9792ea.png","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/banner.ad9792ea.png HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Thu, 20 Jun 2024 04:24:04 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6673aee4-228eb\"\r\nexpires: Mon, 13 Apr 2026 09:16:46 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 253108\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pd%2FzRE6MIFu8iLKC8Z%2Bs1mVIyky%2F8nZBVRxzaW%2Boc2d8bgSJKT2taqkovuf1MQCAU1eTy%2FFDjFVygY6RnKbURjjEGOxEiy37SI0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51dabc1857e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":141547,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced","md5":"31b2b7726829be089d61a1b3238892f8","sha1":"419ba2f64dd5f7bd35c7f440fe993c6d16f764ee","sha256":"44a360e3f1753981cd79609f2a238f58648d2c132b958647f9bda8922d1c507d","sha512":"7dfd577d2ef15783b23e42442d4c8eeccab8a36ae37ff9aadddc404acb70bd1993369f8c028a845b9e699dcfa2b9c10512fd8c8db42285f0aa3740f487e02eb5","ssdeep":"3072:Bwm2VYh1sYAjd/J9EYPfMb8eM07+TyKwSl7mKLBpWcr2oYXE7nmWJAc:BFf1s5xCbBGwsHLBzr2oZ7mWJz","tlshash":"f9d3019939aba65edc1f147ab5b02edd0fc209a086761efd7433609adf4922cb410f1d","first_seen":"2024-04-19T06:46:35Z","last_seen":"2026-04-04T22:11:31.260625Z","times_seen":2101,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/app-example.50dc94f6.png","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/app-example.50dc94f6.png HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/png\r\nserver: cloudflare\r\nlast-modified: Fri, 06 Dec 2024 06:58:56 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: W/\"6752a0b0-eaa1\"\r\nexpires: Thu, 16 Apr 2026 07:35:14 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nbH6iPnc3XYzvIRT%2FkSF45Y7Mc2aqenrPCZjeRCyZmnAStGNOmYxqj7LGcequ509tHAX7kviP0VBE3vYtuTNkrfM1soMfR321s8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db3d0f57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60065,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 720 x 316, 8-bit/color RGBA, non-interlaced","md5":"365c7008fa7b2eb36b273b2d493bb887","sha1":"1d9283eb6ca3a2aec73c8cc10a5a411c81c22f86","sha256":"fe312cdad1ae0f17aced721beb74b8106cbe5dd8a958cbdd02c0e4e8224f38b9","sha512":"1570cc1c36afae0502cf903c19a494be001f0f0ab56c964a0e9c56506948c3db7644cbb2af5484a27fd00f1d70dc5c2bac647e975cc4f5a5c7615b8b5b4daab3","ssdeep":"1536:cHIdrhsQTMN4s3w3y0zgs6tXmI0NxUIu+73aoF5:Rdr/js3w3y/NC7u85","tlshash":"1f43026515105883dff6a099508a2fdeb9ce13bf028734bfea920bb42e73b0f1765446","first_seen":"2024-08-22T11:11:23Z","last_seen":"2026-04-04T22:11:31.256362Z","times_seen":1977,"resource_available":false,"data":null}},"time_used":877,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":434,"receive":443,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hm.baidu.com/hm.jss?f2041fb08b31ef1188c06a43252c999","fqdn":"hm.baidu.com","domain":"baidu.com","tld":"com"},"ip":{"addr":"111.45.11.83","port":443,"asn":9808,"as":"China Mobile Communications Group Co., Ltd.","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"baidu.com","organization":"Beijing Baidu Netcom Science Technology Co., Ltd"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 09 Jul 2025 07:01:02 GMT","end":"Mon, 10 Aug 2026 07:01:01 GMT"},"fingerprint":{"sha1":"21:BF:66:0D:67:BE:7A:7F:49:48:05:30:F4:7F:09:F2:30:36:CA:63","sha256":"0D:82:2C:9A:90:5A:EF:E9:8F:37:12:C0:E0:26:30:EE:95:33:2C:45:5F:E7:74:5D:F0:8D:BC:79:F4:B0:A1:49"}}},"request":{"raw":"GET /hm.jss?f2041fb08b31ef1188c06a43252c999 HTTP/1.1\r\nHost: hm.baidu.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 0\r\nDate: Tue, 17 Mar 2026 07:35:15 GMT\r\nServer: apache\r\nStrict-Transport-Security: max-age=172800\r\nContent-Type: text/plain; charset=utf-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T23:47:04.105988Z","times_seen":13351467,"resource_available":true,"data":null}},"time_used":1446,"timings":{"blocked":593,"dns":1,"connect":195,"send":0,"wait":259,"receive":0,"ssl":395},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/180523/1-1P523100506202.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/180523/1-1P523100506202.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 02:05:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04cc52-ae34\"\r\nexpires: Sun, 12 Apr 2026 22:26:51 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":44596,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x370, components 3","md5":"6247351ba861b468021b1ed9856d2ba9","sha1":"15ae942d384237ddefa3e28222f1e477ea4c0c45","sha256":"28880f1ee4d201ffc14ea4ae9abee19d2595c8547f7180b95b72dff7f108b051","sha512":"2cccf85dc496395465c547ec9b3619328dddbf85a92f6dc5995d6d54b7de484cff7a766ce45061a681b1582be465a72e236fdd05fdb2a635eb1bdfed5f54085e","ssdeep":"768:7uCjlObcnsgO1aIwdZTl2AT6u4R9YKyWgmY81TxcxAfYLH8ybMV3bwIGz+S7GBxT:Lj2cnZO19m5jtKyWgm34A1q4bwjl7GvT","tlshash":"4a13f17b672ae2eb99d4347309192dffa4e3e9dee9c85f4b11c370b6104605a9e80914","first_seen":"2025-10-24T03:25:35.505524Z","last_seen":"2026-03-17T07:35:43.364984Z","times_seen":2,"resource_available":false,"data":null}},"time_used":684,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":684,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/jquery-scrolltofixed.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/jquery-scrolltofixed.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:31 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bda7-5029\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20521,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"ced04c9d1b487831bff64e268df7fc4e","sha1":"8f7ca071d88458b9f3732a11c8570aaf85e7684e","sha256":"c8cf2de4d1b4cd8e44b05e77b71c5807e98de54e4062510da589a64e90da3e4c","sha512":"48f92fcf43d6cff23feb59158e929d99ad3d4d88bf0385cd3d9272867284860da095902fad7c2fad2580f579afee303068e7cd93c3bd9171c8c8b963a718c814","ssdeep":"384:JlUxtvpjiJhqs/lwaqFMuqNBNvd7YU9lZbnvXzQY2o3FnR1v4/1d8a+1NuCCCdxe:Tei/p4Y2o3uj8oH","tlshash":"a292231d6661337118ab75bf879f638e133080a34b13d98478cd97c87f9293466e3ae9","first_seen":"2023-04-01T11:00:03Z","last_seen":"2026-03-17T07:35:43.366471Z","times_seen":7,"resource_available":true,"data":null}},"time_used":990,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":990,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/custom1.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/custom1.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:30 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bda6-dad\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3501,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"d036d09b064df3f4161ec2b54e110a1c","sha1":"e11870b1c323b96bb7dc37940979347cb240a80c","sha256":"15c5cdfe677d05325f3370d2691224480665cad267882e89a848938016bf1b43","sha512":"5b21c70da18f58dce7f4e716893cc0d9f7d3f086c63e76a16b4ab0a8437740e3faeb253f828ba91fbdf02267f734bf34998af7cc143ee4efb629c70200b32da7","ssdeep":"","tlshash":"c971107161ad896c44b71d2b926ecec46633f131bc4322c5f39b136f18da09a17daf49","first_seen":"2025-10-24T03:25:35.480924Z","last_seen":"2026-03-17T07:35:43.367271Z","times_seen":2,"resource_available":false,"data":null}},"time_used":987,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":987,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/customeui.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/customeui.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:41 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bdb1-879\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2169,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"f5086a84e2f076c6ddb9e1aa5f720ada","sha1":"76359400f5fea99fb040499f4d771fb81d76ced3","sha256":"6b0e78a7e0450d3fe9747094a3df0f938367efbf8229a8e48acb0392b0be5e6a","sha512":"767bb122301feaa8783c6b710e1bacfed9708eb10ee70067c8cb2bcd9b3c088d4244f5fc2c04e4bdc3f5849335b8677da664dcae42441f1f8b34ed819036954c","ssdeep":"","tlshash":"0841d194d892324309faa4e7b6ff10ca89db1953630bc841b01e9df45f840750a387ab","first_seen":"2023-03-07T01:20:35Z","last_seen":"2026-04-04T17:13:41.615487Z","times_seen":316,"resource_available":true,"data":null}},"time_used":987,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":987,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/Plugins/tj.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:12.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /Plugins/tj.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 10 Jul 2024 04:37:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"668e0ffe-456\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1110,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (554)","md5":"e8d48ed4f849d3a537e0225d3230208f","sha1":"4f8646de1709593d2b4ab56c6caf7c0fd1177fbc","sha256":"98ebdd779e3e1bbdff110cdb3f1b64499478553b072ae12233727b0e7ab2cbb9","sha512":"a18fc25e80f3e39a682cea479fe81c20f6f8b0ebae9ce2e84d9af08d5186bc1cf9e89e14c52580ba0d962291ae291cbd8ba74d42894f157f6024b44af8c5bf58","ssdeep":"","tlshash":"4211c09e7c05e25467973c7a23b7ddace9ae0032100dd80665ebc0ed6d29ff90126b4c","first_seen":"2024-12-07T07:30:44.931892Z","last_seen":"2026-04-04T22:11:31.222324Z","times_seen":1815,"resource_available":true,"data":null}},"time_used":815,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":815,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.316Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sat, 04 Jan 2025 06:56:46 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KumjLdwCaS7Sx4gx8RQ%2FexDiPK1%2Bswc7D%2Fi7rJXnlGWT3Be7DzW%2BeDPp7AIAbBtJbOhM0rvZB%2BtzbWxvTP8DnJTJxSNI9ZLrsRc%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9dda51d4ede2d42a-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1878,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1574)","md5":"f469c7c3cd4f5929fab6ba58735ac883","sha1":"f89ef948257a783046250b8535b8e2c5e8162423","sha256":"a8d494f50353fdf2652b85215f83274c73f582ec0357ef4bf87d7e4d99d7de68","sha512":"b354c494ad025d3c8579b89c3221a5e6f7c7ad3408a42ee3b932840a486d6125d1cc40d0c07f4dc182275a730f5624333b51e2e702976a4daf67ad3461ceec92","ssdeep":"","tlshash":"af4110729c10958d6931af75bfb8b28dc4dddb29d5749c40a0e282ad8eb8fc84a53d13","first_seen":"2024-07-11T22:37:17Z","last_seen":"2026-04-04T22:11:31.205351Z","times_seen":1701,"resource_available":false,"data":null}},"time_used":635,"timings":{"blocked":103,"dns":79,"connect":8,"send":0,"wait":423,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/timer.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.324Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/timer.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/skin/css/settings.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: image/png\r\ncontent-length: 125\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:28 GMT\r\netag: \"5b04bda4-7d\"\r\nexpires: Sat, 11 Apr 2026 09:20:16 GMT\r\ncache-control: max-age=2592000\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":125,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 10, 8-bit/color RGBA, non-interlaced","md5":"ba593bd9fc9e07110f3dc74f728b3768","sha1":"9620e53c9e0a5b5d55e15b23f556e2089e903fc1","sha256":"a15348b049a18c85702dde38f379aa78d3809af8c07adcf25236c69b03f6f746","sha512":"daa17291deacd922e08aa3ba67d1d4bbb1d0859ce0f0fb3dc9f5f330805ad4d66dee5104db61ddb63f94906a76ef8240252675791b97764c94bb6c956bfd8d97","ssdeep":"","tlshash":"89b02bc37b54dc30c1220022901c4020d422c590161102581881e11c0df170041ec20b","first_seen":"2023-05-01T16:07:42Z","last_seen":"2026-04-04T14:48:15.812895Z","times_seen":1428,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/twitter.f6e27d44.