| zzciti.net/statica/public/images/home/logo.png | 172.67.197.61 | 200 OK | 6.6 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/logo.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 314 x 44, 8-bit/color RGBA, non-interlaced Hashefa2989ab3f0981796743a96498aa344 46293e262e0378a6c23ba1fa0be3569a71417b12 9bc0771f13ea7c5ebaad1a5d5c83829219919e386ab8b1ce0abffc61ad6aec1c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/logo.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 6555
last-modified: Fri, 24 Mar 2023 16:21:04 GMT
etag: "641dcdf0-199b"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pLX5m0yWlBUDlzlPTFOaKV1x3dhqwRWEFNhOic%2BPCNsjndxWnJ0uQRchegzX6cztq%2Bd2LaDorurCqLKK4PlUMVxdYY%2BqxM5PwBgo6VBC4nT3aoAsrwGEoM%2Bp6CAc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eec80b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/icon-china.png | 172.67.197.61 | 200 OK | 1.3 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/icon-china.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 64 x 64, 8-bit colormap, non-interlaced Hash3cc2d6b712882dc337bd037fbe901a0c ee784f54dc6505b379d8c199c242529e602d3ac8 6f903e0952991b1fd5d817470eba6002ece76016c2dc3d7d0e58340f35c83555
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/icon-china.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 1285
last-modified: Fri, 26 Jun 2020 07:49:04 GMT
etag: "5ef5a870-505"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lLriUQaP7ZFYl9FDkuJQsh%2BPayEsf0qSVBxXdX6woCN%2BgMhT6YtAEtBYNxAn4N89DdPu3vR%2FGRFt%2BNJmkicds7fT2uUvSM%2B8GKHMzJgjzOxa4F%2BzMOIgPN0dq5M3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eede0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/icon-hid.png | 172.67.197.61 | 200 OK | 18 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/icon-hid.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 536 x 357, 8-bit/color RGBA, non-interlaced Hash642ca6859d649a9cd1aa70d26c0ed220 b808519975a30b3d1428de4437f5aac774bedc45 f5c19e6152c782dd20b8e78499c59db0b76c43a2d611300d8c87cb32ffc3c7e9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/icon-hid.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 18130
last-modified: Fri, 24 Mar 2023 15:33:06 GMT
etag: "641dc2b2-46d2"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r7NFyzEX6Q6fkcz7%2Fs3JEtUV7EBrN%2BQMkfsnNXXnnbEuKdN15yEK7lkHMdPpQ%2FE7fULbX458%2FrLbBoldUDg%2BUmT2Nfmq6l5ASN95T21bXZM2dkiXQ8elmjcoXRCc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eee50b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/default.png | 172.67.197.61 | 200 OK | 7.4 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/default.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 140 x 140, 8-bit/color RGBA, non-interlaced Hashd16adea5284dcf04bb0ca8593f019586 d3a720ba397eb71279a5bda71d941792c454627b ae998f42fcf4fd8a01f9e48478f665a59fe7e66e7555f52c73169607899705bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/default.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 7448
last-modified: Fri, 24 Mar 2023 16:15:44 GMT
etag: "641dccb0-1d18"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GdJI5aqr6SFXDWHptLbgdReqPResqNIdmyDy%2BYoLyhvzDInKCmVFu8LvZ2ZsFEwJ6RGlF8VTaY0HCfodFa96oSpCz%2FbY8bqFrxKpwCmlPesIxprm1keufeT2hf6B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eec40b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/icon-english.png | 172.67.197.61 | 200 OK | 22 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/icon-english.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 625 x 477, 8-bit/color RGBA, non-interlaced Hash0a5fa7a90d2cab61129513c1d07fdf8f 7a4d0504d67d66820a3f3a2ba3a47e88fd28a08e 29e8ad619e1fdd9a72f65689657f64ee2793d983c69579b655b1e6be9a5f66a0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/icon-english.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 21970
last-modified: Fri, 26 Jun 2020 07:49:22 GMT
etag: "5ef5a882-55d2"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=usYXFFYK2UkF%2FZiqteoyUPScbQu38qAh1ruHGMyMRlrfcx3n6%2FAqeK4sspc6bKKVohGcKVeMTVb60dMpn60pzTCCev5R8uodVATTCpquBVYhuQN3n8RooK%2Bf2egf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eee20b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/1.jpg | 172.67.197.61 | 200 OK | 132 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/1.jpg IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 750 x 395, 8-bit/color RGBA, non-interlaced Size132 kB (131752 bytes) Hash41a3ad31b3c459bcaa46ae3dc222ef46 34e686d183bd461040e178937187f51e1ca45504 9d6237ac489bd57a8b8d9b5b5218dd74dd16869022fe4608f6966b3fabedbba8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/1.jpg HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/jpeg
content-length: 131752
last-modified: Thu, 14 Apr 2022 20:26:22 GMT