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/twitter.f6e27d44.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WJiKGUXBGKIayVKNeEx6CU85EnkXac7SPAmFIznt6%2B3qcfFGPBnKRtvb7cUjXhndj7ooEauFenXjxq1LUc34kV%2B2riKO%2FmC6tU0%3D\"}]}\r\netag: W/\"65fd177d-25a\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51d9fa5457e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":602,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f6e27d442f561af8836f3287fb52a1dd","sha1":"ca0199c3511b03e31788de4f95356c2fc4c75635","sha256":"c41461eb9d060dce45b8a6770858e8f3f015dec9406978a896f98b60977da549","sha512":"0fa733c1b18324271946cede4bcd7c74661ea22c07f9c9395df93dee2248974ad519aa2bc04f9b402eb23ee7f8b315477aa7da5da754ed4f0c43b857ddc361fd","ssdeep":"","tlshash":"38f0e1594e9e2ed4871fdfdad63721b6701b78f11bb6c2ce81a1b25264a4cfc581cd20","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.193878Z","times_seen":1710,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P403114245337.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P403114245337.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:43:19 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e357-58b9\"\r\nexpires: Sun, 12 Apr 2026 22:26:55 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22713,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x640, components 3","md5":"3ee158803d504f923611454bbf580d2d","sha1":"910be7618f689ef732c639bc6e0bc8dbced89cd1","sha256":"729c62d80f3e91ad1b92b467d6815b22eabe55571bcfb7934ca60a74e40443a9","sha512":"15df038ca0ec24e92f70d46b24d318a650846979a5763c66ba3db71ccbe4b2b9ab0062d3fe7ac8a7099df996a70a4b42a6525beda91b237e15da723916f266a2","ssdeep":"384:dxggYqyIbHdeltLM3w9YUiFN1w63zmdExHyAnyYvCV++tYuYCzgGuih:dxMIslC3SYUiFNN3KdgytYG++dYCzgzi","tlshash":"b4a296579d4c8b43a52583e8bd471d6c7f4b2b1dec9676fe01620edb6e206620c9e02f","first_seen":"2025-10-24T03:25:35.549125Z","last_seen":"2026-03-17T07:35:43.374216Z","times_seen":2,"resource_available":false,"data":null}},"time_used":830,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":830,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/globe.999173a1.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/globe.999173a1.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A72XVbzb7Fdo%2FLYXXTbiM%2F7CgtKfXrpBIpkUnqxf0KQH2mGMEF1UOyYpPSux2gqQsmXqRnZ%2BUzA23ibdc%2BiDWrTt55xbARH8hIQ%3D\"}]}\r\netag: W/\"65fd177a-2ba\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51da1a8557e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":698,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"999173a1509726ab6a4235814220de28","sha1":"714d125e87a634d831d0ef2b5e79f0221c12db8b","sha256":"f70b988ac4377e2dbbb5b2999d12146bc33b555dcc7765f8e619dea59db72038","sha512":"7dac0c1014a72363ba55a29752a9ab054592d3cb77480b335ecf10fbd7720dc23cffacf6b357ecea19b9091c74c657cc7bcd5147e3193c3e405597fc99184539","ssdeep":"","tlshash":"7901766da36ece3d78a31774c30232b661e7126349483395d432e135a59189d7bbbecc","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.236833Z","times_seen":1711,"resource_available":false,"data":null}},"time_used":459,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":459,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/imkey.18b86155.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.383Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/imkey.18b86155.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:34 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177a-3460\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FJuT9KK3TE9T5%2FtBQWm3O5XFUEi4zXmhL%2B8Nbh171n9Y3qC4pKzrGiSESn8rimqszFcNfNmaFKbs1xkGrSgeMhB90lOlWFIMiNU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51dacc3457e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13408,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"18b861559ab8aa3148ce43dc01d11573","sha1":"d395292dc3e18fdb6461a66ab7be0cc9ab1bedb9","sha256":"373387ef06b85e40af255434c28f44d75382bf7e6e2a4a0feaa1e31b17eefe03","sha512":"dd6bf0aa9fd248efebaa4ae19cfa7d24cd5b4327dd08e265ce8bb82997d111e508b663f7b314ea2b530b7a1ddf42b076f04fcad231605050c775edd7a6a17dbc","ssdeep":"192:MCm3sy/n3XzoTytnS5Qbjz9/Jnp+ujAAb8er1AjuotjcoFJBn:Wc0ZtS5QbruA4e5AjuotjcoB","tlshash":"1d5277dc1f186ae895c093eeab2590fdac2bd0de9688d514c2043b1e748747dbc775ca","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.259556Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-eea.71971a25.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-eea.71971a25.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-237c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 822\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a9472c8%2BvzkJqSsQJ0pI5JExWuk5JnGBQPl86rYNd32142gNmn1qIOl9fKtPpUkUrG5Gb7y8PSZiaPriksSIgJQln%2FXxEyMBFV4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db0ca957e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9084,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"71971a257a4d633037a160c6c0892387","sha1":"60c1dd19606f7f88de2a8fcad00f3a8b9609dfcc","sha256":"6ef05c6c3bfa1b97d4389b56bc9cf707da69e93dd3573bab527b4f4205dafd09","sha512":"1a541283512a1d1c6a4038ea3cf427cfd6f4baded34722914076d80ab6348c1fe7510013d5244693eda87f7cdb9925a96e8a881b388e5879df65ce7ae58ce253","ssdeep":"192:OxNHjqOb40KhtFepr7T6Uuu+YoPl2Xwa3zbI2+8EzJLoH1ME:YNHF4Nhtcp3GPlubHKLoVME","tlshash":"a112f8d817f584e4fe85e3fae6297499750694fbd680c744c3e87e19384222c5d4eec2","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.255317Z","times_seen":1701,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/owl.carousel.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.941Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/owl.carousel.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd94-b55\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2901,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9f6fce990617456d0adc05f072dbc673","sha1":"072085c9b541d8886c9a335fa2db3d0db191c3c5","sha256":"74008718539ff710315b56a41d3f24cbf44eeda607f00f29dc40800e0fb7811b","sha512":"e0bff2c4f49bb0006a83c0a6eb973f879303f888c5dec7ad017477927fa9a985e5e8bad0079c5d5c5f9c928f1797109877d5ed33287543abd2db4583cc40a4ab","ssdeep":"","tlshash":"7051cea016242a8ce516d29d9e9d931c3f5f8112af0d1d9ba15f2d1dc3cea48647f38e","first_seen":"2025-10-24T03:25:35.545665Z","last_seen":"2026-03-17T07:35:43.381289Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1011,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1011,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P4031139224V.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P4031139224V.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:42:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e32b-2ddb\"\r\nexpires: Sun, 12 Apr 2026 22:26:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11739,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3","md5":"2d6515c4feb9de03114aee863007b264","sha1":"8f404e8b82283e8479ec521be32862754d00daf6","sha256":"0b71ad6a700ea5ef499bc7e0676d2abad604c4ed26407c9345a5a15ad561033d","sha512":"eb3528f3b59781b0c24ef746375dce2237b7a96861537c5a8b623af6126f99a771c4aacd7ce47e4c39e44042d09b7089886613113f4bd8166f5f9b161479f486","ssdeep":"192:Ng8BN8pCIKuBzoY1B5wGfqvtiAh8yYy9cTq7HuNuC6Lcn:68OhBzosB5wGfqH8yf90qj5C6L+","tlshash":"3b327cab1209a9f5fea3743200b74e1015e413ee83dba85a1be654bd5ca16c99f1181c","first_seen":"2025-10-24T03:25:35.52069Z","last_seen":"2026-03-17T07:35:43.344614Z","times_seen":2,"resource_available":false,"data":null}},"time_used":823,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":823,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/Plugins/apps/CaiJiXia/cjx.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /Plugins/apps/CaiJiXia/cjx.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Fri, 15 Sep 2023 06:11:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6503f5a2-9b8\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2488,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2484), with CRLF line terminators","md5":"7c796c9667d148e3d1d960eae58ca7e3","sha1":"4921f0df8d5ea9f4b6dbd1c6cad4bbc821374e89","sha256":"c5295e9bc5d73b08ca570e9b9aed94742d70ea16833fe3a9f11ae266225ed7a8","sha512":"58452cfeee70da91c0a40dabce71fbe2c5f2e1002d4b21ec08a5c9a9fd11e99cf3f7c301c6600c48228fcbc39d46738ac24a0baf4cda510e0cf1a17f36194d61","ssdeep":"","tlshash":"2b5162adef5238b306e27ae11cbdc72d105404e6787b8271ec989e8439f0ae44d6b353","first_seen":"2023-03-07T15:49:45Z","last_seen":"2026-04-04T22:11:31.174854Z","times_seen":1627,"resource_available":true,"data":null}},"time_used":992,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":992,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/transparent_bg.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.325Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/transparent_bg.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: image/png\r\ncontent-length: 923\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:24 GMT\r\netag: \"5b04bda0-39b\"\r\nexpires: Sat, 11 Apr 2026 09:20:16 GMT\r\ncache-control: max-age=2592000\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":923,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced","md5":"a6bbff7bfd035e780c5b37d6665c7405","sha1":"8e36546b925949748a85c2ba3d6f340df2dac9ca","sha256":"e1763c3e94a21e16c8cdb272ce39e8a57a24b1633d4f8c20c9f3088e60d53dde","sha512":"ec98da3b47545114a17505062d4f24882b5243d20935b93ff7d66c9faa7e4a9cf1e62a8cd09e20fd1dc5ba461a76e0410fee86c200962ae7dd0d3b69c1d709bf","ssdeep":"","tlshash":"5c110049fda05841dd4c98c118fa45339a634680e6d0e96ab9afc81e0e682b78d684db","first_seen":"2025-10-24T03:25:35.566099Z","last_seen":"2026-03-17T07:35:43.38745Z","times_seen":2,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/wallet.97a18288.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/wallet.97a18288.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:38 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177e-2095\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=l%2BFCfcA1US2%2Fx5y8qEGsPVDAv0%2F6Kp3FaiXjr3gD5ul5Ku7wmlFRn6xNyPmjxdwQDyUTNa7XArEJWVNLrrGBsMkQb73rI5nxkUQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51dacc2b57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8341,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"97a1828805fecfdeeeb01f9439361c68","sha1":"e0443b70bde9a926b982696dd2c309e174d39e0c","sha256":"7b774ea72107b78f0ae489bac190eb18c6affba7f0e3b0e7a356e3949b3af5de","sha512":"229fd1e7e8f6f532bf5932ea113727feb59844c24b36f9d4db58e99efb20f3d01176e414dc12b4ff35df48ad096abaaca752f757cb9ed067f1a7c0c83a9367f8","ssdeep":"192:DDSlNrVdI4RbsCpIqYW0w3Vx8WdiAcWV5dC9:eVVq4cqYInxpV8","tlshash":"5a023ecc07195ce4ded0c3f9ef28a5f0b223a5f9a964605c8620772b38654ad2c7b9c7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.23784Z","times_seen":1701,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/defi.756b4476.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/defi.756b4476.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sn8%2Fvq%2BbY2Ul5kavzLWyYxiNg8d5m1PO0bZxnHcxaYEQZGTICnurmATx9WabPmziuE4n1TRYJ0WOldWblK8GqjwSIRH3bD%2Bat4s%3D\"}]}\r\netag: W/\"65fd1779-e6\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51dacc3b57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":230,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"756b447638a2d0e0015f74e793f4e52b","sha1":"56217b9dff3fc5358fd781af5548fef6c7a8c3c7","sha256":"578ac20769134d28e954937ff908a499218650f34fa7699eb60991bd2c1c8619","sha512":"939294f043dd1243eb022fdfc9d0789855672a65f09c01573792d0cdc2c87cfbdc2a7c170524f45e9f300d78d23203ad0f856c84c929a8fd28c8e7ae7ccba484","ssdeep":"","tlshash":"7fd0a7bc696c4d058550c068a12b79b7a1de11c5c3860291f0c02a0776559b730013a8","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.259074Z","times_seen":1703,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-consensys.f63cb550.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-consensys.f63cb550.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177b-c1fc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 822\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SjSfQQU%2B62t5DSzvzaIo2AlG%2B3bWvCKV%2Ba6B9U5GyB1i29%2F6%2FcauPabbSWQCbDZrrs%2FrbBuSYhGhVZ04vsGAlBhdvJbYkQtpwVQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db0cab57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49660,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f63cb5503ccf231dbff761feb62a941f","sha1":"9c23eb2cf3f0ed9f5bf0e983baf836e7f04a47f0","sha256":"59f240141226f9ed13da11246f7fe344b58ae0c2c08e62664297ab2ac2d302f0","sha512":"7d4bb3819e92a12e7b93adb07dc083d17148485f1ba435c9d8725ac253ec31aa28b0899d90cbb44679bd89546f019feb4e0c455a8f92af399ac00b829f96c838","ssdeep":"768:mv7JFv8hva55i0K+Py3VlU45OhSwSDAWb9CX7cgKUbKpjGJVVE5:mN8iziuP01wMAWbIX73yME5","tlshash":"712361d437768ae8b985b2fdc73d69e239226ccd75008989d3b03c1aa88163c5d9cdd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.243116Z","times_seen":1786,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/font-awesome.min.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.915Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/font-awesome.min.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd8f-5c74\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23668,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (23503)","md5":"de3e39e7fb5f412f6863974f647c5666","sha1":"2f102afbf7967b7ff8c645d390c4dc93e2d9d6e0","sha256":"35d3b6a511188e53aa07b372c7fa9db79d271bbe9de763bdfd406503ae8fd9ee","sha512":"17e56f980095b910fcadb0b9428cff6141f8a408e7aa7ab9f0a26a1a7573bc7c0eed64fc4c4cafa75d3298d21eeb590eabca8cd87fdd1e9b6485afc134c4b408","ssdeep":"192:nq/iZX8W+ab2edrKeTUKuErArKlcZJVrJ3ee+cR6waYm215bvfhf5DrkHUasT:Xs5yWeTUKb+KlkJ5de2UYmyTfhYUasT","tlshash":"9eb240f8e54d01d66731c48bff85b36862baf73dd5800d99f00f290c29d22a512c9bba","first_seen":"2023-05-23T01:07:30Z","last_seen":"2026-03-29T23:12:19.953025Z","times_seen":148,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":316,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/scrolltofixed_custom.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/scrolltofixed_custom.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 816\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:34 GMT\r\netag: \"5b04bdaa-330\"\r\nexpires: Tue, 17 Mar 2026 17:52:21 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":816,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"e4428d9ded1cb01507c60d27443867b8","sha1":"70a7b9b4e8b8a940d27a06c84e8aae2369eae547","sha256":"3ec71d87707706212c764d0b2ac03ed5ae678f0b2518258493db29a078a6343b","sha512":"7c0680ed5422a40e1baffd9c8a7db59c943534a79ed5581420675545b60a5b7f79dd382bb81bad1236cbeca67e38eff84f3a89bda66d0495ef6519d1c6df92cc","ssdeep":"","tlshash":"a6017b30a6792330acdb2c0cd3afb2c2a75a14d753a5d50230ae9bbc1f4253f40941d8","first_seen":"2025-10-24T03:25:35.495336Z","last_seen":"2026-03-17T07:35:43.392881Z","times_seen":2,"resource_available":false,"data":null}},"time_used":818,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":818,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/chunk-vendors.72f83685.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:13.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /js/chunk-vendors.72f83685.js HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:39 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177f-eab5f\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32603\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xBuTM%2BUMlFVd%2FHRoUwbSzAhYVzmXg9KDixCrzd0EsXyf4ZthS2OamO76uHE0isWnIx1mAA2anx7daU8u%2BLYEtG53SOB7w%2BF346Q%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d7fda457e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":961375,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (37062)","md5":"f98c3f2e30ab7e16271e08cdddd6da27","sha1":"bb1d30f4ef4875a81cbd9c93f05de583aac06e0f","sha256":"cd8bb92a826b0ee3c18b95ee744a5768e34753c866a1a6c15e51d8e874481c58","sha512":"abd215263061d554b699b287c11735a9efae0f0dadb5c9c735167d5a3845d88454c92a1f69d6ca1d372e163817114eb06dd659987afc0719f1d2471460799fa2","ssdeep":"12288:0r2fW0/CNOHtCxSdztgX9eTjDkJI7kcPNQmG2hFm/3e:0r2uV20caXAPYUkcPqmG2hFm/O","tlshash":"2e15195cb244a1bc5ab767b8853b1012b36e95ee70948324f36ecce076710dce2a7d9d","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-04-04T22:11:31.219076Z","times_seen":1805,"resource_available":true,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-kyber.b4835e5c.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-kyber.b4835e5c.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-4eb7\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7EElINupR28oKIoS%2BILUtHF765ERSljTXe6yhb9JmQI5yEr0qmO3W74a9o3tmlDV3xi8zFyFNK%2B8%2FYvR1JJLENjC0%2BvpQ3sq0a8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db0cbf57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20151,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b4835e5c97b6a09992afdcd239855528","sha1":"2e395c382b28709831349f4b4edb15bf4aa27093","sha256":"188be37a0357a83116eb0d45a49351cdc0634e9bb22d9c68b13c1dfe8ea213e4","sha512":"3ede3e52bd783a2efd4c24111ff9fb5a30d8259681341ec961fae7133dc3091b550928d86efd052e7c748fbea6b89641ad4421a0c0941f484b947f48e0f39fb2","ssdeep":"384:LSwOe+bMOO/Wb8pyUUPT+KsazMGva9vu5PbXpOpE3:LSwOeuMOb8p5y+rVkKeP1Ou3","tlshash":"4a92c3dd2b754ef8f88af2fed72210da341668ee65808f25c3b86e09358246c5d49cd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.203548Z","times_seen":1784,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/liteblue.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/liteblue.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:13:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04c050-3b45\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15173,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (387), with CRLF line terminators","md5":"b780acb84f5796992bdf4a1b912b2b99","sha1":"2fa02f793174aa051343324703f9fc0433976925","sha256":"63e74d7caeffeced5f8a6ebb08840bf4bf15c9148c4d1add70bfda6d2d9017be","sha512":"c6d9244db4dcff347a3503f4af43a62148690ef3d40c94b7d573e350ca61b877aebd0ce6ed00b57e176714017e83c552d5061e33c07bfd5218dbbb794ac5eee6","ssdeep":"384:hA4TozmonBykNNrzNxsylR13r1yof1p9MOX4hmFCBj+OqsaAz+92+bhBsZWnQsFU:Y+hIFU","tlshash":"24629d58e48de27d228bad7a3363cc607b5c15f09d185f7c3b3660180fb79d4a92a9c6","first_seen":"2025-10-24T03:25:35.483111Z","last_seen":"2026-03-17T07:35:43.396394Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1009,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1009,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P403114205448.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P403114205448.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:38:24 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e230-6474\"\r\nexpires: Sun, 12 Apr 2026 12:34:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25716,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x640, components 3","md5":"7a60326aa70d816f65800dd6807585fe","sha1":"db9eb3de6e7479cbb4ada74aa285b03f7d12adb9","sha256":"69f049a992387a5610bee33a108615f925c2b037bff77000f875fac3a59cebd7","sha512":"5d5c1f7fdbe2f18289de6352eedb6b2376e49e9efafb8981629ee7a22f0a13874ed38413db71802fe366b91d0f6fa3ce84f75f190a2deef3e14f3c1ecfe42860","ssdeep":"384:dXyP5S2J+jui/V2/d0xsh76YkmF1G/2rW63pG2KJSC/M0EigqeFukNCevYLRBa:dy42xi/E/yM76YXMIWiNcFE3qvkNCir","tlshash":"36b2d3578c048b43a63582e8be031f5d2a4a3f0de99735bf456a1dcb7e34a254c8e53e","first_seen":"2025-10-24T03:25:35.512538Z","last_seen":"2026-03-17T07:35:43.398494Z","times_seen":2,"resource_available":false,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":832,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/jquery.mmenu.all.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/jquery.mmenu.all.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:13 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd95-ac45\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":44101,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (484)","md5":"53885888701273513a7d8ca0b16fe7dc","sha1":"686c259f78fc2dac0a3df59c8a00fe74d7800c46","sha256":"95fb161a1d0cde405c7bc6e5c24dbb14188d9d9715cd98bb37ba393bc5727f9b","sha512":"d988f5160ef34b23c552f64bd2de3e684f9c19dd0f5b709b775bd666d78db48a52828845f85ede3ae2f49fbfe51af6b69564526282523d2afa2b4a99910d9b98","ssdeep":"768:TMugh1OxjUwEG9VswTfS6Gc/HWxU/UEBd1VWCos1n/TifUeY7YRpyxleB4YjMfsS:TMugh1OxjUwEG9VswTfS6Gc/HyEBd1Vj","tlshash":"3713ac266da211cd201aa77fd6c90fbc5b3dd1016b520dfbe70a504bcf8ae5b74e4a42","first_seen":"2023-05-23T13:25:41Z","last_seen":"2026-04-04T06:47:20.373135Z","times_seen":150,"resource_available":false,"data":null}},"time_used":985,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":985,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/css/website.0b83b754.css","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /css/website.0b83b754.css HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:41 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1781-2128c\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32603\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wYJQBTvJfDpP5AQ%2FMyyrULt%2BPustouHgZ7UN2OKawPPPB4WNROF27ySz4QwAkU3exfEtTvrFsUxpQPNZGIHq9x0Vf8vfs9LQDKc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d9a9bb57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"03936f49600d8cf124513b3a6fc4f667","sha1":"f670eeb3d8aaca15cade67fbb8e258c2ac3d1e28","sha256":"0a70832e5397898dee0bf00d6a7266704d707a3fd7098d83452e3efdc3abc651","sha512":"6490d274d162cf5beaa932eb997849a8bb576922854c99ab36bfb54fe0b124743547d3b24c23ac008c1c6265a746261f85e3da9a72000df83e9d87fe5a1a3fac","ssdeep":"768:GzOFI2zL40xJfTd5LzG5J0VHHCw4zX74iMgmDyafXf+F7LKmjMWVDSV+Pc32Uj1x:PFI2zYMy2HFXXqYld8bCirjaZ","tlshash":"d7d38621796c7838607fc17ab881388e76207763d36751f5a9a1261ecefb283772634d","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-04-04T22:11:31.234616Z","times_seen":1709,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-0x.75c21f2b.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-0x.75c21f2b.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177b-17bd\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FyclAkkhdf%2BNSy5G4i48B874qPfkbBHDREswLQz%2BDM4H4gPPJc0YIb1k8a2CRDqXnCr%2FqEViNqKqE%2B9aIv6PgaG8ywyxM6muQ9U%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db0cb757e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6077,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"75c21f2b7b83b30a26e07efa9995c741","sha1":"59d18dbb3548d4f3f4badcbc14ac33d67d83aa23","sha256":"5046c5408029db86fa360fbec102839d16e920ddaa52f578b3cc250316506119","sha512":"80574688c969adce0ca257d18499b9279f2aad57aa23f801c4267426e07bc49ba7fec1ac14816e283c474680402fd1b1fe85af1ec270982ba7d0f151df49126b","ssdeep":"96:EyivL0LNnuG/X9SWPO1tzSnWmqhG3q1H+E5eUkankRhl3zz9D60:EyizG/tv0+nWmqa2+yfkjRhln9D60","tlshash":"5bc196dc2b748df8b841a7fadb2a08e63147e4fb60824730c394ad09795546dcd99ee3","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.20294Z","times_seen":1702,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/logo.