etag: "6258836e-202a8"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pa11w4oXAJfh4Zczx7R8ZPee%2FzkbeufVX6KqfcDNEsDHy8bmcxMXdPRz5oaKZlbRaAXAuTk6XV2MsmWM4JstGWiXpBIyoMBbQiJ8h9V9vLpCF8bgHlJY7gvAJZ%2Fj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eee80b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/2.jpg | 172.67.197.61 | 200 OK | 188 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/2.jpg IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 750 x 400, 8-bit/color RGBA, non-interlaced Size188 kB (188216 bytes) Hashdccaa115fe2abb3f1866600ebe10dad1 bcc94edee515be7632f8e1a092e1298b124491e9 16592f95165a03487f26d081fba7bb7539bf345dc7883717e70f75d538d03042
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/2.jpg HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/jpeg
content-length: 188216
last-modified: Thu, 14 Apr 2022 20:26:24 GMT
etag: "62588370-2df38"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kTMTv73PM%2BeGQmD1Mpa6YHXxVwcMGm%2BA3BSPqB5LAHSQvlPTle9D6Vp4KexSlf7kdV9N8betSUNCYfcfRjL%2BN%2BPZFPdV22rvae3vElBigbPkf37iRcVo%2BI7MHIwN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eeef0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/3.jpg | 172.67.197.61 | 200 OK | 366 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/3.jpg IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 750 x 400, 8-bit/color RGBA, non-interlaced Size366 kB (366126 bytes) Hashe2e5c121c8abac8406e605368436efef bf9fa548cf1665002cdf942af5469069fece28bf 55c15dffcaadcdc7314d8dbc0b8812b341613bad4a9a32cc6e8560d2d65d532c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/3.jpg HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/jpeg
content-length: 366126
last-modified: Thu, 14 Apr 2022 20:26:30 GMT
etag: "62588376-5962e"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HchFD1KpyQJJEz%2F26yT1bv%2BR%2BiEg689q8r5CqxvolPPXuP8VEMXEE1EmFAf7kocjwywKdQ8ftEvghGzVJnFcJdpFUI6f%2BzmqvEKnoYSlNaONzvFw3hFLxqj2GU3t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646eef10b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-notice.png | 172.67.197.61 | 200 OK | 2.8 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-notice.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 31 x 31, 8-bit/color RGBA, non-interlaced Hash998e0fa9d2d325fcb32967f2a6f7e18e c6b79bcf8057944e8c4372728df6cb63086add2a b5ba1ff9d695cd27d973f94c99ceb23881104aeda8d29845dcc4b5a93a74d69f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-notice.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 2846
last-modified: Fri, 26 Jun 2020 07:54:20 GMT
etag: "5ef5a9ac-b1e"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Vd0VdnkVBV2%2BvC9UaEpuEPnYLV4Xacr6dnJDXQ2cgbrkC8HOSgsW9wB2pZyf5USgAEPRa0ma3ZufLVjhHUpazfGzNsW8vFFXsTN2xip0leFW6vNDd%2FWzFjTVoHX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646fefd0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-pay.png | 172.67.197.61 | 200 OK | 3.6 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-pay.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 100 x 77, 8-bit/color RGBA, non-interlaced Hashdc5c5ef1ed04b3547563fb87b04e071b b06904c5dd8a276d1de99f92c2a17a28adc61ad1 33ab657d3951cf30513d739794db93480937d83825e12869a812626b9f5c0cf1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-pay.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 3562
last-modified: Mon, 27 Mar 2023 13:49:13 GMT
etag: "64219ed9-dea"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UQezONlWKfIePdgbvTSzKg9mt90SIu%2B7TGm5YLv9zDCUzUxlcA9vUFIQeqMBe9xrKSc6RXm1D2HocJ0Em7cNLS%2F7esc%2B0FE3DplewkAICqwkvZoWdYwJyyTgNDuP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646feff0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-position.png | 172.67.197.61 | 200 OK | 3.2 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-position.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced Hash16873a239f423aa094ceb8751e00577e 4ebb0c783cc2c8651988a22b6d2166f1194fa3d4 399635981f5752b2eff2d254a195f01272ca2a2a84b45addbf9b67fece241009
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-position.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 3203
last-modified: Fri, 26 Jun 2020 08:03:22 GMT
etag: "5ef5abca-c83"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FbREtk9Kkcp32%2FgzYygebyz8RF%2FpOwHE3%2BIaNLRDRmecdH%2Bbu98USqFjCq8PcrZZmddJUEWUoGfudit8cUpb8Mp2OyOQp9jsEPgLtYTgSVHIPdBX1BvLAlDsVg%2Fb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d646ff020b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/ico-help.png | 172.67.197.61 | 200 OK | 3.9 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/ico-help.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typePNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced Hashbf260baf2f6cd4ca222c1f68d0a13a82 ea8f59ab7a7051d7de09fb9809641ae24f08e6dc e222ff8efa1b55307e3689b9401ad8b4d940d846a9d515ece97f268ce8754010
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/ico-help.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 3941
last-modified: Fri, 26 Jun 2020 08:05:14 GMT
etag: "5ef5ac3a-f65"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K3gmuC72yw7f7pP%2B8nnRNPtjlbtmQmTg7GiJWbn%2BKfXEOrvIRDLALQjXP1vpKdCTUZVlhLfCpaqnzsxEyqjMgsEkgV54cCqhzxia36wlPfDxbn8uG3kqXFqDsbM3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6470f170b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/images/home/show.png | 172.67.197.61 | 200 OK | 78 kB |
URL GET HTTP/3zzciti.net/statica/public/images/home/show.png IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:05:24 11:21:37], baseline, precision 8, 720x131, components 3 Hashf12fea6e9fec94cc9bd05608de1a6635 f7110df5642071b88c8656195aef7cd89567c3b5 72839af68544edc1d4f5bddcb02c798702cfd0d278a5804ba93e43602496b2ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/images/home/show.png HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: image/png
content-length: 78145
last-modified: Thu, 14 Apr 2022 20:31:34 GMT
etag: "625884a6-13141"
expires: Wed, 05 Jun 2024 23:31:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 74137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PliclWJGqvVxC2lIDn3tnQn62H5gyrgH7aCnX69r3zbe1pQPaARzBdYaxqqjshYggBNz%2BetjrjqPvTURmHhrelWobTAHsMo5efnisJCzuD%2B%2FPZeaQDE%2B3gvtHa7%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6470f180b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/flexible.js | 172.67.197.61 | 200 OK | 36 kB |
URL GET HTTP/3zzciti.net/statica/index/js/flexible.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hash8c78b01d283b2ceeced2f66b02074fc3 355b9b8a55b79d811f46e6e5595d9d3d412081d2 3866c14d45f16df56f8b6fc9dad805dc8747b1cfdd9252fd3c54b4f1a10c79a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/flexible.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:03:50 GMT
vary: Accept-Encoding
etag: W/"5ef5abe6-d46"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BCOfH8a4pZOz6IoNXeMhA7tbiJ47bJribbyG7ZYO%2BgwXoQdt8Z2Ikn3Gfs5Z9QP1%2BYSrYpv%2BDEb9ThT%2F4zjJsHt8HKhPVqRafVkr8pt1rFlCVGVx2AUAaxL0FYtX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6470f1b0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/static/index/css/ionic.css | 172.67.197.61 | 200 OK | 39 kB |
URL GET HTTP/3zzciti.net/static/index/css/ionic.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashdb5fba45633ae43828a4061251869433 eba59c84452ab9fa0ca458edd832f1d11efbd493 0043be92439182081590e63e6031a0c9b4a544ffc4bb1bf0f91d016975f8ab86
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/index/css/ionic.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Wed, 02 Jun 2021 21:04:56 GMT
vary: Accept-Encoding
etag: W/"60b7f278-3daf2"
expires: Wed, 08 May 2024 02:35:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19922
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NcUROpf28Fp%2FTysBE%2FzmYanx8C%2FlP0fh%2BSIdkQYT%2BpTCj8x2%2F4lJwuzYB5JqvTuAINWkCdeHxmsX4YyozS69sbC5XbcjsjEwBdHZhIiLvHh1M3yOCgO7eEzrW26L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de7e0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/trade-history.css | 172.67.197.61 | 200 OK | 7.8 kB |
URL GET HTTP/3zzciti.net/statica/index/css/trade-history.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashcecc80800fd900e0077d5680dcb8ad0b a3eef4e95f37b6e7b79269fab39d25d28e0bdeb1 286b64087d16f94d9065527bfee70dd176c52f88d652ed3ce6d71401ef203025
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/trade-history.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:36:58 GMT
vary: Accept-Encoding
etag: W/"5ef5a59a-d9b"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vv1gYEnryov9AGroyB7TINoOq%2Bl1%2B33EDtJtBPiVpM0F8okRaH7cTxMm%2F97bpfB%2FnuQz3Vfpbs8XE6WAhxhKippXcztOYwnVwJETx25hXfaAHhBKfrOwYhsRiOKi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64889b80b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/favicon.ico | 172.67.197.61 | 404 Not Found | 9.3 kB |
IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (365) Hash808f90cc12a5824de90b788bd41db0c5 3d14aa4b338a96691b4dd767c21f1442441d11d2 352e5a8d0f92b9c0a152d1d071a8985eb8117ad3bab948e5f5699a8108b6c322
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: BYPASS
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:34 GMT; Max-Age=3600; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nb0TZVSQ%2B40rC7fzfa%2F4Yh%2FmtJvTO6ILbU41HhnqmQUGFhEQsRHuF%2BrLdWGkmAqORSrJDGQJDGHIx7nIi%2Fzm5bxheKGDAqtciSdPkUXWdgixMOyacOV9R1MmT4rh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6499b970b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/zepto.min.js | 172.67.197.61 | 200 OK | 21 kB |
URL GET HTTP/3zzciti.net/statica/index/js/zepto.min.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, ASCII text, with very long lines (26318) Hash50a4556b0089cfa1cb61e88ea23bbcce 6865443a258954fa19b8aa682e1f4c77d42493d1 beb9f5e32ed61fbce010497242a9b6b8219242b5ffc636038e7891510c773725
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/zepto.min.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:04:02 GMT
vary: Accept-Encoding
etag: W/"5ef5abf2-6712"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=67s7Jil9MBuU5b6JCSU9Xwtbo9vDZTy1Th6dntpsW%2Bs3jbZlmk%2BVlkK%2FT7ePgMKPrYowdh%2F0UMzPjzWa0kK1OgN0m9B5K3aOzUO4V4kmDViofOksV9YDzrwgPshI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6470f1d0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index/index/ajaxindexpro | 172.67.197.61 | 200 OK | 12 kB |
URL GET HTTP/3zzciti.net/index/index/ajaxindexpro IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hash7d92175771463fc1d036301117b55eb6 34e093f1964c4097efab4a7881b1575a36d1d13f a361cb075831db9453ead553fcc5f2ff515d2f98c59450a7a7933beceb513395