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.945Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/logo.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:31:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e0aa-131c\"\r\nexpires: Sun, 12 Apr 2026 12:34:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4892,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 172 x 46, 8-bit/color RGBA, non-interlaced","md5":"a244e497964ad66d67a8ac7131198be4","sha1":"ce18793ee385acfd43c2c2584472cec5c31be799","sha256":"6f930ee2d9da37db09d91cb712bd98d925807b877bfe1c3dcde858c6259e1b87","sha512":"a0a1f4fc8aed7e1df209ccdd682f09ff8c017398ee649564a7ff2c5e1f74d2d14fb297cc0760950e87e18e858a299e5ccf92c354fee6197ab4d771605e6b3c1e","ssdeep":"96:XHllcHitlIxv9vk7C1+I4wWHLihk/xMcVIyMVEIkn8OJCB+DBsethwG:XsIIHUCD4waacVIyNzUB+eIT","tlshash":"d9a17e8165044905644f4cfa266fc50b8d09f69cc78a7d1c5be6a25d8a12ca03d73f5d","first_seen":"2025-10-24T03:25:35.519349Z","last_seen":"2026-03-17T07:35:43.403739Z","times_seen":2,"resource_available":false,"data":null}},"time_used":495,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":495,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/totop.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/totop.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 327\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:14 GMT\r\netag: \"5b04bd96-147\"\r\nexpires: Tue, 17 Mar 2026 17:52:19 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":327,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"0db3a9eb714146a9568b00d3b6acc6d3","sha1":"e5cb744058719e13dc8d9020b31802e4fad69757","sha256":"cf17c752731b64725e46920bafa134bf82b83f93e82b214c78f89ecdcfc99e90","sha512":"63981f966e76d66d1f9292039041bf204e57e8e5484c400228b477c20c28a6a50d998a63d302c1cece7a8ba3d13bab5d9813419d5f6b5bfeaf1c8a3d9b98f024","ssdeep":"","tlshash":"74e0201cf26cb20402bdb1e8cc3b038a252974233f8b08e5d0a44978759573d5511d50","first_seen":"2023-03-26T04:38:36Z","last_seen":"2026-03-17T07:35:43.406212Z","times_seen":7,"resource_available":true,"data":null}},"time_used":819,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":819,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/Plugins/ajax.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:12.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /Plugins/ajax.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 96\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sat, 10 Aug 2024 09:01:20 GMT\r\netag: \"66b72c60-60\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with no line terminators","md5":"ae1625f00bcb78bf9e9c27ebedfe26d7","sha1":"9f0ee94e3bd3b2fb569441621e2dac7dd21d66fd","sha256":"09decd657ef4c873beb6ecc86f403132e47c126f870cbea1903d1ea7128964d4","sha512":"afc08f97d0908069e23ed2e17147bc922a452cdc90a00792d9e80f5294fa4269241ac071712c8ed241e1cc5cfaa0df8fc4f05ce050eb8b529123131e1cdd7fc7","ssdeep":"","tlshash":"48b012161c42fd9040280c9ac135c86460fc9114d110d94613fd041c1794fdc0c06c45","first_seen":"2025-01-23T11:49:05.260358Z","last_seen":"2026-04-04T22:11:31.244263Z","times_seen":1733,"resource_available":true,"data":null}},"time_used":867,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":820,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/img49.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.326Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/img49.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/skin/css/liteblue.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:25 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bda1-407\"\r\nexpires: Thu, 16 Apr 2026 07:35:13 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: MISS from L2:5612, MISS from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1031,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 9 x 99, 8-bit/color RGBA, non-interlaced","md5":"651b91329df053d84ca2bcd1280682e3","sha1":"a50d095c10f7dd1c30de720ae45dd6d66b31ac45","sha256":"2bbb5c846067fadc9851a4b27cd8222c3183d8bcddab8794be3242e4643a1d5b","sha512":"ec28b7d5ff430dbe4809acc62689c10dd3b7a5e7b131a77e8cf1394f2fd630b0fdba5274511b429e9709f944090d7f52680350f186d03ad1bf719785dae8631c","ssdeep":"","tlshash":"d011320ea9531901a94cd0c014ea001e4e269590c7e0faa9bcdec41a7960bf736891cf","first_seen":"2025-10-24T03:25:35.515776Z","last_seen":"2026-03-17T07:35:43.410047Z","times_seen":2,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":264,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/imTokenLogo.8964e98a.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/imTokenLogo.8964e98a.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Thu, 20 Jun 2024 04:26:23 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"6673af6f-24de\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8c0yzuoPOjArNZREOxpUTQpmnpNhAuKgUHX2Tv2qBRRdzSsdSBjm0QHMhmgUd%2Bty6xWx9UrD6n7OQXnYABdm73RqgB6LO76uCKw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d9c9e157e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9438,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ff362ef3dd8481a8b6507fb545025cf8","sha1":"a728dfb3d393258924ce63dfbc3f638b59d3330a","sha256":"690e08204f91ce6958a804b11ee08546156e4b5dca35f0b1ce00dee6266156b2","sha512":"a25bd09b8e65b5188bc5efcaf54aa7a215217cd53f8e92337c06edc96cf82b3e116e7771ea3ed36ac51f42d869f018178f0429e15044e8a43cfe72126643124e","ssdeep":"192:LJYVRfONtbZ36T9/zp+beh4ciRBi6m/Z1BnMg+K4jnFJibZLI2R9TZx9R:sRfONtbZ36PPiRBivPBMgxKnFJlE","tlshash":"681286f13aa463f59503ebf8de2754746a2b38fabfc54ae7c190ac499422055cdc9cc2","first_seen":"2024-08-08T18:51:51Z","last_seen":"2026-04-04T22:11:31.251294Z","times_seen":2048,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/tokenfans1.eb9824bc.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/tokenfans1.eb9824bc.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177d-683\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uchXq6XEweClL06fM3kXPyniuJtoRwPet29EHCbxYtdT0ovX3Fe2NXmgg70qAHNkQ%2BuzrX%2BpsdbxXHPTMHtpE8GFJoKhIi8M9sc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51da0a5857e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1667,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eb9824bc9edacb0b9e4172b8323ea86e","sha1":"925f089a7bda4735a826de7cc71101cf30e70a6d","sha256":"fd968ac02328d0513537ca7ae60f986595d0f48d248bbe4efd5c52c9048c3034","sha512":"a8c03ff4fad9d81f8a84da5ddeca2fb95d9cb230b0ac720c36af171d4dc17b82013f604342f5426a49f4e39d0750b1178a64549b7e0f388f4d656ed527f9fc8b","ssdeep":"","tlshash":"d73144e6e3c562d05647dff5d63419e1a9df18f73ba5cb980266175c9a8020c494cca4","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.181517Z","times_seen":1703,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/so.js?20240707","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /so.js?20240707 HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:11 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 547\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 07 Jan 2025 08:21:15 GMT\r\netag: \"677ce3fb-223\"\r\nexpires: Tue, 17 Mar 2026 17:51:55 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":547,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text","md5":"0d109972f744d46952f66de49cc82bf3","sha1":"a130e3faa2cf35feff778075302eb7867b4882db","sha256":"ca3d5be2e9aad6bf68b32538d337e5cb3b845b7976e2ede3a4337bd749892177","sha512":"a57995ffa158976181650d02f7a725c8e91be6214254d13710606a42e68764f8c85cb06bd23b62148ece31c7fbb8e9b847a1056099c9ec68898f66bdf1627107","ssdeep":"","tlshash":"b7f0125e6e56ea20552409dce571eaa8a0fda135f555cd6c85ee042515c8fcd090ec44","first_seen":"2024-12-23T19:49:18.361695Z","last_seen":"2026-04-04T22:11:31.256954Z","times_seen":1496,"resource_available":true,"data":null}},"time_used":222,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":222,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/reset.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/reset.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:11 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd8f-22cd\"\r\nexpires: Tue, 17 Mar 2026 19:35:11 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8909,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"9d88b6033bcad0e3519cdfc40bc8244c","sha1":"fbaf1b33c98c2c94e5897518a2ee19c60c610b60","sha256":"9587941e7ec5fa6f4708eed6be0711e47a3e19e40f7d79d1fa4b0c36ea41b74b","sha512":"1970d3cf737337bd58a99185c7d7d19c00c8bd25a6cec6d078bcf8f8fb4c0501d77848c4a8fefc45a47112249dc50542a7fda45a16c81e747c53fcd8f31c43e0","ssdeep":"192:Xzi/QHixte2XeqZlrcEl33mRnIJaoK2rx4rL:XOIHixYolrcEl33mV8mf","tlshash":"a1025413ab127c0ae70364e9df905f246b1e84937e1f8fe6b984691cca4d195227378d","first_seen":"2025-10-24T03:25:35.555265Z","last_seen":"2026-03-17T07:35:43.41489Z","times_seen":2,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":234,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/images/defaultpic.gif","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.946Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /images/defaultpic.gif HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/gif\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Mon, 16 Dec 2024 11:19:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67600cb3-ab41\"\r\nexpires: Sun, 12 Apr 2026 05:47:21 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43841,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 539 x 395","md5":"23da7c0dd26be4f315aa460fd786f346","sha1":"2789ddd705308b03b7b104345cae5806ed4bfebe","sha256":"0625ff5c2895e2dad92147a99865fe2a1793438145827872e19e19ddf4fc3b77","sha512":"2ccd26468f890ab12ac5b8abf6d666c5fae085e19cea9fe261f74ed607e1addac64a12a3945b2ce593690cfd65dd3a4b0e7c44a00b0b90786df1849a5c048a16","ssdeep":"768:sVW/6jhlA3ZfE+yH0Z99TVl093O1YJ0+Qd3YYa8+1QMo0vF5gc7eEORAkyL3h:sVW/EeiHgnj09Ya0+Qd3YDQMp6DAd9","tlshash":"1013f24fa4771cfa6ada156f056c87404f8e3804d0bda5b89b840bed1d25d0ae463d77","first_seen":"2025-03-05T03:14:05.034061Z","last_seen":"2026-04-03T19:45:00.445231Z","times_seen":1354,"resource_available":false,"data":null}},"time_used":555,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":555,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P403113H2416.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.953Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P403113H2416.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:38:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e234-3d35\"\r\nexpires: Sun, 12 Apr 2026 12:34:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15669,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3","md5":"ca3666f1067b36cd9076d5a6cecb47da","sha1":"a45fb816c027de9950615c0b75ba4058b82a8900","sha256":"b227d32ffef370f75c35067381d166e7b32a9147a64724a0791a6d8ab22cc01a","sha512":"65a1c62bf6854279a890848b03bc968c7c587aeadafb681369fcce2ab786ad51eaff4d1dce07ddc03be7a308eedcec16fef17c84f6ea4ef8b7f52473ca0200be","ssdeep":"192:Hw3tHXSazULrbdXQT6MVa8N53WWdH+ISFey02W2A5ioS7QY72EH5bGL1+d75:Hw3RCVLPdQaLWhko24KQI2EZE1+V5","tlshash":"5d62bf3ae316a4dbfc1e1ab984f50d5b57dbb78403e0962930dcf8a185d53b86ddc181","first_seen":"2025-10-24T03:25:35.486353Z","last_seen":"2026-03-17T07:35:43.417452Z","times_seen":2,"resource_available":false,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":832,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/180523/1-1P523102S43I.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.961Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/180523/1-1P523102S43I.