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index/index/ajaxindexpro HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di; pid65=56970.82; pid11=2884.63; pid63=24.5849; pid62=0.50065; pid70=401.09; pid64=76.51; pid80=27.368; pid79=119.7; pid54=0.7424; pid78=-0.1; pid77=-0.013; pid76=-0.007
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:36 GMT
content-type: application/json; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:36 GMT; Max-Age=3600; path=/
pid65=56970.73; path=/
pid11=2884.63; path=/
pid63=24.4449; path=/
pid62=0.50085; path=/
pid70=401.09; path=/
pid64=77.61; path=/
pid80=27.355; path=/
pid79=119.57; path=/
pid54=0.7454; path=/
pid78=-0.06; path=/
pid77=-0.016; path=/
pid76=-0.012; path=/
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pbtN6CGQsQndasGaHVjBoVU%2FATJR7fcVTllczPCCWrTdjHKzpGE2Z7btTykZj%2B7cWm1UaIIiG6tBWeRQ5UGMGBABemXQxpya3jP2uiV8HecsMx5S2hMRLVgqApgQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d655fe9f0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index/index/ajaxindexpro | 172.67.197.61 | 200 OK | 9.2 kB |
URL GET HTTP/3zzciti.net/index/index/ajaxindexpro IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hash3961f96f9d8cc856dae6513a1eaae0e4 9d33b8e29889d2018b9066e9edd6b9ba252ab33a 0dbe759f22773966c553f1dbb31d2b36dd32bada5949090fffa5075357519601
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index/index/ajaxindexpro HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di; pid65=56970.81; pid11=2884.63; pid63=24.4749; pid62=0.50125; pid70=401.15; pid64=78.31; pid80=27.348; pid79=119.78; pid54=0.7384; pid78=0.06; pid77=0.001; pid76=-0.001
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:46 GMT
content-type: application/json; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:46 GMT; Max-Age=3600; path=/
pid65=56970.8; path=/
pid11=2884.63; path=/
pid63=24.4149; path=/
pid62=0.50145; path=/
pid70=401.14; path=/
pid64=77.71; path=/
pid80=27.355; path=/
pid79=119.71; path=/
pid54=0.7414; path=/
pid78=0.11; path=/
pid77=0.004; path=/
pid76=-0.004; path=/
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q5k33Wc1dVQl7dhMbNse2o8OSK6PjZ3T%2FCAIeITvq029i1EeTVUVd1EIiqcd%2FH3dhmLHkGgK8oJf97MFrER0qZPv%2FimmCNi68LTfnda45UvXWaTZ8du4Vb0CPJBK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d68e4cb90b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html | 172.67.197.61 | 200 OK | 18 kB |
URL User Request GET HTTP/3zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html IP172.67.197.61:443
CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hash7aef9d597f84e1b336b72c6a0d1aa479 b4f9081292db4858b28941b644a48358cb0c8c5e df3f53e0ec2e9ce1e50d33381f6af25340e297165c2273a3112c633f09622c1e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: think_var=hin-di; expires=Tue, 07-May-2024 21:07:33 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JTN2EYLX%2FjBP4i5hRXbVNvi9rtK3%2BAuWRhInswZdLmRP2GbDz0isBOPK01OTG2kBQM6OO19UGJDSwu5k1cingdCUMxLiETXUvUjfevn%2F93miSTrJU9d%2FysrZJjqt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d643fa320b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/user.css | 172.67.197.61 | 200 OK | 7.1 kB |
URL GET HTTP/3zzciti.net/statica/index/css/user.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (7773), with no line terminators Hasha800f48e741f5c3a3c1ccb6cbd4a62d8 c32c9aeefbac53799b6aca7aeea0554479275b88 5948620a4ce80838f858560268e1771115ccbf14df745d539f1e2a64284d1ae7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/user.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Wed, 02 Jun 2021 19:27:16 GMT
vary: Accept-Encoding
etag: W/"60b7db94-1bd8"
expires: Wed, 08 May 2024 05:00:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9nV8LcAKr%2FGcETUhS4TM62IZd402SD0tpGsa76X7x5BZ7S2YBb0DSRaaPEJjzcbivqGVQ4aQy9ZSc6pMhQj4HfE7PvT7%2FVxtJ4f0CJE%2F23PD1VSWI2ZAiPrGhUSF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de990b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/swiper.min.css | 172.67.197.61 | 200 OK | 14 kB |
URL GET HTTP/3zzciti.net/statica/index/css/swiper.min.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (13353) Hash7e29eec1f366019442c2e0b4979cb161 7644bbdcbc0f8cf275cd7d6c7b0aa8b9b2bf932f 58bbd6a241262127ddef359bd0d40bcbb1d84b1218f35164bc8d0348b5e8ec20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/swiper.min.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:27:58 GMT
vary: Accept-Encoding