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 02:28:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04d1d2-2352c\"\r\nexpires: Sun, 12 Apr 2026 22:27:01 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":144684,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x332, components 3","md5":"92cf05ca3b5d6510788ffcccfe13e861","sha1":"3e1258b1d3ee3bfa69297de4bb1a36030bfe2120","sha256":"e9cbd02117ffe2fc353b64396da7635497f057292ad52dd0067223f01812e653","sha512":"bba35a5c4aaaff23addf6d99c0d0cc4941c1f9b6f46c226a1d086bf4cf303a527fbbc126a9bd9edfc015498fb264779923b9a6e3f0751c5c3d7ed257122bf9a9","ssdeep":"3072:T7tlCJjRePFuyvClhAQ2p8tlDtZK9cEM9:VlCHWuyvOhAQ2p2D3Gy9","tlshash":"0ae312b525b2f7a562b5c9ba099bc646e00a82cf40418f49f12d841f4f787fb4d6bb07","first_seen":"2025-10-24T03:25:35.522532Z","last_seen":"2026-03-17T07:35:43.41911Z","times_seen":2,"resource_available":false,"data":null}},"time_used":821,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":821,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/discord.2aa7ce83.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/discord.2aa7ce83.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1779-543\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KoEQrsYWW7UCWUNWD1AyM9YbCR1c7o4KQqWakQX2jsCMfxc1czi59cPoLp0Vkg33l62MuiLcLdlKDSwfQoq%2B8DbNnuqPosCDu4M%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51da0a6757e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1347,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2aa7ce8352d369374287bc6eaa17fb7d","sha1":"6640365975f4dab2b9da69ded94f9c66454920e5","sha256":"5bf64d9f650da48ba47165ea48faf54928f70998651a01992c989315f956febd","sha512":"b2dcbc1666a5c6ea2b7fd79fd4f96313bd99c76604bd65a186aca07e6ae24648aa0c335f12108485365c1c08f2b1526f1ada10326a0c3439afd9edb7c057be28","ssdeep":"","tlshash":"1021cef283e464e4a4479fc9e4398913f61b34fab75e8a484780ebc17b2501b984eca0","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.242292Z","times_seen":1711,"resource_available":false,"data":null}},"time_used":434,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":434,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/alarm.a0de5c93.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.344Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/alarm.a0de5c93.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:32 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N%2FcEjGHa0bDD2zU23QceMAz7YqGADCaIMyn3%2Bxc%2BpoffSXVjPrAwv0iJ0IlyrzqF1XBT2b3mI43F2BW7gDMG1fUWL%2BvqUuDCaos%3D\"}]}\r\netag: W/\"65fd1778-219\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51dabbff57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":537,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a0de5c93f3b0606b03fbed44264a1773","sha1":"1b251f8f3aaf8e4118cd6aca1205f88bdf76a9d5","sha256":"53dd292857091700369fceb24f1aed8bf0ca87556e9cd3466cc3a4e7d0f15263","sha512":"4eaf9a604f29b55106caba0f8833e2844f24be44c57b8b6edd8e9221f239abdd0c4f3434d38b531bea1cffc55cc7df53a558967698659692cccf439dfd3c8cc5","ssdeep":"","tlshash":"a7f05094578c9e7cb7224f24db1032b6207b31373b5d9258d863643b216411d683f9fc","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.237342Z","times_seen":1709,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/business.9d8a656b.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/business.9d8a656b.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HgiYmPtak7Xzv%2BM6rRuBHJF4Fx0ZJK0b1or2J%2FvO29KL0tFCe1ZLJRj3mB7N03jWingxBAkz3KzxkDAQgW11kgVEdQPCbVCjBGI%3D\"}]}\r\netag: W/\"65fd1779-347\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51db3d0557e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":839,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9d8a656b278cd56c842d2b6c156c99fe","sha1":"ddfb2873368332704dd11c91a1c3a921076cffa6","sha256":"62b86e664ef86a4e634f871a655bdaff281f07eec50283f09fc225725b13a24c","sha512":"b39aa96b642b27e51371597bce784b68e514fd0bd93abf0c036c478b5cac651281d4af9e16f87375142afcebbdb2d199c107e9de62893c77b82a839a7e4e0ff0","ssdeep":"","tlshash":"1701ef65934a1d3cb303d3b4c6053770622a58615713b210c2733cb7a4f700c7abb9aa","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.208628Z","times_seen":1705,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/menu.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.937Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/menu.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:13:21 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04c031-37ff\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14335,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"75c89ef182525726aeba5a9943a33aed","sha1":"a2bb16b9ec66b26e24350888fcc1641c38fcb3c4","sha256":"b60ea71247b6ed47a2cbf6f91ce4169a23da42c8a12e977d237c904c2fc1b0c1","sha512":"5e0c393be3a18914358895a5dce388f5f2e426911b28e895ecb2ac21c917e319de40184836b4ace2996617af05e0dc657e8329cdc5e8897d3f8b1db8a9771840","ssdeep":"192:cZXXeEv0X9JU69ORz8QSRyOVaxL7c97ox0pMAP+ez2zI0W1BuBz:c7v0XMS6eox6mez2zI0OOz","tlshash":"20521feeeed4304d1382ef6ab3f046a09f5f48b16f0e553d30b2559ca28514429abfd9","first_seen":"2025-10-24T03:25:35.573802Z","last_seen":"2026-03-17T07:35:43.423408Z","times_seen":2,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/owl.theme.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/owl.theme.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd94-68e\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1678,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3d2cb19317639c0c339286f29fd89070","sha1":"21f4ccb0ec9efefd01bedc836be1fbe4efdf187a","sha256":"ef01ccd9afba28e6aee1ae1e040ff5f846b7532d1ca8b20aa7874ab43143788f","sha512":"116a0bd8340d394746f7bb73ca4a40c3ed7236cb95322823daebdf0a9bede56722355b78de8d33092f05a43c6e296c8be3f7263343bce3cea2f65c7ea5dffe44","ssdeep":"","tlshash":"7431cd9aa618115d6466c5ac7e2ccbc34b4f2063970c0ee8f4ef787ce24a410363bb4d","first_seen":"2025-08-11T21:52:37.725712Z","last_seen":"2026-03-17T07:35:43.424929Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1010,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1010,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/jquery-1.11.3.min.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/jquery-1.11.3.min.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:16 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd98-176d5\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":95957,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32038)","md5":"895323ed2f7258af4fae2c738c8aea49","sha1":"276c87ff3e1e3155679c318938e74e5c1b76d809","sha256":"ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8","sha512":"c40111c3cc0754e90cf71f72f7f16f43b835b7e808423dfd99f90dd5177538b702e64ff1d9ee8d3bc86aeaa11b6f7a0ef826184e354b162158839ffb75d174cc","ssdeep":"1536:OP10iSi65U/dXXeyhzeBuG+HYE0WEeLDFoNqLTW8+S5VRZIVI6xSb8xh2ZbQnRmc:R+41ZqLTW8xRrqSb8qGH77da98Hrf","tlshash":"3b93d8d9b7d67162977730b850bf510bb13a98eab80c4ca0f0a4d8e47d74a89507bf2d","first_seen":"2023-03-07T01:02:25Z","last_seen":"2026-04-04T20:26:25.063342Z","times_seen":13779,"resource_available":true,"data":null}},"time_used":1009,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1009,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/owl.carousel.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.972Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/owl.carousel.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:23 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd9f-cea0\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":52896,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"5b14510332ba541c4e2680fdbfd6e298","sha1":"b2ad62ca9e6896cefb8836dee7e69d4a7f172265","sha256":"f995efeab9f944f44aa60e8d4f9a0eb63e109bbe32316f8e52f32ff52435d00c","sha512":"5ac29422db6ae4af6d5e1ea13edbc764830e882463d6c52eaa1b8e382d29c89a6a943c8b31779d2eaa97375b989dcb6130b2bba45ce341476013c1344c9ae900","ssdeep":"768:WqmJxYi1W/iwhgdFHrYuCkqsrQTtuwJoGdlL9mSzxmRbLyY2Stvg1EzS3FeDJnO7:NU5uY8e6","tlshash":"3b33a54da2f22e97416333bd4bef4008363485235809ee55ba5c46857fa943db2b3fb9","first_seen":"2023-03-07T12:59:41Z","last_seen":"2026-04-04T14:48:15.987852Z","times_seen":734,"resource_available":true,"data":null}},"time_used":986,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":986,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/tj.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:12.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-6.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:15 GMT","end":"Sat, 02 Jan 2027 02:51:06 GMT"},"fingerprint":{"sha1":"71:AA:B2:AB:13:43:B4:24:14:D4:17:18:6C:6D:8C:8A:EF:6C:D2:1C","sha256":"9D:B8:09:0A:5D:43:59:9A:AE:6C:F3:99:ED:13:80:FA:DF:21:7D:65:AE:F9:B0:47:DA:3F:24:41:84:58:15:5A"}}},"request":{"raw":"GET /tj.js HTTP/1.1\r\nHost: imto1ken.oss-ap-southeast-6.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Tue, 17 Mar 2026 07:35:13 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nx-oss-request-id: 69B90431F6BF733534128DE2\r\nLast-Modified: Mon, 12 Aug 2024 07:31:50 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 12654278826270211217\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: 6NSO1PhJ06U34CJdMjAgjw==\r\nx-oss-server-time: 1\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":1110,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (554)","md5":"e8d48ed4f849d3a537e0225d3230208f","sha1":"4f8646de1709593d2b4ab56c6caf7c0fd1177fbc","sha256":"98ebdd779e3e1bbdff110cdb3f1b64499478553b072ae12233727b0e7ab2cbb9","sha512":"a18fc25e80f3e39a682cea479fe81c20f6f8b0ebae9ce2e84d9af08d5186bc1cf9e89e14c52580ba0d962291ae291cbd8ba74d42894f157f6024b44af8c5bf58","ssdeep":"","tlshash":"4211c09e7c05e25467973c7a23b7ddace9ae0032100dd80665ebc0ed6d29ff90126b4c","first_seen":"2024-12-07T07:30:44.931892Z","last_seen":"2026-04-04T22:11:31.222324Z","times_seen":1815,"resource_available":true,"data":null}},"time_used":1926,"timings":{"blocked":851,"dns":34,"connect":217,"send":0,"wait":218,"receive":0,"ssl":603},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/js/website.f36331df.js","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /js/website.f36331df.js HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 08 Mar 2026 04:16:22 GMT\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\netag: \"69acf816-9ec96\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32603\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SPsn33yMVGqZeZEblA8%2FuDefjPYarbgvbHkBDB09eAoW4oDhKrur8j%2BzfQlz9QWIwrDz6Unq3UwX2CZm8aYYkoLM32IPRyEF30k%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d9a9bd57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":650390,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (3378)","md5":"2351745189ecbc49f31246648133a36e","sha1":"cefc075826bec506a9b70e959330629e5d979bb4","sha256":"90b6b9cb4d40df8c40b6f81970fe169d7135adfea6e41115329b880c0e917eb1","sha512":"fc4fe9ac08fe536f8aacd2a854d3bf31752ff73737730aff179e354d71e88641733f744919082690117f5b3351faf2105b510d40d092ca84762c990f97d1a432","ssdeep":"6144:eTin01pJVY5y1jEEAHN6J9LRAHwqHmrSGHDsXz0FwG37V1LT82dp5Ilv6iy8t7fU:een1mjERWNDsj0FwG3rZ5oNvqV","tlshash":"ead4f25d58b76ee554dfe01281380c29f03561bb522e9c207f1e4a586f3ce3e3a5bb68","first_seen":"2026-03-08T12:35:42.860206Z","last_seen":"2026-03-20T14:59:10.008297Z","times_seen":12,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/github.d15ef125.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/github.d15ef125.