etag: W/"5ef5a37e-3528"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wMH0dwqAFtp6AWJ2UdrpwgEEgd9GJPan5Tk9z%2BX0%2FCbvut4uLSqmCaN4i8OCbDvab80xq3SG5DHxbibUGAs2tiIs8GGC4HFFtK2br3DUyhRK5k89nqBIAk0VOGc8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de9d0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/index?lang=en-us/index/index/index/token/46e9ce9c3bd6b57c0acdefa41fe6261e.html/index/index/index/token/463eea3681d92af8e1c766ad428cdf19.html/index/index/index/token/a725b0d24e1a64ebe7efbf2984917c0e.html/index/index/index/token/23e0fbb02e94aa89c33fa78d0c67989d.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/9c2a9df531d0aa6bc6f92228a80a2fee.html/index/index/index/token/65c7847ec95bc4b466b784e5567a24a8.html/index/index/index/token/6f98c0a5483aa061b99d517e3abd44d9.html/index/index/index/token/b68fbdcc0ca544aed754cb76746857e2.html/index/index/index/token/8137f795a150b9bf6175ab37b5bdfbe2.html/index/index/index/token/8e71c231d97621654adbc87d648e5a14.html/index/index/index/token/a63db08cd84b68e056ab257cf5e6e5a1.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/b0cdd2638f7a77430f1e50ec34e2dae8.html/index/index/index/token/b0cdd2638f7a77430f1e50ec34e2dae8.html/index/index/index/token/e2413c4447da79af03e7be3314f6943d.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/d1a039162c49646774b0218fe971a6de.html/index/index/index/token/d1a039162c49646774b0218fe971a6de.html/index/index/index/token/97faded83a28a5911f7925420197bc24.html/index/index/index/token/3bf60dc233104f380921bfd1ae4529f3.html/index/index/index/token/c00d80fb543ae93f5093b95553a98ea3.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/735fd941d38d8af0015120de42866e1f.html/index/index/index/token/5ac6ab4e55c9ca410e693163a623b09f.html/index/index/index/token/42efe0f5fbce | 172.67.197.61 | 302 Found | 34 kB |
URL User Request GET HTTP/2zzciti.net/index?lang=en-us/index/index/index/token/46e9ce9c3bd6b57c0acdefa41fe6261e.html/index/index/index/token/463eea3681d92af8e1c766ad428cdf19.html/index/index/index/token/a725b0d24e1a64ebe7efbf2984917c0e.html/index/index/index/token/23e0fbb02e94aa89c33fa78d0c67989d.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/9c2a9df531d0aa6bc6f92228a80a2fee.html/index/index/index/token/65c7847ec95bc4b466b784e5567a24a8.html/index/index/index/token/6f98c0a5483aa061b99d517e3abd44d9.html/index/index/index/token/b68fbdcc0ca544aed754cb76746857e2.html/index/index/index/token/8137f795a150b9bf6175ab37b5bdfbe2.html/index/index/index/token/8e71c231d97621654adbc87d648e5a14.html/index/index/index/token/a63db08cd84b68e056ab257cf5e6e5a1.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/b0cdd2638f7a77430f1e50ec34e2dae8.html/index/index/index/token/b0cdd2638f7a77430f1e50ec34e2dae8.html/index/index/index/token/e2413c4447da79af03e7be3314f6943d.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/d1a039162c49646774b0218fe971a6de.html/index/index/index/token/d1a039162c49646774b0218fe971a6de.html/index/index/index/token/97faded83a28a5911f7925420197bc24.html/index/index/index/token/3bf60dc233104f380921bfd1ae4529f3.html/index/index/index/token/c00d80fb543ae93f5093b95553a98ea3.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/735fd941d38d8af0015120de42866e1f.html/index/index/index/token/5ac6ab4e55c9ca410e693163a623b09f.html/index/index/index/token/42efe0f5fbce IP172.67.197.61:443
CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index?lang=en-us/index/index/index/token/46e9ce9c3bd6b57c0acdefa41fe6261e.html/index/index/index/token/463eea3681d92af8e1c766ad428cdf19.html/index/index/index/token/a725b0d24e1a64ebe7efbf2984917c0e.html/index/index/index/token/23e0fbb02e94aa89c33fa78d0c67989d.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/a7509ad1394e5620343c04af74af7ee7.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/f7bf43df1839a0ea50e1a80f80d6bfa1.html/index/index/index/token/9c2a9df531d0aa6bc6f92228a80a2fee.html/index/index/index/token/65c7847ec95bc4b466b784e5567a24a8.html/index/index/index/token/6f98c0a5483aa061b99d517e3abd44d9.html/index/index/index/token/b68fbdcc0ca544aed754cb76746857e2.html/index/index/index/token/8137f795a150b9bf6175ab37b5bdfbe2.html/index/index/index/token/8e71c231d97621654adbc87d648e5a14.html/index/index/index/token/a63db08cd84b68e056ab257cf5e6e5a1.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/58785a02e80fd09f4d5c660976515871.html/index/index/index/token/b0cdd2638f7a77430f1e50ec34e2dae8.html/index/index/index/token/b0cdd2638f7a77430f1e50ec34e2dae8.html/index/index/index/token/e2413c4447da79af03e7be3314f6943d.html/index/index/index/token/ffa31f9ce0bb74b8fc3bc80b7fa3afae.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/47275eb383bb2833cfe6e4ab999ef874.html/index/index/index/token/d1a039162c49646774b0218fe971a6de.html/index/index/index/token/d1a039162c49646774b0218fe971a6de.html/index/index/index/token/97faded83a28a5911f7925420197bc24.html/index/index/index/token/3bf60dc233104f380921bfd1ae4529f3.html/index/index/index/token/c00d80fb543ae93f5093b95553a98ea3.html/index/index/index/token/d72da89c5f63387ae22bfbbb5f8a0be4.html/index/index/index/token/735fd941d38d8af0015120de42866e1f.html/index/index/index/token/5ac6ab4e55c9ca410e693163a623b09f.html/index/index/index/token/42efe0f5fbce HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 20:07:33 GMT
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; path=/
think_var=hin-di; expires=Tue, 07-May-2024 21:07:33 GMT; Max-Age=3600; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-cache,must-revalidate
location: /index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yM58rum3ZEukg1Gjpj2pXEPmwHTP%2BGtA0Ty04jMmU%2FqWnqYV0N2XISA1TZsIvm%2B3Gm6To%2BPuuFwR3NaT43GQdq3R593bw8OhMk2Puxo31ClC%2FvtPMSWV4Z53OI3b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d642cc7d569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zzciti.net/statica/index/css/home.css | 172.67.197.61 | 200 OK | 8.8 kB |
URL GET HTTP/3zzciti.net/statica/index/css/home.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (9289), with no line terminators Hash9cadb4416f14af7fbae8261ef00f7943 b1d2a3f45e4eab0d683ff9b8beee6143cc612d29 a9f663717a4420d4a46e65c356a9b933cbb3d75f8b9c74b1b1a2192f0ab58fcd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/home.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:28:12 GMT
vary: Accept-Encoding
etag: W/"5ef5a38c-228f"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TSaUe4nKX%2Fre3bFpivSqFfEgT4Eon8x2yCzn%2FAryFaF4FAfxSql0fElyT%2BnguvrAddEKZrRPpo0v9BDXymx9ZLAGpEFqeAByrw0RG4Oyaab47e%2FYVawyTaYzO4iy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de910b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/common.css | 172.67.197.61 | 200 OK | 1.9 kB |
URL GET HTTP/3zzciti.net/statica/index/css/common.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (1928), with no line terminators Hash0a6774d16fd1474ebf71013869d087e3 3cdfe3362e233b482794120eb72a8a9816b43e35 5e055b1d21aa0a65f69300add1293ad01f9b2a3ba2f0354de391435b3ebdee22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/common.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:27:02 GMT
vary: Accept-Encoding
etag: W/"5ef5a346-78b"
expires: Wed, 08 May 2024 02:35:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19922
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2EbfPacyd3Avd8IG6UFArITQ5uDKvAo%2FonAdepQrFeaHpKfAg355lI1NfNf5XbX0qx2DeWJyUbEG5yDDO1DboMYYY1aSW0bSmhzXD1GPuS9NQ5%2Bsex1w5S3akjvM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de850b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/js/function.js | 172.67.197.61 | 200 OK | 1.6 kB |
URL GET HTTP/3zzciti.net/statica/public/js/function.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (1759), with no line terminators Hash3d4de0c954f9f61aa92ce6c44a5cacc6 aba635c2328ac93e615a710486e89f932d224fcd 7ae150e34f3c5820dd8905d2e7fc776316cfddec4f4c54da971aa7a82f1d6ebd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/js/function.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Fri, 24 Jul 2020 07:56:36 GMT
vary: Accept-Encoding
etag: W/"5f1a9434-64e"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XFuEboiwhAji2AjxKSwzmz7gj3TrtQT84SdXamvKVlH4hMS8IekRofQ9tJNOL2n994qMwcJMml6vx6DU2NMl2ALJYO8qchWlQctuxJs9t9z7ZIKL7kr8%2F2lNF%2Fjx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646eeb10b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/js/jquery-1.9.1.min.js | 172.67.197.61 | 200 OK | 94 kB |
URL GET HTTP/3zzciti.net/statica/js/jquery-1.9.1.min.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/js/jquery-1.9.1.min.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Jun 2021 19:04:52 GMT
vary: Accept-Encoding
etag: W/"60b7d654-16ed1"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u%2BvMKw1pfCIRkbiv21tdH%2Fuc%2BqsPmBTI2EDcsiihrCrXSk0u%2BJa%2F9yhkR%2FaPQxhdyG%2B3ASRd%2ByLOyKK%2FQNx73ZpnpC5nHkgzt7pmCx6TQfQJVrEi1%2FvAzYt0KdkM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646dea40b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/layer/layer.js | 172.67.197.61 | 200 OK | 21 kB |
URL GET HTTP/3zzciti.net/statica/layer/layer.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/layer/layer.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Mon, 23 Dec 2019 07:45:56 GMT
vary: Accept-Encoding
etag: W/"5e0070b4-535e"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z4%2FgL1cdl%2Bn6t28YSC665sRFw0dcUKNI4lL0yW6iNXQ1MZnoY5KhZOwyJIGsx3XJRfQ%2B2aUXUndykpkeX%2BiPYI62fJQtUHnDe9mkzWcLY4m2cL%2FGHjaTZo75H7ul"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646eeac0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/iconfont.css | 172.67.197.61 | 200 OK | 3.5 kB |
URL GET HTTP/3zzciti.net/statica/index/css/iconfont.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (3854), with no line terminators Hash4a2e08ea8dd2dfd11efb9b58665f591b 13e88cd4f93bab769f449543affd88f168b2fcf2 6e13934f3b320f42cafbe7aa5be366bbdcd737d8e4cf0ae3f03f42dc97ade8b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/iconfont.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:12 GMT
vary: Accept-Encoding
etag: W/"5ef5a5a8-dc9"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=erccj3MxQ99Kut9JvADz5qj2n3XItmrtltyw4sFsvXvVeK9iZKtGxCKDXHGJARywu%2Fh3QbgVqHqHI8J5xr%2B%2Ff%2BhgczrEGDT8TlpnShWo2AzN4vWqZcSAlpkvgxJE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64889c00b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/personal.css | 172.67.197.61 | 200 OK | 16 kB |
URL GET HTTP/3zzciti.net/statica/index/css/personal.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/personal.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Mon, 26 Jul 2021 08:05:20 GMT
vary: Accept-Encoding
etag: W/"60fe6cc0-4047"