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:34 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=O0T23%2FFTwxSPlhNZ7dTculXK50Fykn1mJsVhN%2FVtzzhkVCYCZVU2qMjgNU%2FnQPj2tdHGfJNVggpcQMAoVXJLfn00ZIq5PQhT2f4%3D\"}]}\r\netag: W/\"65fd177a-2bb\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51da0a5d57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":699,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d15ef1255f17b1c47e4dfc3649cb66e0","sha1":"6deb5c0f4906414d811170228fba940d338861a7","sha256":"69b686110472d3bfaf623d6119a759446e860cf926fd1c8ac960bae27b70876e","sha512":"2b9897742e662cc475a84414574c5afbd9eb38a79584aaa41c70d9f9d6f4bce7249f40f5157e2f9ac998b70945901260d65ec56f42189190cdb39dc25e4b4897","ssdeep":"","tlshash":"1701cbac67e033606d82d36cc0a838f0f28334b32faac5a4e045e843a1018de68d8810","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.24187Z","times_seen":1710,"resource_available":false,"data":null}},"time_used":444,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":444,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/subscribe.ff7b792b.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/subscribe.ff7b792b.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=670SitazPvzVTl5pJaSt4HGGyKYUuJaRPVlo7y5cAZDywYPDnGFQ49gFKJCm5cURQSgHAXeYChVanM8PNjbAep%2F%2FGbD4HAKn9aA%3D\"}]}\r\netag: W/\"65fd177d-24a\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51da1a8857e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":586,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ff7b792b7ed2fde784f744653eee3dc2","sha1":"9551d0b17562a9fb9c456081cabdfdcde5bb3d41","sha256":"0ce9bdd49f924c57c51b574b7a7a7a3d188ecba968017146d0cb3393e58281b1","sha512":"5ad72693aeeddf64284143e32edd5d97c9d66ef1598b3be9b1f2faebfccbf24102e5e145b7b814e20ed90267b3e92cd0fb280458fb591789bfca0a173bd76ab0","ssdeep":"","tlshash":"22f021a054cc444887344715c7d5bed5642fa1434315025cf35c355f3f344a658af39e","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-04-04T22:11:31.175484Z","times_seen":1707,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":451,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/css/chunk-vendors.09af4a6b.css","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:13.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /css/chunk-vendors.09af4a6b.css HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:41 GMT\r\npriority: u=2,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1781-7290d\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32603\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ps04E%2BMF4xyXOLJURFSg5UFwMxk5BKLmILeWYJK4iYg0YXd%2B9PJsOE7eZiEcLyFQQho0nl0%2B8uOJNgRp0r0VnmZHQCbNz2flIwo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51d7fd9657e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":469261,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65422)","md5":"7501f5604906aede27f9621259b31ed5","sha1":"4c494f472616ea88a4ab2ddcf30e77c909e21b2c","sha256":"57f23552c346bdbd11b2b0cf10a60b7fc4537fada692118fdb6358072778cfa1","sha512":"a4b320d3fbcb6ec992e25632edb281178cab786e2ed66a502fe940988b1c66ef8c64e0b840372669c1cf79e4e35cab25cea8e141f865569773372acf354f7753","ssdeep":"6144:ZZcxcZldl801XxjNg5p61Btd7jcpAitAGQxwT:ZXh7jcaOQxwT","tlshash":"66a497686b41203de5ebc736e4d1bc595931ce13952f9dbff3a07e184b85a8a01e3e06","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-04-04T22:11:31.234105Z","times_seen":1720,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/arrow-down.7a838bb8.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/arrow-down.7a838bb8.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 06:02:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OPQu7%2B9fHK5jjDF7PzVmZykDu8GnPr8XFFUbJ4dSsRrQPZt7fE1tLDKpyUUmICboual6HYjMYMa3C7BGk%2Fu6k7g7YQuovtLThtI%3D\"}]}\r\netag: W/\"65fd1ef9-cf\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51d9ea1f57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":207,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"120e5756289bdf45cd9f51442b1224c9","sha1":"a53737a735a6502ace15f6fcaa404f7c42abd483","sha256":"f22a34371e6b2d446921f8542f85b81a4673d4ea2aa5f6bb759037b36037632f","sha512":"f49b1fd7502f0934e972ad635159cb5c487611f75db00c246e9d70895f815204fa699e4890b274f641d560501b19a8657374712b519bc37a3a2ac1512e57877a","ssdeep":"","tlshash":"bed0223bb32ccc1cb5124528e3ba367150f3109308cd2654d8332131ae054afbb2bae8","first_seen":"2023-05-10T10:24:22Z","last_seen":"2026-04-04T22:11:31.186282Z","times_seen":2665,"resource_available":false,"data":null}},"time_used":429,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":429,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-polkdot.0ce6319f.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-polkdot.0ce6319f.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-36cc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tl%2Fi5pL%2F8mecBlhZcTQ%2FOQxU5nFMXkE9p3i3vmbuKP21QJNhaCwipGel42jrreVzirfxMACPd1WlmXZw%2B8HwiFceJYx%2BgpvB%2B2s%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51dafc8b57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14028,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0ce6319fe258d51e640878721b30b00b","sha1":"8f84b97707d89c051c345dad664c11f87409d0ae","sha256":"348c471852992bea44c07ba36c56e331ddb6a25ce288fcd584cb9a78fa8006d2","sha512":"6c32b6f23ba02e0c4930d28f9ecd57fa861cda873413aed108f037b711d4f5e023f8fb172faf59c739c95514c70f17b0e9cc24acf96460c9157df87afbf95c7c","ssdeep":"384:f5KRkKZJj+AjA6Tam5cKqez2c/9sQ7HWqw8jJ:f5m/ZzTaLtgN7z5J","tlshash":"9a5293cc2bb587f8f886f0ff9b1110a4790698ff69818a75c3685d09788251c9e45da7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.230978Z","times_seen":1788,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-cosmos.9c72b55e.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-cosmos.9c72b55e.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177b-16ab\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B2D5Cyfr13JGiWgWwPJYwYE3vw9J3NujOJdHup1w1QgIOPYQM8PY%2BOE6ZLNmyPxveb9uyiDOMqbQkk5yD34jLSyAaMxwCePgoIQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51dafc8d57e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5803,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9c72b55e74e0e611c924e4b51687dbc8","sha1":"2e2b75c57289b5d7013a52e536a6611c93fad256","sha256":"f2dc04a3223bcb855780d1afb1dbe2f84d576c48090e39a68f70c67f468f2f7e","sha512":"b6a5f272a8fee153a8d4a56fb4e55f017fe75b1e5d3518fa64ecc28ffcd5a332f858b91c29d3d1a9116072ee47d7b1d81204e7492932baf4137d64f6feefe028","ssdeep":"96:f8wvPA6sbKbFTDajm6iyinXBd7ycdZgTz3KA7zIGcckwHWt5H27T9B4W:f8bKhnajRiLb7yr+Kcckwm5H27TH4W","tlshash":"a9c1d8fc7b7556f4b881d1fecb2050f83a51aae7b8020924d3a81e0ea88297c5d58dd7","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.187498Z","times_seen":1702,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/feedback.39ff43ad.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/feedback.39ff43ad.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yuzl3XyoN%2B2XSh9Wx1dK2Kav2%2BvFCFgDJ%2BwOGerPJ8IVzS5oPw3RgIJznkShOMy3w8%2FzAPlkXoU4tdYhTlPiG8hDfzuTod0gPOw%3D\"}]}\r\netag: W/\"65fd1779-37e\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51db2ce957e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":894,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"39ff43ad318c87cf310043ceb1e547e7","sha1":"66b959f2ee476591c5855362db7cfdae6c82d81d","sha256":"4edf7e7ed086e0fe9208719144c0d9e74477576e1001dc59dbec40428236be36","sha512":"e2d418c0b3004e1bc460f479d25611e50338c8da6e7b083d13a0a8ff9a8d4dac998f3723482a9695593e5cdad953bdae355728085c85a4e2a82f1711c08c232d","ssdeep":"","tlshash":"8111c05c63589e9c67219b78d342bbb1726710e3170ea02089723037a91561d3d7b6ec","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.243659Z","times_seen":1709,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/css/website.0b83b754.css","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:15.413Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /css/website.0b83b754.css HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:15 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:41 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd1781-2128c\"\r\nexpires: Tue, 17 Mar 2026 10:31:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 32604\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YKsPw%2B%2FBNDS3cOYgZFccYtCR%2BNdJMRt%2F2j4zfe5aRxCASuzV1VSba9VCX3OTshsSUaVDmEi1Jvs8v22chc2jGcaGWuuYNjtwek4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51e15a2957e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"03936f49600d8cf124513b3a6fc4f667","sha1":"f670eeb3d8aaca15cade67fbb8e258c2ac3d1e28","sha256":"0a70832e5397898dee0bf00d6a7266704d707a3fd7098d83452e3efdc3abc651","sha512":"6490d274d162cf5beaa932eb997849a8bb576922854c99ab36bfb54fe0b124743547d3b24c23ac008c1c6265a746261f85e3da9a72000df83e9d87fe5a1a3fac","ssdeep":"768:GzOFI2zL40xJfTd5LzG5J0VHHCw4zX74iMgmDyafXf+F7LKmjMWVDSV+Pc32Uj1x:PFI2zYMy2HFXXqYld8bCirjaZ","tlshash":"d7d38621796c7838607fc17ab881388e76207763d36751f5a9a1261ecefb283772634d","first_seen":"2024-05-25T21:10:48Z","last_seen":"2026-04-04T22:11:31.234616Z","times_seen":1709,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/tk.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/tk.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:09:57 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04db85-809e\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32926,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text, with very long lines (379), with CRLF line terminators","md5":"0ce47bfcff1af76ae98e45e3cad98b62","sha1":"f432ebcdc268b7b9f9471dfa3932d06084ec17cc","sha256":"d3ea5179b9d819eb43f899b376517e81838cceab580accbc65cecaa4109e708f","sha512":"bb4090435eb0af49f8084b770bb4c8e5ee8c63a8fea09540af96258d17a8b02c44756d1c27e106e4408cf5a26d0a4a1de08b86cadd14ef62d44d8f63cf9220b4","ssdeep":"768:XnbPK6+Pz//1YyhgPpVw6ywqD6jM4/WuRF1oWuhJsJJFjYOm0RHWHO64MtJ3u6JE:7+TVcwFwku/udJZYb","tlshash":"28e241acea94348ea313bbbdbbf5aa145f4c50f1cf4f427df4603219e24a95825361c5","first_seen":"2025-10-24T03:25:35.47905Z","last_seen":"2026-03-17T07:35:43.436276Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1010,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1010,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P403113S5928.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P403113S5928.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:38:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e23c-8aae\"\r\nexpires: Sun, 12 Apr 2026 12:34:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35502,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3","md5":"6cb50534c254202aead50279bb5296cd","sha1":"4e50d1627d86d837ef9993799be218c3f4a5dca3","sha256":"8dbfae1c47a03230876d9064220c6155c6c5b1d219222260a745362b0a04b9d0","sha512":"c0dfa8665d40e59e0bb4e4253895caaedc97f431aeca1cc80cbb1eba06bbd649f1f0932216df7c2b6ff7739457a68adb232972c4b3945896b9165d6753d2d690","ssdeep":"768:o5+aGMS6shKjxjqOI4qOzAPbOtuka5jfCW:4ztwKjxNKhj9","tlshash":"1cf2e029cb0c7bc2d61d117390e79f9383e26a353ac5843a5ef502a4d90d71ebc27247","first_seen":"2025-10-24T03:25:35.503038Z","last_seen":"2026-03-17T07:35:43.438202Z","times_seen":2,"resource_available":false,"data":null}},"time_used":821,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":821,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/bootstrap.min.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/bootstrap.min.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:42 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bdb2-6c64\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":27748,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (27535)","md5":"c2e5221c3336abe0dff8568e73cd0dae","sha1":"15a81fe4074f920898e98b1b42cf11bda26da0a8","sha256":"13d9e9ce4061c6b648768b09a36d000a7bfba969d4570cf329f938ede6a8f393","sha512":"5bcc9c2c13eaa1c2596e29c39e8ea6abb705fa6f3c00b6ac0ae98b3249e2eeafea56c167c91e98189287ff8bd429f9d0c9f7bddab158d5f7e00381973c9aab32","ssdeep":"768:pByLMX8YkskZzymPoEtwbqp3/D8agMRzfYAfwvbOCt0eH:rD2HxfLCWU","tlshash":"53c26406b2313161039bf2f5515f020b723a6a7ee906907c38b98af63db9c487167f39","first_seen":"2023-03-07T01:24:52Z","last_seen":"2026-04-04T17:13:41.655544Z","times_seen":956,"resource_available":true,"data":null}},"time_used":987,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":987,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imto1ken.oss-ap-southeast-6.aliyuncs.com/ts.js","fqdn":"imto1ken.oss-ap-southeast-6.aliyuncs.com","domain":"aliyuncs.com","tld":"com"},"ip":{"addr":"8.212.139.121","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"Philippines","country_code":"PH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:12.109Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ap-southeast-6.oss.aliyuncs.com","organization":"Alibaba (China) Technology Co., Ltd."},"issuer":{"commonName":"GlobalSign GCC R3 OV TLS CA 2024","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 03 Dec 2025 08:27:15 GMT","end":"Sat, 02 Jan 2027 02:51:06 GMT"},"fingerprint":{"sha1":"71:AA:B2:AB:13:43:B4:24:14:D4:17:18:6C:6D:8C:8A:EF:6C:D2:1C","sha256":"9D:B8:09:0A:5D:43:59:9A:AE:6C:F3:99:ED:13:80:FA:DF:21:7D:65:AE:F9:B0:47:DA:3F:24:41:84:58:15:5A"}}},"request":{"raw":"GET /ts.js HTTP/1.1\r\nHost: imto1ken.oss-ap-southeast-6.aliyuncs.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: AliyunOSS\r\nDate: Tue, 17 Mar 2026 07:35:13 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 342\r\nConnection: keep-alive\r\nx-oss-request-id: 69B904319A0F8337379F931A\r\nAccept-Ranges: bytes\r\nETag: \"9E25F39790BC7EF442E6671E951E1D83\"\r\nLast-Modified: Mon, 12 Aug 2024 07:31:50 GMT\r\nx-oss-object-type: Normal\r\nx-oss-hash-crc64ecma: 4613280838212379853\r\nx-oss-storage-class: Standard\r\nx-oss-ec: 0048-00000113\r\nContent-Disposition: attachment\r\nx-oss-force-download: true\r\nContent-MD5: niXzl5C8fvRC5mcelR4dgw==\r\nx-oss-server-time: 1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Alibaba Cloud Object Storage Service","description":"Alibaba Cloud Object Storage Service (OSS) is a cloud-based object storage service provided by Alibaba Cloud, which allows users to store and access large amounts of data in the cloud.","website":"https://www.alibabacloud.com/product/object-storage-service","common_platform_enumeration":"","icon":"Alibaba Cloud.svg","categories":["IaaS"]}],"data":{"size":342,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"9e25f39790bc7ef442e6671e951e1d83","sha1":"a76e21459ea14f8233735b3c819f30c26cbd813c","sha256":"c18b4cc7348ba40f4e88f5bbf8420de8041c5b1dd91165494281e48580e6fa07","sha512":"341d86437e392cd0f776d1997c7ce2de3b65279d55ff105e3c9e9adf1eed9d2cd3b0172dfb0c4e290074111418b5c9f68bac2ab5ec930cc0fb6cc3692a5ffc8f","ssdeep":"","tlshash":"cce0d8992466667427901c9995aef42cf4da112c38519002954ced112034aeb1e1ea94","first_seen":"2024-12-07T07:30:44.929907Z","last_seen":"2026-04-04T22:11:31.198878Z","times_seen":1910,"resource_available":false,"data":null}},"time_used":1914,"timings":{"blocked":848,"dns":36,"connect":206,"send":0,"wait":207,"receive":0,"ssl":615},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/favicon.ico","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 24 Dec 2024 06:08:16 GMT\r\netag: \"676a4fd0-10be\"\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"b1b891d2f48e8efb4dc81e7838f2c552","sha1":"6e6073e95a8804cb96e79f355ff8a297fdea9d60","sha256":"7c5fa4e85828426fe0625af1c7d4ef83f7d78ef2806cc5e0c08d5b27a7d95596","sha512":"4475da2d683cd0eedcd722c6be6fc4687378b2cc9d5e535e04c0f9090e4496902472f00951633abe798306e4c5f6ba60624ce16c538f0c364cdc9121007850f0","ssdeep":"96:E2UyJ/P6JScm5PdJcAocDuM/d3eOWHyGft8JcToPFcHTc:Efmb5xm4VqS0tC","tlshash":"0d9112eca663ec93c400f6ff8a28a6f085c65cb1b553f7e61438b919843547dca12e87","first_seen":"2024-12-07T07:30:44.976335Z","last_seen":"2026-04-04T22:11:31.236306Z","times_seen":2008,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/down.c7fc8a68.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/down.c7fc8a68.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 06:02:33 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F2j8rtkGdxc%2FA2WDp9rXdJ8yHtzSjmuXQwcRJDtNosg24JpQfzZhe1cevb4%2FIzEQXG8VTWJLfyUq9SZPoegYXohuKPxcTuivsYM%3D\"}]}\r\netag: W/\"65fd1ef9-d0\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51d9fa4257e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"968de49fb0eeedf5d6965f4130607833","sha1":"47766a409c9344a96ed569ef4be2405efbea7a68","sha256":"501cfa9eb5f8047edb1e51e62a03f32a03f845950cb8e75b00311759573d840a","sha512":"57764b64bb5aa2667fdd459c4f9a434d6ec6a6e6f6649a85c201859dd83bb641d17f04df0c1043b89642fca341909ad0809b3a166767fe6ca10b21061f4689ce","ssdeep":"","tlshash":"44d0a96b635ccd1cb0134e28e365363120a212a318ac2254d8322230b60009aae2baa8","first_seen":"2024-08-15T06:58:15Z","last_seen":"2026-04-04T22:11:31.186932Z","times_seen":1708,"resource_available":false,"data":null}},"time_used":612,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":612,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/bootstrap.min.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/bootstrap.min.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd94-1002f\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65583,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6002)","md5":"4f43cd389463e9a82a3342be54f4352a","sha1":"9bca2bb7710952fa5cce9da532cc809d184f377d","sha256":"12f344b93afc2fa5398a50216a7ba2397ab95c7e66672390586c67f1551129ec","sha512":"db5abe92aeec0d716e74739714544db2d447eb54de5e7c7a735f5650e3465dcc44d90df3f5387b269f9a52823bed32ad0cdf2d87a027d73856a39a5f5fdf64d6","ssdeep":"768:+UNmxJpGn62jjZrlxpwNL+UNHeedhMK4obuSInFZIHIE3wspZP34eA6bdr5d:+0uOrO2e6zntmZP34eA6bdr5d","tlshash":"9a53a882e9713c952033c14a7698addb371a2003be1ddd7bbb162d944f8e6990772f1b","first_seen":"2025-10-24T03:25:35.525402Z","last_seen":"2026-03-17T07:35:43.443137Z","times_seen":2,"resource_available":false,"data":null}},"time_used":327,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":327,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/Plugins/ts.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:12.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /Plugins/ts.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 342\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Sat, 10 Aug 2024 08:53:11 GMT\r\netag: \"66b72a77-156\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":342,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"9e25f39790bc7ef442e6671e951e1d83","sha1":"a76e21459ea14f8233735b3c819f30c26cbd813c","sha256":"c18b4cc7348ba40f4e88f5bbf8420de8041c5b1dd91165494281e48580e6fa07","sha512":"341d86437e392cd0f776d1997c7ce2de3b65279d55ff105e3c9e9adf1eed9d2cd3b0172dfb0c4e290074111418b5c9f68bac2ab5ec930cc0fb6cc3692a5ffc8f","ssdeep":"","tlshash":"cce0d8992466667427901c9995aef42cf4da112c38519002954ced112034aeb1e1ea94","first_seen":"2024-12-07T07:30:44.929907Z","last_seen":"2026-04-04T22:11:31.198878Z","times_seen":1910,"resource_available":false,"data":null}},"time_used":876,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":812,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/medium.dab934d6.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/medium.dab934d6.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:35 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BfZF5guFqWjDlQUKBlTAGYWuy4DyEvF6gKvZ3eOfFE5CeJhVpJ1Yo25oQg692CD0BewcWGmhtTJS1709cuLb5hwgZJYYFBRXnqo%3D\"}]}\r\netag: W/\"65fd177b-e3\"\r\ncontent-encoding: br\r\ncf-ray: 9dda51da0a5657e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":227,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dab934d6af4d966a47477f800d8cc13e","sha1":"d8e041ee599292a34c6bd228d3f78a48d98d5d12","sha256":"8798af34123bdd67eddb715847aa2130aa145a36c256df060a27a08f6bd9a95f","sha512":"dafb31da6c22197d4531bb04a21db8a36377654233bb369284143cec4c08e56c5557e1ada45dcb93e20286c2a07cb8d2e5cd0a4125c3adecd08903fbe1cf8140","ssdeep":"","tlshash":"e4d097e888480c048f68c699df2e3d6a112661d3479c441fa0813202f846aa13448438","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.223107Z","times_seen":1712,"resource_available":false,"data":null}},"time_used":439,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":439,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-etherscan.11435bbf.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-etherscan.11435bbf.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-2c12\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 822\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yI%2FaNOyDU5690yW2kXU2bLoq6JbUmQq5dhvPGIe%2BARTeQD2ER1dUhxsNWIo93%2F9Adfqav16MGlB6vMM%2FQ8iTutn8iXmYApGScKI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db0cb257e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11282,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"11435bbf6371a8947396816c6a233a10","sha1":"46bee002fdc5ddffc54404b1f8a19f35cb64b4d9","sha256":"cc0f2d9608f1856adcf276174bef44b2a2b76276dd547068ba1cb9014405721b","sha512":"f072c969248bf3c3361aa77d6a36dcac9bc0bf78b30856e47b15c6fc80a69dd64c36c8463945c38082a032513f8bb1819323e862563587685ca08549b35d63cb","ssdeep":"192:f8WNPeQpXC/8tv3Y74wBx5IZoIwVqcC8wGPWwBjaQCVgixp05n7oB:EemQpXCRZD5L3kujaQAp47oB","tlshash":"8f32a4cc6b3a4af8bc85f5fec70544b67802aeae78414958c3b42d5d284442c9dbddeb","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.18992Z","times_seen":1789,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/tokenfans.77b4ad2b.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/tokenfans.77b4ad2b.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:37 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177d-6e8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zX2O0RybP7XU9myIWEatK66nUG%2Fxip82Ji12VTITrXBzot2VpVP06mdfNRG6wouSL%2Fhqx5sV37d%2FDVN0EzYOY7V%2BvRAQIVhQ19Y%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51db2ce757e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1768,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"77b4ad2b85f6f4a96c42993646c55088","sha1":"865d2cd44e47bf24c1e1506c154594080a8a17e0","sha256":"a4016ef09c6ff041f9391ed051d0d931f7ed4410538e953b068d8937ef9b1025","sha512":"17c182bc93a0bf5c8201184357a5c367b2854368374b6c356ed6a1600297477b2c6f2c0794f12886e9accf65597a19aa1a3f28d42c09eb0cae4a93296bfd1f0c","ssdeep":"","tlshash":"76316584d3ecfac9a200a3f44774eeb0766f15e63515c04587993d5bac0295c2cba8fe","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.260132Z","times_seen":1701,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/index.html","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-17T07:35:11.432Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /index.html HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:11 GMT\r\ncontent-type: text/html\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Tue, 17 Mar 2026 07:34:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b903ed-991f\"\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"jQuery:1.11.3","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":39199,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (536), with CRLF, LF line terminators","md5":"d4cf0806675a0fb486b06f0c9069b4a5","sha1":"0764fa7a321d0a0f92590a7d729c9100a191038a","sha256":"656971319d15b73788a0f07b9c0e6c368358d00b8d3f8fadfd994a5822080c36","sha512":"e04887fc3d8baa010fd37b4e847c90c39b1c1c9e5d7ecf6d0c44469343cbae753d49981075ee5e7eaacd247f65dc4bdc84ab96a4f565916da58797cfaf19243e","ssdeep":"768:tk6w/7H/D2uWuyKew6/8p9DmY0XN34TFLKVAqM3:O6w/7H/D2uWuyKew6Up9DmY0XGLKVAN3","tlshash":"55036321b4d61a3701a38ae527611b6efed2f60bca5b5a4473fc47e69f83d98dc03109","first_seen":"2026-03-17T07:35:43.448486Z","last_seen":"2026-03-17T07:35:43.448486Z","times_seen":1,"resource_available":true,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/extralayers.