expires: Wed, 08 May 2024 05:00:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K1cANT36%2FqHmKE9TDff9Cc3EjK9d%2BUucyXBVxcoc5%2BkwYvb4jYJoC1%2F4OyigvwNB%2BlAzQ%2FJSRAGDAL98L5vETcBPUeAoVuz3icyG%2BPsYElX3tG6rQSkJoOd7JSZf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64889b50b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/lk/index.js?2323 | 172.67.197.61 | 200 OK | 5.5 kB |
URL GET HTTP/3zzciti.net/statica/index/js/lk/index.js?2323 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, ASCII text, with very long lines (5682), with no line terminators Hashdd79b529c5a3e612b8e423ec904c6253 f1269ac2efd98206cc3e8d74837b7510c0082ac3 6211391450e803b26c448ad614de07c397c7050b87847f089252f3a5b47db9be
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/lk/index.js?2323 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Wed, 19 Apr 2023 11:31:34 GMT
vary: Accept-Encoding
etag: W/"643fd116-156d"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Um1tZno%2F588Xq0ZRFSYYgzQUvpgGHi0Ac9ilqTOI2srV8d%2FjL3YWhMj%2BPDMhuhrOFssC8NpVQxzH%2B5H9zQFsWTHHtObLuzMwHWQQfnXIY0ZH8bSmYIDhqJIuoTlq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6471f350b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/layer/skin/default/layer.css?v=3.0.11110 | 172.67.197.61 | 200 OK | 14 kB |
URL GET HTTP/3zzciti.net/statica/layer/skin/default/layer.css?v=3.0.11110 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (14296), with no line terminators Hash01ad21d46e656bb2c8e162c5305e754f 6bc931ea5cce8cf7ff2bc205f115af1da5a2df7a b4ed5d24c92f99371c49023c1f7da9597cac7f23d3c9efe7c07025bc4a5d7386
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/layer/skin/default/layer.css?v=3.0.11110 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:32 GMT
vary: Accept-Encoding
etag: W/"5ef5a5bc-37d8"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UOGZlCRAanbNMUPUFkvnuv%2FaUzHddXz6aDJSybBdciF6PLLmbBUxrgeM43V8s6KRN5JVlVTa0xej2gGLVKV1JO4H%2F7VLjqOxW3KpsZ3ZMSzmwxda%2FkQsb9zxlob4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d648ea4b0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/reset.css | 172.67.197.61 | 200 OK | 1.7 kB |
URL GET HTTP/3zzciti.net/statica/index/css/reset.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (1540), with no line terminators Hash46e740d018729e7d284a5dd03f7da32c 28eb0d7da502e460abf1530a671acad67fd326e3 94d54ce470138fe94a033fceb2f3b3c479badc68644529912f6e7ee8c1134bfc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/reset.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:28:18 GMT
vary: Accept-Encoding
etag: W/"5ef5a392-6a1"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wYwyoDRcnPZEC%2BbxH13GNfCokiVuoelzqHLyx7sdCT4uUNMWXf%2FWT3UmJUgppVzN32P0pbqHs7gmLHDhjdeMztrj8qeHeYCAxkSfEMnLIEln%2FbC1QVTS62Vp52S0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de890b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/swiper.min.js | 172.67.197.61 | 200 OK | 96 kB |
URL GET HTTP/3zzciti.net/statica/index/js/swiper.min.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, ASCII text, with very long lines (31999), with CRLF line terminators Hash287fddcfd4fafa535460d88594a6bffb dd1e62384e01fc6b853918629dacee717e17cc9f 8ea4ea3e5514608153c01ec00cc8a9daf4b5cd944ec6d3096fb97a1b3b57487b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/swiper.min.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:04:40 GMT
vary: Accept-Encoding
etag: W/"5ef5ac18-178b4"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FYhLf3ywzM79iR%2B5VZCktcbpxage7Oat36A4TUS2XPJ1QpLTEbadEeGy3cbUy7y0nMiCuZr3Lglz%2F8P1aCEOSG5RyBSxd3yJv8ly92wGVcsxdafhkvn2mEB1wjOP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6471f330b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/sign.css | 172.67.197.61 | 200 OK | 8.6 kB |
URL GET HTTP/3zzciti.net/statica/index/css/sign.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (9305), with no line terminators Hashb39670f94265eeccce929adc603b6a23 68522c215f7b2b790c1e8a6b412a97f37cf5318b 0708bb449d38455ef978a24a040ac8d94d8206a617ca2178a3bd594aad9ea5c6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/sign.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:02 GMT
vary: Accept-Encoding
etag: W/"5ef5a59e-21c0"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GikEVGTKtwuNi55GAqg2cAvX3dNMxf6UcjOZMEAm%2FqxwLn0tyroblUNR4tAzeFcoIwJeCuw6VhTIZncTFB7a5EA3WMG20loiwxxtGWO70nTkGyh5xqhR0nTKdGGc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64889ba0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/js/home.js | 172.67.197.61 | 200 OK | 1.5 kB |
URL GET HTTP/3zzciti.net/statica/index/js/home.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1541), with no line terminators Hash93d784d3c23b43fa345f4454592fffdd 46c2ff4c7b8fa74da390cc3995040a8d26e8446b eb405a96f7e66e933bf0c7551277d039f3d7bc439e195d12593f231cd7b30b82
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/js/home.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 08:04:18 GMT
vary: Accept-Encoding
etag: W/"5ef5ac02-5cd"