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/extralayers.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd94-694\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1684,"size_decoded":0,"mime_type":"text/css","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"f19c2fc37515674cdfbb835e10fb2c07","sha1":"c9de4e48f00fed7214630e145939deaec67d1b8f","sha256":"362f5e195e80b9343f0709aa83192aa89883a2ad60803eb1369b77fe508183d0","sha512":"497d15b192c5decd760771035f3dd8a81ba5bafca1d61215e6af6176fb5bda7b07426144683abb12fcbc446d2d17114176d51be3da0d4c39644a18802c8eee57","ssdeep":"","tlshash":"0f31327ed8a80d1e62b365baf1b2f714b08094d5c85dcb54f5e633bfca4195aa222340","first_seen":"2025-10-24T03:25:35.535372Z","last_seen":"2026-03-17T07:35:43.45015Z","times_seen":2,"resource_available":false,"data":null}},"time_used":228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/180523/1-1P523101520619.png","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/180523/1-1P523101520619.png HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/png\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 02:15:20 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04ceb8-1556c\"\r\nexpires: Sun, 12 Apr 2026 22:26:54 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":87404,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 560 x 485, 8-bit/color RGBA, non-interlaced","md5":"df1a201c9ffce360b5dbd927d1f4a871","sha1":"2e537896c645c48bd76de8ba713d34959225fce4","sha256":"e1ad1f4ef847ea18fb6800a270ce8e7875295509707cd0e8e0986a2d3b82db8b","sha512":"57d0941efb5ba21b18726aa3e60b018d3f1b1674589cb7b6d0c7677ee47410e4f6a8a8f48a36829cdb1f528d469746e61b4f69d5edaf2257e2e6ac8284f88357","ssdeep":"1536:ftFD27Q1ZZet60x1gABkUJXYTig72HvhScuX3jMF+utdpQpzsfMq9MvhYcN:ftp2knZw60xGAB16kZFuXTMF+utfuzs8","tlshash":"158312cc0e9c935d8ef7735a0ca00ffa0a05cfecc5894971b9a1d96585e5f5834f12aa","first_seen":"2025-10-24T03:25:35.501181Z","last_seen":"2026-03-17T07:35:43.452173Z","times_seen":2,"resource_available":false,"data":null}},"time_used":774,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":774,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/uploads/allimg/180403/1-1P403113644148.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /uploads/allimg/180403/1-1P403113644148.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 03:42:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04e32e-978d\"\r\nexpires: Sun, 12 Apr 2026 12:34:59 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38797,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3","md5":"faa70b1a4e72cbe588fc531a350e6a9b","sha1":"5c43868770f1f56e88367b5b26d4bc59db6ee527","sha256":"cbe1f0d4a752231522ac1dad775383eb252ffff2a92c0a2c8822e5cf7b099528","sha512":"01258511dad7c067fe124e42ff34cef65450542951a2f28e0559f713d5d922fdf6cc917472efaf8a15e4417b15adf2a7844b63e3c17651ba7af51504a937cf4c","ssdeep":"768:2gpUkUOLU226ORLSNs4IjT7/XL5R/JCKMTSbDi400:2gpJq6ORLSNMTLLTxA+c0","tlshash":"2c03e29c6b1388defd899fb95c943c0d9eae04b979e2085444d0d49df0d47d01dafab2","first_seen":"2025-10-24T03:25:35.490135Z","last_seen":"2026-03-17T07:35:43.454133Z","times_seen":2,"resource_available":false,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":832,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/js/jquery.mmenu.all.min.js","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.974Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/js/jquery.mmenu.all.min.js HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: application/javascript\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bda8-ba29\"\r\nexpires: Tue, 17 Mar 2026 19:35:12 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5619, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5619\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47657,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (10159)","md5":"fd1a44bb3ed1933b01935c775f0a5612","sha1":"3621f8040b6ace21e0837085f7ac27b2bf5afde8","sha256":"29090a2759245cdf8b76b6077ec8832f9f1f09968f828f6599082510dd578588","sha512":"1a891a9b935a74a1b7da0626e0f8ecb768bda2c29fb196f3d9bc9513bd7d8138ffc458c6ad2dc4cafe94309f0e63c7ab7c2f34225a634274fd0d57410df37807","ssdeep":"768:Tl2zhUXA4mBVz07aSVhGI6nXuhch5lVJ5g+hL+UQBbceT4aZ:eUXaYtvGICYMfVHh+Ule","tlshash":"1d23f85d708431e585bbe1e661ef900aa433083d5106c84c727dead94e7ea1929e3ffe","first_seen":"2023-03-07T15:07:55Z","last_seen":"2026-04-04T06:47:20.384829Z","times_seen":155,"resource_available":true,"data":null}},"time_used":985,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":985,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/images/parallax_bg9.jpg","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:13.325Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/images/parallax_bg9.jpg HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/skin/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:13 GMT\r\ncontent-type: image/jpeg\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:41 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bdb1-146c6\"\r\nexpires: Sun, 12 Apr 2026 22:27:02 GMT\r\ncache-control: max-age=2592000\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: HIT from L1:6109\r\nvia: L1:6109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":83654,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1600, components 3","md5":"0b5cb722c9b2540ecda1c6a0386f6b57","sha1":"0903402c81e8cda2e4eeaf0bb8271d7a9a7deb24","sha256":"29f525da6a5af61e4d7bac984668a70db907e887c0e5fcd5344136032ff22782","sha512":"10b3b2b1b5f3bcd684c103c7e096200b8d630fa0481f779df15efad9046b593671ae8e180d95fa3ca7e4f748ccff4f10ad1c45ee72654976b98bf27d7d66da53","ssdeep":"1536:lt5HYxz6KdOh+Q8FxjmUJOPM/Fe9E44rHTRFSEoTyaM8e/l:b54t6SORWOmFeO4WHTRFSEoTyasN","tlshash":"4f83e0279746daf5c9ec1b3081c38f1cbba288c9e381924af6a149395df7314fd6c991","first_seen":"2025-10-24T03:25:35.538811Z","last_seen":"2026-03-17T07:35:43.456809Z","times_seen":2,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app68.skin/img/partner-ethereum.eccb8895.svg","fqdn":"app68.skin","domain":"app68.skin","tld":"skin"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://app68.skin/","date":"2026-03-17T07:35:14.400Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"app68.skin","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 14 Mar 2026 08:09:05 GMT","end":"Fri, 12 Jun 2026 08:09:04 GMT"},"fingerprint":{"sha1":"31:AC:51:FB:CF:6F:27:BB:0C:72:1E:0C:B8:19:DC:CD:94:E8:21:DA","sha256":"2F:68:70:D8:A1:A7:A2:FB:A8:96:FE:65:3A:5B:A9:BC:F2:9F:7F:2E:A2:E4:7F:FC:1F:44:22:D3:12:FB:36:46"}}},"request":{"raw":"GET /img/partner-ethereum.eccb8895.svg HTTP/1.1\r\nHost: app68.skin\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://app68.skin/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:14 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Mar 2024 05:30:36 GMT\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\netag: \"65fd177c-25dc\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nage: 2600\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=H9HspfjMgNvQnD8NBAxoUm%2FvqvugKMWSOKONAZURlyah%2BFiBsf2HnIy4iZRHdHoitqqoxNTl9ObUd9lwF4tLnfjzr5f2mOwKOLY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9dda51dadc5557e3-ARN\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9692,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"eccb8895c4c4a30c4dc7cf760ed716dc","sha1":"c372a5e54aad04520dc33d54fb620d0f2832a1dd","sha256":"c1152187cb44ce6c94f077fc12eeb6a5e9f4ac6a0de37d3daa152ba1a85955cf","sha512":"a69f12180ca4219003bb696e3782be885554b122cc2235b2f59852a329de73feb1ee073e42c58a059ac5459d625191bd5c26985f015fa7e2921bd66792608940","ssdeep":"192:jF5f0Jy+wEq+/EvYE1SUOdiCOahHBggiUNGpeyZLSdqHXFm:7CwEvcvYEQwCOjgUpeEPHX4","tlshash":"ac12b6dc6f3389fcb8c5e1fedb1554e836549cee780686a9d3782d056c42928dd0a8e3","first_seen":"2023-06-10T14:59:43Z","last_seen":"2026-04-04T22:11:31.240494Z","times_seen":1702,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"app68.skin","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-17T07:35:10.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Tue, 17 Mar 2026 07:35:11 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nlocation: index.html\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver: nginx\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":39199,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T23:47:04.105988Z","times_seen":13351467,"resource_available":true,"data":null}},"time_used":2557,"timings":{"blocked":1168,"dns":721,"connect":217,"send":0,"wait":222,"receive":0,"ssl":225},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.dikflix.com/skin/css/responsive-leyouts.css","fqdn":"www.dikflix.com","domain":"dikflix.com","tld":"com"},"ip":{"addr":"103.242.2.20","port":443,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.dikflix.com/index.html","date":"2026-03-17T07:35:11.922Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dikflix.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Feb 2026 11:44:17 GMT","end":"Sun, 03 May 2026 11:44:16 GMT"},"fingerprint":{"sha1":"07:71:88:71:02:9E:82:22:A0:8B:3B:48:F1:4D:FF:D2:1B:69:33:35","sha256":"4A:0D:32:DE:B6:36:06:63:BC:2B:80:25:2A:07:C6:7D:F8:06:B6:82:F3:73:95:A3:1C:C3:AF:A4:DD:65:3F:10"}}},"request":{"raw":"GET /skin/css/responsive-leyouts.css HTTP/1.1\r\nHost: www.dikflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dikflix.com/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 17 Mar 2026 07:35:12 GMT\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Wed, 23 May 2018 01:02:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"5b04bd94-a053\"\r\nexpires: Tue, 17 Mar 2026 19:35:11 GMT\r\ncache-control: max-age=43200\r\ncontent-encoding: gzip\r\nserver: nginx\r\nx-cache-status: EXPIRED from L2:5612, EXPIRED from L1:6109\r\nvia: L1:6109, L2:5612\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":41043,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1399)","md5":"181bc8f4dcbb93299757cd5adc720c70","sha1":"b492cb1c146f352f9a2026df376f1d68f3e2d699","sha256":"6fef290bf521c947347c07931624bfc15d9b50744f9d424e733b920ec2d8fd2c","sha512":"8c9ea5edc1276cc765e728a144d9c9a4b419a4ecdef7e9fa70ced84110ff823ebc8bcf9c4b8e75aba31e0d831505e424f3489191af967409e61de85ad95028e0","ssdeep":"384:zcq69SMCq50nlvkfXJ1UrLE9rANRccPt7CdTnM:zcqHM3OvkfX3UvEtyplmdTnM","tlshash":"50035c157d88bf18948fd0ba7e638d39bb6d04516f6ea4512739101c9be4fd8c0ab2ce","first_seen":"2025-10-24T03:25:35.54413Z","last_seen":"2026-03-17T07:35:43.459883Z","times_seen":2,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":243,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-17","alert":"Phishing Block","trigger":"www.dikflix.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-17","alert":"Sinkholed","trigger":"www.dikflix.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}