expires: Wed, 08 May 2024 05:00:08 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IvA0RQEUuRmKju%2FGZB4c8hqjZb9dC2pwP1%2Bw6L8b2XdknZC2g5E2wXsV1P7n9rDssvqFir%2FS9wemgYTydIu1t%2BUdZugg%2Brv9zT5sDU4619QxJKBC5%2Bs2GeRTfP%2F%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d6471f370b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/style.css?323213 | 172.67.197.61 | 200 OK | 42 kB |
URL GET HTTP/3zzciti.net/statica/index/css/style.css?323213 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/style.css?323213 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Sun, 17 Apr 2022 11:53:04 GMT
vary: Accept-Encoding
etag: W/"625bffa0-a537"
expires: Wed, 08 May 2024 02:35:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 19922
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gXzrjZCzwZnWgNEebKWAH506SIrxGxmkhIfChL7qokPf867eSVfwKR9zVsNMnzznF9beoVzut7dd%2BHoShlFmXivO4IgW5iUorJxixayeSB7CS6udgmfSw5JsH%2FWz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646de820b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/public/js/base64.js | 172.67.197.61 | 200 OK | 3.1 kB |
URL GET HTTP/3zzciti.net/statica/public/js/base64.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (3546), with no line terminators Hash7e9c832c9db5ef26104a985632664dc6 830d135d33b9194054d67f3603d1d7adcc7d8d18 ea55eda109112834a1461a08f8d8b2b07435e28691cc279b092bfe3a999b59c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/public/js/base64.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Fri, 26 Jun 2020 07:29:52 GMT
vary: Accept-Encoding
etag: W/"5ef5a3f0-beb"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YtKGyPd%2FhAx7rRWOCu97ohlbGmmESwwDRASGyhwiVVyo3SpNDdpXZ3qV1qg3wUAqZfl89WY%2BsxK2wp5HfuIRl1SPwrXYgrJz69J%2B7MN4QVOaWxjfM1h4TdxFMAka"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646eeb80b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/fonts/iconfont.woff?t=1483603041633 | 172.67.197.61 | 200 OK | 34 kB |
URL GET HTTP/3zzciti.net/statica/index/fonts/iconfont.woff?t=1483603041633 IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeWeb Open Font Format, TrueType, length 34380, version 1.0 Hashec49b2f9f09efd73abcde3ffc2831c55 eaeddc97e2cc6674d977ac2c0b2b316ce26d8bb3 89ff3803cf8dc907b95175946ab385f91933741cbc3334be5485eaacf05d1efb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/fonts/iconfont.woff?t=1483603041633 HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/iconfont.css
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: font/woff
content-length: 34380
last-modified: Mon, 23 Dec 2019 07:45:56 GMT
etag: "5e0070b4-864c"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F75GEdo8JeQrSypnMNsmrYZ2hsLs9AbLGqmOhrZ%2BTov6a5iJVDcKu4jkfG1SmBvUTc6OBzK%2FR5UJ695fXUzwgEYy2B3fK8Z77NSVg%2BaR0eT6Bi9MtZRqUakXGSbh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803d6494ae80b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/static/index/js/lk/order.js | 172.67.197.61 | 200 OK | 3.3 kB |
URL GET HTTP/3zzciti.net/static/index/js/lk/order.js IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeUnicode text, UTF-8 text, with very long lines (3461), with no line terminators Hash042b6e33e1769241a3448640a386bbe8 538fa37d7ced395955f0d7e8c3b64fcc01d0544e d745774f7bfffe9d5a61197428636d38e8c006184f0e9f5d954a21e249d28d74
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/index/js/lk/order.js HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: application/javascript
last-modified: Thu, 03 Jun 2021 17:47:30 GMT
vary: Accept-Encoding
etag: W/"60b915b2-cb5"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SXccLRWvXU9GBeYWK69cQOlt6hr%2BJv2VWBTb102V7cTHmbmSCMXBKbphY800IWA10UTYdwOg%2BfLjgqw7H0RZAzLw0GZx6k4WiVGAL3vnoVOJWhcPSqUJI2zq6zBW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d646eeaa0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zzciti.net/statica/index/css/trade.css | 172.67.197.61 | 200 OK | 3.2 kB |
URL GET HTTP/3zzciti.net/statica/index/css/trade.css IP172.67.197.61:443
Requested byhttps://zzciti.net/index/index/index/token/b2664d44fa0f82b38d9254d8f80acf1e.html CertificateIssuerGoogle Trust Services LLC Subjectzzciti.net FingerprintAF:F9:51:4B:62:73:AA:08:F5:11:39:3D:1B:A7:3D:1C:16:A7:BB:83 ValidityWed, 03 Apr 2024 06:39:53 GMT - Tue, 02 Jul 2024 06:39:52 GMT
File typeASCII text, with very long lines (3481), with no line terminators Hasha20ee2a26535c8ce7f61ab957f9ed529 26689b68851e9595bb4aa91c20f853c08f610d70 75a1d9066710b5b5b67332025456442265e290a50abe200cd746ff61101bab2b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /statica/index/css/trade.css HTTP/1.1
Host: zzciti.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zzciti.net/statica/index/css/style.css?323213
Cookie: PHPSESSID=ka2b2rr7snn9ahr91elm2d9694; think_var=hin-di
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 20:07:34 GMT
content-type: text/css
last-modified: Fri, 26 Jun 2020 07:37:08 GMT
vary: Accept-Encoding
etag: W/"5ef5a5a4-c8e"
expires: Wed, 08 May 2024 08:07:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VjccCbbr9Zhy6IEYLKezE%2FcE1Pce%2F6yqWLG%2BKmqno7J%2FydC%2BYRW%2BLFv%2BzMl8uk1rXt7jwCFXAeQLGfU4B6A30AuzYQjyFzx88UYO1F343Mu0FFZCNXgNrG8TjcE%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803d64889bc0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|